Lucene search

[email protected]CVE-2020-11268

HistoryMay 07, 2021 - 9:15 a.m.

CVE-2020-11268

2021-05-0709:15:07

CWE-20

[email protected]

web.nvd.nist.gov

cve-2020-11268

potential ue reset

crafted sib1

denial of service

snapdragon auto

snapdragon mobile nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.6%

JSON

Potential UE reset while decoding a crafted Sib1 or SIB1 that schedules unsupported SIBs and can lead to denial of service in Snapdragon Auto, Snapdragon Mobile

Affected configurations

NVD

Node

qualcommapq8009Match-

qualcommapq8016Match-

qualcommapq8074Match-

qualcommapq8084Match-

qualcommapq8094Match-

qualcommar6003Match-

qualcommmdm8215Match-

qualcommmdm8215mMatch-

qualcommmdm8615mMatch-

qualcommmdm9215Match-

qualcommmdm9235mMatch-

qualcommmdm9310Match-

qualcommmdm9609Match-

qualcommmdm9615Match-

qualcommmdm9615mMatch-

qualcommmdm9635mMatch-

qualcommmdm9640Match-

qualcommmdm9645Match-

qualcommmsm8108Match-

qualcommmsm8208Match-

qualcommmsm8209Match-

qualcommmsm8216Match-

qualcommmsm8274Match-

qualcommmsm8608Match-

qualcommmsm8674Match-

qualcommmsm8916Match-

qualcommmsm8929Match-

qualcommmsm8939Match-

qualcommmsm8974Match-

qualcommmsm8974pMatch-

qualcommmsm8994Match-

qualcommpm8018Match-

qualcommpm8841Match-

qualcommpm8909Match-

qualcommpm8916Match-

qualcommpm8941Match-

qualcommpm8994Match-

qualcommpmd9635Match-

qualcommpmd9645Match-

qualcommpmi8994Match-

qualcommqca1990Match-

qualcommqca6174Match-

qualcommqca6174aMatch-

qualcommqca6584Match-

qualcommqfe1035Match-

qualcommqfe1040Match-

qualcommqfe1045Match-

qualcommqfe1100Match-

qualcommqfe1101Match-

qualcommqfe1520Match-

qualcommqfe1550Match-

qualcommqfe2101Match-

qualcommqfe2310Match-

qualcommqfe2320Match-

qualcommqfe2330Match-

qualcommqfe2340Match-

qualcommqfe2520Match-

qualcommqfe2550Match-

qualcommqfe2720Match-

qualcommqfe3100Match-

qualcommqfe3320Match-

qualcommqfe3335Match-

qualcommqfe3340Match-

qualcommqfe3345Match-

qualcommsd210Match-

qualcommsmb1360Match-

qualcommwcd9306Match-

qualcommwcd9330Match-

qualcommwcn3610Match-

qualcommwcn3620Match-

qualcommwcn3660Match-

qualcommwcn3660aMatch-

qualcommwcn3660bMatch-

qualcommwcn3680Match-

qualcommwcn3680bMatch-

qualcommwfr1620Match-

qualcommwgr7640Match-

qualcommwtr1605Match-

qualcommwtr1605lMatch-

qualcommwtr1625Match-

qualcommwtr1625lMatch-

qualcommwtr2605Match-

qualcommwtr2955Match-

qualcommwtr3925Match-

qualcommwtr4605Match-

qualcommwtr4905Match-

CPENameOperatorVersion
qualcomm:apq8009qualcomm apq8009eq-
qualcomm:apq8016qualcomm apq8016eq-
qualcomm:apq8074qualcomm apq8074eq-
qualcomm:apq8084qualcomm apq8084eq-
qualcomm:apq8094qualcomm apq8094eq-
qualcomm:ar6003qualcomm ar6003eq-
qualcomm:mdm8215qualcomm mdm8215eq-
qualcomm:mdm8215mqualcomm mdm8215meq-
qualcomm:mdm8615mqualcomm mdm8615meq-
qualcomm:mdm9215qualcomm mdm9215eq-

CPE	Name	Operator	Version
qualcomm:apq8009	qualcomm apq8009	eq	-
qualcomm:apq8016	qualcomm apq8016	eq	-
qualcomm:apq8074	qualcomm apq8074	eq	-
qualcomm:apq8084	qualcomm apq8084	eq	-
qualcomm:apq8094	qualcomm apq8094	eq	-
qualcomm:ar6003	qualcomm ar6003	eq	-
qualcomm:mdm8215	qualcomm mdm8215	eq	-
qualcomm:mdm8215m	qualcomm mdm8215m	eq	-
qualcomm:mdm8615m	qualcomm mdm8615m	eq	-
qualcomm:mdm9215	qualcomm mdm9215	eq	-

Rows per page:

1-10 of 861

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Mobile",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "APQ8009, APQ8016, APQ8074, APQ8084, APQ8094, AR6003, MDM8215, MDM8215M, MDM8615M, MDM9215, MDM9235M, MDM9310, MDM9609, MDM9615, MDM9615M, MDM9635M, MDM9640, MDM9645, MSM8108, MSM8208, MSM8209, MSM8216, MSM8274, MSM8608, MSM8674, MSM8916, MSM8929, MSM8939, MSM8974, MSM8974P, MSM8994, PM8018, PM8841, PM8909, PM8916, PM8941, PM8994, PMD9635, PMD9645, PMI8994, QCA1990, QCA6174, QCA6174A, QCA6584, QFE1035, QFE1040, QFE1045, QFE1100, QFE1101, QFE1520, QFE1550, QFE2101, QFE2310, QFE2320, QFE2330, QFE2340, QFE2520, QFE2550, QFE2720, QFE3100, QFE3320, QFE3335, QFE3340, QFE3345, SD210, SMB1360, WCD9306, WCD9330, WCN3610, WCN3620, WCN3660, WCN3660A, WCN3660B, WCN3680, WCN3680B, WFR1620, WGR7640, WTR1605, WTR1605L, WTR1625, WTR1625L, WTR2605, WTR2955, WTR3925, WTR4605, WTR4905"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin

Social References

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.6%

JSON

Related for CVE-2020-11268

prion1 nvd1 cvelist1