CVE-2020-3699

🗓️ 30 Jul 2020 11:40:32Reported by qualcommType

Possible out of bound access while processing assoc response from host due to improper length check before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCM2150, QCN7605, QCS405, QCS605, QM215, SA6155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SDX55, SM6150, SM7150, SM8150, SM8250, SXR213

Reporter	Title	Published	Views	Family All 9
Android Security Bulletins	Android Security Bulletin—July 2020Stay organized with collectionsSave and categorize content based on your preferences.	6 Jul 202000:00	–	androidsecurity
Cvelist	CVE-2020-3699	30 Jul 202011:40	–	cvelist
EUVD	EUVD-2020-24970	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in Samsung Mobile	3 Sep 202000:00	–	ncsc
NVD	CVE-2020-3699	30 Jul 202012:15	–	nvd
OSV	ASB-A-153344687	1 Jul 202000:00	–	osv
Prion	Design/Logic Flaw	30 Jul 202012:15	–	prion
RedhatCVE	CVE-2020-3699	22 May 202517:49	–	redhatcve
ThreatPost	High-Severity Android RCE Flaw Fixed in August Security Update	5 Aug 202016:14	–	threatpost

NVD

Node

qualcomm apq8009_firmwareMatch-

AND

qualcomm apq8009Match-

Node

qualcomm apq8017_firmwareMatch-

AND

qualcomm apq8017Match-

Node

qualcomm apq8053_firmwareMatch-

AND

qualcomm apq8053Match-

Node

qualcomm apq8096au_firmwareMatch-

AND

qualcomm apq8096auMatch-

Node

qualcomm mdm9206_firmwareMatch-

AND

qualcomm mdm9206Match-

Node

qualcomm mdm9207c_firmwareMatch-

AND

qualcomm mdm9207cMatch-

Node

qualcomm mdm9607_firmwareMatch-

AND

qualcomm mdm9607Match-

Node

qualcomm mdm9640_firmwareMatch-

AND

qualcomm mdm9640Match-

Node

qualcomm mdm9650_firmwareMatch-

AND

qualcomm mdm9650Match-

Node

qualcomm msm8905_firmwareMatch-

AND

qualcomm msm8905Match-

Node

qualcomm msm8909w_firmwareMatch-

AND

qualcomm msm8909wMatch-

Node

qualcomm msm8917_firmwareMatch-

AND

qualcomm msm8917Match-

Node

qualcomm msm8920_firmwareMatch-

AND

qualcomm msm8920Match-

Node

qualcomm msm8937_firmwareMatch-

AND

qualcomm msm8937Match-

Node

qualcomm msm8940_firmwareMatch-

AND

qualcomm msm8940Match-

Node

qualcomm msm8953_firmwareMatch-

AND

qualcomm msm8953Match-

Node

qualcomm msm8996au_firmwareMatch-

AND

qualcomm msm8996auMatch-

Node

qualcomm nicobar_firmwareMatch-

AND

qualcomm nicobarMatch-

Node

qualcomm qca6174a_firmwareMatch-

AND

qualcomm qca6174aMatch-

Node

qualcomm qca6574au_firmwareMatch-

AND

qualcomm qca6574auMatch-

Node

qualcomm qca9377_firmwareMatch-

AND

qualcomm qca9377Match-

Node

qualcomm qca9379_firmwareMatch-

AND

qualcomm qca9379Match-

Node

qualcomm qcm2150_firmwareMatch-

AND

qualcomm qcm2150Match-

Node

qualcomm qcn7605_firmwareMatch-

AND

qualcomm qcn7605Match-

Node

qualcomm qcs405_firmwareMatch-

AND

qualcomm qcs405Match-

Node

qualcomm qcs605_firmwareMatch-

AND

qualcomm qcs605Match-

Node

qualcomm qm215_firmwareMatch-

AND

qualcomm qm215Match-

Node

qualcomm sa6155p_firmwareMatch-

AND

qualcomm sa6155pMatch-

Node

qualcomm saipan_firmwareMatch-

AND

qualcomm saipanMatch-

Node

qualcomm sc8180x_firmwareMatch-

AND

qualcomm sc8180xMatch-

Node

qualcomm sda845_firmwareMatch-

AND

qualcomm sda845Match-

Node

qualcomm sdm429_firmwareMatch-

AND

qualcomm sdm429Match-

Node

qualcomm sdm429w_firmwareMatch-

AND

qualcomm sdm429wMatch-

Node

qualcomm sdm439_firmwareMatch-

AND

qualcomm sdm439Match-

Node

qualcomm sdm450_firmwareMatch-

AND

qualcomm sdm450Match-

Node

qualcomm sdm630_firmwareMatch-

AND

qualcomm sdm630Match-

Node

qualcomm sdm632_firmwareMatch-

AND

qualcomm sdm632Match-

Node

qualcomm sdm636_firmwareMatch-

AND

qualcomm sdm636Match-

Node

qualcomm sdm660_firmwareMatch-

AND

qualcomm sdm660Match-

Node

qualcomm sdm845_firmwareMatch-

AND

qualcomm sdm845Match-

Node

qualcomm sdx20_firmwareMatch-

AND

qualcomm sdx20Match-

Node

qualcomm sdx55_firmwareMatch-

AND

qualcomm sdx55Match-

Node

qualcomm sm6150_firmwareMatch-

AND

qualcomm sm6150Match-

Node

qualcomm sm7150_firmwareMatch-

AND

qualcomm sm7150Match-

Node

qualcomm sm8150_firmwareMatch-

AND

qualcomm sm8150Match-

Node

qualcomm sm8250_firmwareMatch-

AND

qualcomm sm8250Match-

Node

qualcomm sxr2130_firmwareMatch-

AND

qualcomm sxr2130Match-

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "APQ8009, APQ8017, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCM2150, QCN7605, QCS405, QCS605, QM215, SA6155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin
qualcomm	www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin

21 Nov 2024 05:31Current

9.4High risk

Vulners AI Score9.4

CVSS 27.5

CVSS 3.19.8

EPSS0.00336

CWE-120