Lucene search
HistoryJun 09, 2021 - 7:15 a.m.
CVE-2020-11298
cve-2020-11298
security
hlos invoke call
snapdragon
kernel
permissions
nvd
non-secure clients
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.7%
While waiting for a response to a callback or listener request, non-secure clients can change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Affected configurations
Node
qualcommaqt1000Match-
qualcommaqt1000_firmwareMatch-
Node
qualcommar8031Match-
qualcommar8031_firmwareMatch-
Node
qualcommar8035Match-
qualcommar8035_firmwareMatch-
Node
qualcommcsra6620Match-
qualcommcsra6620_firmwareMatch-
Node
qualcommcsra6640Match-
qualcommcsra6640_firmwareMatch-
Node
qualcommmdm9205Match-
qualcommmdm9205_firmwareMatch-
Node
qualcommmdm9206Match-
qualcommmdm9206_firmwareMatch-
Node
qualcommmdm9628Match-
qualcommmdm9628_firmwareMatch-
Node
qualcommqca4004_firmwareMatch-
qualcommqca4004Match-
Node
qualcommqca6390_firmwareMatch-
qualcommqca6390Match-
Node
qualcommqca6391_firmwareMatch-
qualcommqca6391Match-
Node
qualcommqca6420_firmwareMatch-
qualcommqca6420Match-
Node
qualcommqca6421_firmwareMatch-
qualcommqca6421Match-
Node
qualcommqca6426_firmwareMatch-
qualcommqca6426Match-
Node
qualcommqca6430_firmwareMatch-
qualcommqca6430Match-
Node
qualcommqca6431_firmwareMatch-
qualcommqca6431Match-
Node
qualcommqca6436_firmwareMatch-
qualcommqca6436Match-
Node
qualcommqca6564a_firmwareMatch-
qualcommqca6564aMatch-
Node
qualcommqca6564au_firmwareMatch-
qualcommqca6564auMatch-
Node
qualcommqca6574a_firmwareMatch-
qualcommqca6574aMatch-
Node
qualcommqca6574au_firmwareMatch-
qualcommqca6574auMatch-
Node
qualcommqca6584au_firmwareMatch-
qualcommqca6584auMatch-
Node
qualcommqca6595_firmwareMatch-
qualcommqca6595Match-
Node
qualcommqca6595au_firmwareMatch-
qualcommqca6595auMatch-
Node
qualcommqca6696_firmwareMatch-
qualcommqca6696Match-
Node
qualcommqca8337_firmwareMatch-
qualcommqca8337Match-
Node
qualcommqca9367_firmwareMatch-
qualcommqca9367Match-
Node
qualcommqca9377_firmwareMatch-
qualcommqca9377Match-
Node
qualcommqca9984_firmwareMatch-
qualcommqca9984Match-
Node
qualcommqcm2290_firmwareMatch-
qualcommqcm2290Match-
Node
qualcommqcm4290_firmwareMatch-
qualcommqcm4290Match-
Node
qualcommqcm6125_firmwareMatch-
qualcommqcm6125Match-
Node
qualcommqcs2290_firmwareMatch-
qualcommqcs2290Match-
Node
qualcommqcs405_firmwareMatch-
qualcommqcs405Match-
Node
qualcommqcs410_firmwareMatch-
qualcommqcs410Match-
Node
qualcommqcs4290_firmwareMatch-
qualcommqcs4290Match-
Node
qualcommqcs603_firmwareMatch-
qualcommqcs603Match-
Node
qualcommqcs605_firmwareMatch-
qualcommqcs605Match-
Node
qualcommqcs610_firmwareMatch-
qualcommqcs610Match-
Node
qualcommqcs6125_firmwareMatch-
qualcommqcs6125Match-
Node
qualcommqsm8250_firmwareMatch-
qualcommqsm8250Match-
Node
qualcommsa415m_firmwareMatch-
qualcommsa415mMatch-
Node
qualcommsa515m_firmwareMatch-
qualcommsa515mMatch-
Node
qualcommsa6155p_firmwareMatch-
qualcommsa6155pMatch-
Node
qualcommsa8155_firmwareMatch-
qualcommsa8155Match-
Node
qualcommsa8155p_firmwareMatch-
qualcommsa8155pMatch-
Node
qualcommsa8195p_firmwareMatch-
qualcommsa8195pMatch-
Node
qualcommsc8180x\+sdx55_firmwareMatch-
qualcommsc8180x\+sdx55Match-
Node
qualcommsd_675_firmwareMatch-
qualcommsd_675Match-
Node
qualcommsd_8c_firmwareMatch-
qualcommsd_8cMatch-
Node
qualcommsd_8cx_firmwareMatch-
qualcommsd_8cxMatch-
Node
qualcommsd460_firmwareMatch-
qualcommsd460Match-
Node
qualcommsd480_firmwareMatch-
qualcommsd480Match-
Node
qualcommsd662_firmwareMatch-
qualcommsd662Match-
Node
qualcommsd665_firmwareMatch-
qualcommsd665Match-
Node
qualcommsd670_firmwareMatch-
qualcommsd670Match-
Node
qualcommsd675_firmwareMatch-
qualcommsd675Match-
Node
qualcommsd678_firmwareMatch-
qualcommsd678Match-
Node
qualcommsd690_5g_firmwareMatch-
qualcommsd690_5gMatch-
Node
qualcommsd710_firmwareMatch-
qualcommsd710Match-
Node
qualcommsd712_firmwareMatch-
qualcommsd712Match-
Node
qualcommsd720g_firmwareMatch-
qualcommsd720gMatch-
Node
qualcommsd730_firmwareMatch-
qualcommsd730Match-
Node
qualcommsd750g_firmwareMatch-
qualcommsd750gMatch-
Node
qualcommsd765_firmwareMatch-
qualcommsd765Match-
Node
qualcommsd765g_firmwareMatch-
qualcommsd765gMatch-
Node
qualcommsd768g_firmwareMatch-
qualcommsd768gMatch-
Node
qualcommsd7c_firmwareMatch-
qualcommsd7cMatch-
Node
qualcommsd855_firmwareMatch-
qualcommsd855Match-
Node
qualcommsd865_5g_firmwareMatch-
qualcommsd865_5gMatch-
Node
qualcommsd870_firmwareMatch-
qualcommsd870Match-
Node
qualcommsd888_5g_firmwareMatch-
qualcommsd888_5gMatch-
Node
qualcommsdm830_firmwareMatch-
qualcommsdm830Match-
Node
qualcommsdx24_firmwareMatch-
qualcommsdx24Match-
Node
qualcommsdx50m_firmwareMatch-
qualcommsdx50mMatch-
Node
qualcommsdx55_firmwareMatch-
qualcommsdx55Match-
Node
qualcommsdx55m_firmwareMatch-
qualcommsdx55mMatch-
Node
qualcommsdxr1_firmwareMatch-
qualcommsdxr1Match-
Node
qualcommsdxr2_5g_firmwareMatch-
qualcommsdxr2_5gMatch-
Node
qualcommsm4125_firmwareMatch-
qualcommsm4125Match-
Node
qualcommsm6250_firmwareMatch-
qualcommsm6250Match-
Node
qualcommsm6250p_firmwareMatch-
qualcommsm6250pMatch-
Node
qualcommsm7250p_firmwareMatch-
qualcommsm7250pMatch-
Node
qualcommwcd9306_firmwareMatch-
qualcommwcd9306Match-
Node
qualcommwcd9326_firmwareMatch-
qualcommwcd9326Match-
Node
qualcommwcd9330_firmwareMatch-
qualcommwcd9330Match-
Node
qualcommwcd9335_firmwareMatch-
qualcommwcd9335Match-
Node
qualcommwcd9340_firmwareMatch-
qualcommwcd9340Match-
Node
qualcommwcd9341_firmwareMatch-
qualcommwcd9341Match-
Node
qualcommwcd9360_firmwareMatch-
qualcommwcd9360Match-
Node
qualcommwcd9370_firmwareMatch-
qualcommwcd9370Match-
Node
qualcommwcd9371_firmwareMatch-
qualcommwcd9371Match-
Node
qualcommwcd9375_firmwareMatch-
qualcommwcd9375Match-
Node
qualcommwcd9380_firmwareMatch-
qualcommwcd9380Match-
Node
qualcommwcd9385_firmwareMatch-
qualcommwcd9385Match-
Node
qualcommwcn3910_firmwareMatch-
qualcommwcn3910Match-
Node
qualcommwcn3950_firmwareMatch-
qualcommwcn3950Match-
Node
qualcommwcn3980_firmwareMatch-
qualcommwcn3980Match-
Node
qualcommwcn3988_firmwareMatch-
qualcommwcn3988Match-
Node
qualcommwcn3990_firmwareMatch-
qualcommwcn3990Match-
Node
qualcommwcn3991_firmwareMatch-
qualcommwcn3991Match-
Node
qualcommwcn3998_firmwareMatch-
qualcommwcn3998Match-
Node
qualcommwcn3999_firmwareMatch-
qualcommwcn3999Match-
Node
qualcommwcn6750_firmwareMatch-
qualcommwcn6750Match-
Node
qualcommwcn6850_firmwareMatch-
qualcommwcn6850Match-
Node
qualcommwcn6851_firmwareMatch-
qualcommwcn6851Match-
Node
qualcommwhs9410_firmwareMatch-
qualcommwhs9410Match-
Node
qualcommwsa8810_firmwareMatch-
qualcommwsa8810Match-
Node
qualcommwsa8815_firmwareMatch-
qualcommwsa8815Match-
Node
qualcommwsa8830_firmwareMatch-
qualcommwsa8830Match-
Node
qualcommwsa8835_firmwareMatch-
qualcommwsa8835Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| qualcomm:aqt1000_firmware | qualcomm aqt1000 firmware | eq | - |
CNA Affected
[
{
"product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "AQT1000, AR8031, AR8035, CSRA6620, CSRA6640, MDM9205, MDM9206, MDM9628, QCA4004, QCA6390, QCA6391, QCA6420, QCA6421, QCA6426, QCA6430, QCA6431, QCA6436, QCA6564A, QCA6564AU, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU, QCA6696, QCA8337, QCA9367, QCA9377, QCA9984, QCM2290, QCM4290, QCM6125, QCS2290, QCS405, QCS410, QCS4290, QCS603, QCS605, QCS610, QCS6125, QSM8250, SA415M, SA515M, SA6155P, SA8155, SA8155P, SA8195P, SC8180X+SDX55, SD 675, SD 8C, SD 8CX, SD460, SD480, SD662, SD665, SD670, SD675, SD678, SD690 5G, SD710, SD712, SD720G, SD730, SD750G, SD765, SD765G, SD768G, SD7c, SD855, SD865 5G, SD870, SD888 5G, SDM830, SDX24, SDX50M, SDX55, SDX55M, SDXR1, SDXR2 5G, SM4125, SM6250, SM6250P, SM7250P, WCD9306, WCD9326, WCD9330, WCD9335, WCD9340, WCD9341, WCD9360, WCD9370, WCD9371, WCD9375, WCD9380, WCD9385, WCN3910, WCN3950, WCN3980, WCN3988, WCN3990, WCN3991, WCN3998, WCN3999, WCN6750, WCN6850, WCN6851, WHS9410, WSA8810, WSA8815, WSA8830, WSA8835"
}
]
}
]Related
nvd
nvd
CVE-2020-11298
2021-06-09 07:15:07
prion
prion
Design/Logic Flaw
2021-06-09 07:15:00
cvelist
cvelist
CVE-2020-11298
2021-06-09 06:20:22
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.7%
Related for CVE-2020-11298