Lucene search

[email protected]CVE-2020-11273

HistoryMay 07, 2021 - 9:15 a.m.

CVE-2020-11273

2021-05-0709:15:00

CWE-476

[email protected]

web.nvd.nist.gov

202

cve-2020-11273

histogram

kpi

snapdragon

auto

compute

connectivity

mobile

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

41.0%

JSON

Histogram type KPI was teardown with the assumption of the existence of histogram binning info and will lead to null pointer access when histogram binning info is missing due to lack of null check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

CPENameOperatorVersion
qualcomm:csrb31024_firmwarequalcomm csrb31024 firmwareeq-
qualcomm:pm3003a_firmwarequalcomm pm3003a firmwareeq-
qualcomm:pm6150a_firmwarequalcomm pm6150a firmwareeq-
qualcomm:pm6150l_firmwarequalcomm pm6150l firmwareeq-
qualcomm:pm6350_firmwarequalcomm pm6350 firmwareeq-
qualcomm:pm7150a_firmwarequalcomm pm7150a firmwareeq-
qualcomm:pm7150l_firmwarequalcomm pm7150l firmwareeq-
qualcomm:pm7250_firmwarequalcomm pm7250 firmwareeq-
qualcomm:pm7250b_firmwarequalcomm pm7250b firmwareeq-
qualcomm:pm8005_firmwarequalcomm pm8005 firmwareeq-

CPE	Name	Operator	Version
qualcomm:csrb31024_firmware	qualcomm csrb31024 firmware	eq	-
qualcomm:pm3003a_firmware	qualcomm pm3003a firmware	eq	-
qualcomm:pm6150a_firmware	qualcomm pm6150a firmware	eq	-
qualcomm:pm6150l_firmware	qualcomm pm6150l firmware	eq	-
qualcomm:pm6350_firmware	qualcomm pm6350 firmware	eq	-
qualcomm:pm7150a_firmware	qualcomm pm7150a firmware	eq	-
qualcomm:pm7150l_firmware	qualcomm pm7150l firmware	eq	-
qualcomm:pm7250_firmware	qualcomm pm7250 firmware	eq	-
qualcomm:pm7250b_firmware	qualcomm pm7250b firmware	eq	-
qualcomm:pm8005_firmware	qualcomm pm8005 firmware	eq	-

Rows per page:

1-10 of 1781

References

www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

41.0%

JSON

Related for CVE-2020-11273

prion1 androidsecurity1