Lucene search

[email protected]CVE-2020-11295

HistoryMay 07, 2021 - 9:15 a.m.

CVE-2020-11295

2021-05-0709:15:08

CWE-416

[email protected]

web.nvd.nist.gov

cve-2020-11295

use after free

camera

snapdragon auto

snapdragon compute

snapdragon connectivity

snapdragon consumer iot

snapdragon industrial iot

snapdragon mobile

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

Use after free in camera If the threadmanager is being cleaned up while the worker thread is processing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

Affected configurations

NVD

Node

qualcommfsm10055_firmwareMatch-

AND

qualcommfsm10055Match-

Node

qualcommfsm10056_firmwareMatch-

AND

qualcommfsm10056Match-

Node

qualcommpm3003a_firmwareMatch-

AND

qualcommpm3003aMatch-

Node

qualcommpm6125_firmwareMatch-

AND

qualcommpm6125Match-

Node

qualcommpm6150_firmwareMatch-

AND

qualcommpm6150Match-

Node

qualcommpm6150a_firmwareMatch-

AND

qualcommpm6150aMatch-

Node

qualcommpm6150l_firmwareMatch-

AND

qualcommpm6150lMatch-

Node

qualcommpm6350_firmwareMatch-

AND

qualcommpm6350Match-

Node

qualcommpm660_firmwareMatch-

AND

qualcommpm660Match-

Node

qualcommpm660l_firmwareMatch-

AND

qualcommpm660lMatch-

Node

qualcommpm7250b_firmwareMatch-

AND

qualcommpm7250bMatch-

Node

qualcommpm8008_firmwareMatch-

AND

qualcommpm8008Match-

Node

qualcommpm8009_firmwareMatch-

AND

qualcommpm8009Match-

Node

qualcommpm8150a_firmwareMatch-

AND

qualcommpm8150aMatch-

Node

qualcommpm8150b_firmwareMatch-

AND

qualcommpm8150bMatch-

Node

qualcommpm8150c_firmwareMatch-

AND

qualcommpm8150cMatch-

Node

qualcommpm8150l_firmwareMatch-

AND

qualcommpm8150lMatch-

Node

qualcommpm8250_firmwareMatch-

AND

qualcommpm8250Match-

Node

qualcommpm8350_firmwareMatch-

AND

qualcommpm8350Match-

Node

qualcommpm8350b_firmwareMatch-

AND

qualcommpm8350bMatch-

Node

qualcommpm8350bh_firmwareMatch-

AND

qualcommpm8350bhMatch-

Node

qualcommpm8350c_firmwareMatch-

AND

qualcommpm8350cMatch-

Node

qualcommpmi632_firmwareMatch-

AND

qualcommpmi632Match-

Node

qualcommpmk8002_firmwareMatch-

AND

qualcommpmk8002Match-

Node

qualcommpmk8003_firmwareMatch-

AND

qualcommpmk8003Match-

Node

qualcommpmk8350_firmwareMatch-

AND

qualcommpmk8350Match-

Node

qualcommpmm6155au_firmwareMatch-

AND

qualcommpmm6155auMatch-

Node

qualcommpmm8155au_firmwareMatch-

AND

qualcommpmm8155auMatch-

Node

qualcommpmm8195au_firmwareMatch-

AND

qualcommpmm8195auMatch-

Node

qualcommpmm855au_firmwareMatch-

AND

qualcommpmm855auMatch-

Node

qualcommpmr525_firmwareMatch-

AND

qualcommpmr525Match-

Node

qualcommpmr735a_firmwareMatch-

AND

qualcommpmr735aMatch-

Node

qualcommpmr735b_firmwareMatch-

AND

qualcommpmr735bMatch-

Node

qualcommpmx55_firmwareMatch-

AND

qualcommpmx55Match-

Node

qualcommqat3516_firmwareMatch-

AND

qualcommqat3516Match-

Node

qualcommqat3518_firmwareMatch-

AND

qualcommqat3518Match-

Node

qualcommqat3519_firmwareMatch-

AND

qualcommqat3519Match-

Node

qualcommqat3555_firmwareMatch-

AND

qualcommqat3555Match-

Node

qualcommqat5515_firmwareMatch-

AND

qualcommqat5515Match-

Node

qualcommqat5516_firmwareMatch-

AND

qualcommqat5516Match-

Node

qualcommqat5522_firmwareMatch-

AND

qualcommqat5522Match-

Node

qualcommqat5568_firmwareMatch-

AND

qualcommqat5568Match-

Node

qualcommqbt1500_firmwareMatch-

AND

qualcommqbt1500Match-

Node

qualcommqbt2000_firmwareMatch-

AND

qualcommqbt2000Match-

Node

qualcommqca6390Match-

AND

qualcommqca6390_firmwareMatch-

Node

qualcommqca6391Match-

AND

qualcommqca6391_firmwareMatch-

Node

qualcommqca6421Match-

AND

qualcommqca6421_firmwareMatch-

Node

qualcommqca6426Match-

AND

qualcommqca6426_firmwareMatch-

Node

qualcommqca6431Match-

AND

qualcommqca6431_firmwareMatch-

Node

qualcommqca6436Match-

AND

qualcommqca6436_firmwareMatch-

Node

qualcommqca6564aMatch-

AND

qualcommqca6564a_firmwareMatch-

Node

qualcommqca6564auMatch-

AND

qualcommqca6564au_firmwareMatch-

Node

qualcommqca6574_firmwareMatch-

AND

qualcommqca6574Match-

Node

qualcommqca6574a_firmwareMatch-

AND

qualcommqca6574aMatch-

Node

qualcommqca6574au_firmwareMatch-

AND

qualcommqca6574auMatch-

Node

qualcommqca6595_firmwareMatch-

AND

qualcommqca6595Match-

Node

qualcommqca6595au_firmwareMatch-

AND

qualcommqca6595auMatch-

Node

qualcommqca6696_firmwareMatch-

AND

qualcommqca6696Match-

Node

qualcommqcm4290_firmwareMatch-

AND

qualcommqcm4290Match-

Node

qualcommqcs410_firmwareMatch-

AND

qualcommqcs410Match-

Node

qualcommqcs4290_firmwareMatch-

AND

qualcommqcs4290Match-

Node

qualcommqcs610_firmwareMatch-

AND

qualcommqcs610Match-

Node

qualcommqdm3301_firmwareMatch-

AND

qualcommqdm3301Match-

Node

qualcommqdm4643_firmwareMatch-

AND

qualcommqdm4643Match-

Node

qualcommqdm4650_firmwareMatch-

AND

qualcommqdm4650Match-

Node

qualcommqdm5620_firmwareMatch-

AND

qualcommqdm5620Match-

Node

qualcommqdm5621_firmwareMatch-

AND

qualcommqdm5621Match-

Node

qualcommqdm5670_firmwareMatch-

AND

qualcommqdm5670Match-

Node

qualcommqdm5671_firmwareMatch-

AND

qualcommqdm5671Match-

Node

qualcommqet5100_firmwareMatch-

AND

qualcommqet5100Match-

Node

qualcommqet5100m_firmwareMatch-

AND

qualcommqet5100mMatch-

Node

qualcommqet6100_firmwareMatch-

AND

qualcommqet6100Match-

Node

qualcommqet6105_firmwareMatch-

AND

qualcommqet6105Match-

Node

qualcommqet6110_firmwareMatch-

AND

qualcommqet6110Match-

Node

qualcommqfs2530_firmwareMatch-

AND

qualcommqfs2530Match-

Node

qualcommqfs2580_firmwareMatch-

AND

qualcommqfs2580Match-

Node

qualcommqfs2608_firmwareMatch-

AND

qualcommqfs2608Match-

Node

qualcommqfs2630_firmwareMatch-

AND

qualcommqfs2630Match-

Node

qualcommqln4642_firmwareMatch-

AND

qualcommqln4642Match-

Node

qualcommqln4650_firmwareMatch-

AND

qualcommqln4650Match-

Node

qualcommqln5020_firmwareMatch-

AND

qualcommqln5020Match-

Node

qualcommqln5030_firmwareMatch-

AND

qualcommqln5030Match-

Node

qualcommqln5040_firmwareMatch-

AND

qualcommqln5040Match-

Node

qualcommqpa2625_firmwareMatch-

AND

qualcommqpa2625Match-

Node

qualcommqpa5461_firmwareMatch-

AND

qualcommqpa5461Match-

Node

qualcommqpa5580_firmwareMatch-

AND

qualcommqpa5580Match-

Node

qualcommqpa5581_firmwareMatch-

AND

qualcommqpa5581Match-

Node

qualcommqpa8801_firmwareMatch-

AND

qualcommqpa8801Match-

Node

qualcommqpa8802_firmwareMatch-

AND

qualcommqpa8802Match-

Node

qualcommqpa8803_firmwareMatch-

AND

qualcommqpa8803Match-

Node

qualcommqpa8821_firmwareMatch-

AND

qualcommqpa8821Match-

Node

qualcommqpa8842_firmwareMatch-

AND

qualcommqpa8842Match-

Node

qualcommqpm4621_firmwareMatch-

AND

qualcommqpm4621Match-

Node

qualcommqpm4630_firmwareMatch-

AND

qualcommqpm4630Match-

Node

qualcommqpm4640_firmwareMatch-

AND

qualcommqpm4640Match-

Node

qualcommqpm4641_firmwareMatch-

AND

qualcommqpm4641Match-

Node

qualcommqpm4650_firmwareMatch-

AND

qualcommqpm4650Match-

Node

qualcommqpm5621_firmwareMatch-

AND

qualcommqpm5621Match-

Node

qualcommqpm5641_firmwareMatch-

AND

qualcommqpm5641Match-

Node

qualcommqpm5670_firmwareMatch-

AND

qualcommqpm5670Match-

Node

qualcommqpm5677_firmwareMatch-

AND

qualcommqpm5677Match-

Node

qualcommqpm5679_firmwareMatch-

AND

qualcommqpm5679Match-

Node

qualcommqpm5870_firmwareMatch-

AND

qualcommqpm5870Match-

Node

qualcommqpm5875_firmwareMatch-

AND

qualcommqpm5875Match-

Node

qualcommqpm6585_firmwareMatch-

AND

qualcommqpm6585Match-

Node

qualcommqpm6621_firmwareMatch-

AND

qualcommqpm6621Match-

Node

qualcommqpm6670_firmwareMatch-

AND

qualcommqpm6670Match-

Node

qualcommqpm8820_firmwareMatch-

AND

qualcommqpm8820Match-

Node

qualcommqpm8870_firmwareMatch-

AND

qualcommqpm8870Match-

Node

qualcommqtc800h_firmwareMatch-

AND

qualcommqtc800hMatch-

Node

qualcommqtc800s_firmwareMatch-

AND

qualcommqtc800sMatch-

Node

qualcommqtc801s_firmwareMatch-

AND

qualcommqtc801sMatch-

Node

qualcommqtm525_firmwareMatch-

AND

qualcommqtm525Match-

Node

qualcommsa6145p_firmwareMatch-

AND

qualcommsa6145pMatch-

Node

qualcommsa6150p_firmwareMatch-

AND

qualcommsa6150pMatch-

Node

qualcommsa6155_firmwareMatch-

AND

qualcommsa6155Match-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8150p_firmwareMatch-

AND

qualcommsa8150pMatch-

Node

qualcommsa8155_firmwareMatch-

AND

qualcommsa8155Match-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

Node

qualcommsd460_firmwareMatch-

AND

qualcommsd460Match-

Node

qualcommsd480_firmwareMatch-

AND

qualcommsd480Match-

Node

qualcommsd662_firmwareMatch-

AND

qualcommsd662Match-

Node

qualcommsd670_firmwareMatch-

AND

qualcommsd670Match-

Node

qualcommsd710_firmwareMatch-

AND

qualcommsd710Match-

Node

qualcommsd8655g_firmwareMatch-

AND

qualcommsd8655gMatch-

Node

qualcommsd870_firmwareMatch-

AND

qualcommsd870Match-

Node

qualcommsd888_firmwareMatch-

AND

qualcommsd888Match-

Node

qualcommsd8885g_firmwareMatch-

AND

qualcommsd8885gMatch-

Node

qualcommsdr425_firmwareMatch-

AND

qualcommsdr425Match-

Node

qualcommsdr660_firmwareMatch-

AND

qualcommsdr660Match-

Node

qualcommsdr660g_firmwareMatch-

AND

qualcommsdr660gMatch-

Node

qualcommsdr735_firmwareMatch-

AND

qualcommsdr735Match-

Node

qualcommsdr735g_firmwareMatch-

AND

qualcommsdr735gMatch-

Node

qualcommsdr8250_firmwareMatch-

AND

qualcommsdr8250Match-

Node

qualcommsdr865_firmwareMatch-

AND

qualcommsdr865Match-

Node

qualcommsdx55m_firmwareMatch-

AND

qualcommsdx55mMatch-

Node

qualcommsdxr1_firmwareMatch-

AND

qualcommsdxr1Match-

Node

qualcommsdxr25g_firmwareMatch-

AND

qualcommsdxr25gMatch-

Node

qualcommsmb1351_firmwareMatch-

AND

qualcommsmb1351Match-

Node

qualcommsmb1354_firmwareMatch-

AND

qualcommsmb1354Match-

Node

qualcommsmb1355_firmwareMatch-

AND

qualcommsmb1355Match-

Node

qualcommsmb1390_firmwareMatch-

AND

qualcommsmb1390Match-

Node

qualcommsmb1396_firmwareMatch-

AND

qualcommsmb1396Match-

Node

qualcommsmb1398_firmwareMatch-

AND

qualcommsmb1398Match-

Node

qualcommsmr525_firmwareMatch-

AND

qualcommsmr525Match-

Node

qualcommsmr526_firmwareMatch-

AND

qualcommsmr526Match-

Node

qualcommsmr545_firmwareMatch-

AND

qualcommsmr545Match-

Node

qualcommsmr546_firmwareMatch-

AND

qualcommsmr546Match-

Node

qualcommwcd9326_firmwareMatch-

AND

qualcommwcd9326Match-

Node

qualcommwcd9341_firmwareMatch-

AND

qualcommwcd9341Match-

Node

qualcommwcd9370_firmwareMatch-

AND

qualcommwcd9370Match-

Node

qualcommwcd9375_firmwareMatch-

AND

qualcommwcd9375Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcd9385_firmwareMatch-

AND

qualcommwcd9385Match-

Node

qualcommwcn3950_firmwareMatch-

AND

qualcommwcn3950Match-

Node

qualcommwcn3980_firmwareMatch-

AND

qualcommwcn3980Match-

Node

qualcommwcn3988_firmwareMatch-

AND

qualcommwcn3988Match-

Node

qualcommwcn3990_firmwareMatch-

AND

qualcommwcn3990Match-

Node

qualcommwcn3991_firmwareMatch-

AND

qualcommwcn3991Match-

Node

qualcommwcn6750_firmwareMatch-

AND

qualcommwcn6750Match-

Node

qualcommwcn6850_firmwareMatch-

AND

qualcommwcn6850Match-

Node

qualcommwcn6851_firmwareMatch-

AND

qualcommwcn6851Match-

Node

qualcommwcn6855_firmwareMatch-

AND

qualcommwcn6855Match-

Node

qualcommwcn6856_firmwareMatch-

AND

qualcommwcn6856Match-

Node

qualcommwgr7640_firmwareMatch-

AND

qualcommwgr7640Match-

Node

qualcommwsa8810_firmwareMatch-

AND

qualcommwsa8810Match-

Node

qualcommwsa8815_firmwareMatch-

AND

qualcommwsa8815Match-

Node

qualcommwsa8830_firmwareMatch-

AND

qualcommwsa8830Match-

Node

qualcommwsa8835_firmwareMatch-

AND

qualcommwsa8835Match-

Node

qualcommwtr2965_firmwareMatch-

AND

qualcommwtr2965Match-

Node

qualcommwtr3925_firmwareMatch-

AND

qualcommwtr3925Match-

CPENameOperatorVersion
qualcomm:fsm10055_firmwarequalcomm fsm10055 firmwareeq-

CPE	Name	Operator	Version
qualcomm:fsm10055_firmware	qualcomm fsm10055 firmware	eq	-

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "FSM10055, FSM10056, PM3003A, PM6125, PM6150, PM6150A, PM6150L, PM6350, PM660, PM660L, PM7250B, PM8008, PM8009, PM8150A, PM8150B, PM8150C, PM8150L, PM8250, PM8350, PM8350B, PM8350BH, PM8350C, PMI632, PMK8002, PMK8003, PMK8350, PMM6155AU, PMM8155AU, PMM8195AU, PMM855AU, PMR525, PMR735A, PMR735B, PMX55, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5516, QAT5522, QAT5568, QBT1500, QBT2000, QCA6390, QCA6391, QCA6421, QCA6426, QCA6431, QCA6436, QCA6564A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6595, QCA6595AU, QCA6696, QCM4290, QCS410, QCS4290, QCS610, QDM3301, QDM4643, QDM4650, QDM5620, QDM5621, QDM5670, QDM5671, QET5100, QET5100M, QET6100, QET6105, QET6110, QFS2530, QFS2580, QFS2608, QFS2630, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5461, QPA5580, QPA5581, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM4621, QPM4630, QPM4640, QPM4641, QPM4650, QPM5621, QPM5641, QPM5670, QPM5677, QPM5679, QPM5870, QPM5875, QPM6585, QPM6621, QPM6670, QPM8820, QPM8870, QTC800H, QTC800S, QTC801 ...[truncated*]"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin

Social References

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVE-2020-11295

cvelist1 prion1 nvd1