EUVD-2020-3535

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Out of bound access issue with cvp process control command in Snapdragon platforms due to validation error

Reporter	Title	Published	Views	Family All 7
CNNVD	Buffer Error Vulnerability in Multiple Qualcomm Products	5 Jan 202100:00	–	cnnvd
CVE	CVE-2020-11181	21 Jan 202109:41	–	cve
Cvelist	CVE-2020-11181	21 Jan 202109:41	–	cvelist
NCSC	Vulnerabilities fixed in Android	5 Jan 202100:00	–	ncsc
NVD	CVE-2020-11181	21 Jan 202110:15	–	nvd
Prion	Input validation	21 Jan 202110:15	–	prion
RedhatCVE	CVE-2020-11181	22 May 202515:10	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "99b58183-6305-3dca-b041-7f1236383fbc",
        "vendor": {
          "name": "Qualcomm, Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "c234351c-2e1f-3ffb-a50a-4613f7e003cd",
        "product": {
          "name": "Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile"
        },
        "product_version": "PM3003A, PM8009, PM8150A, PM8150B, PM8150C, PM8150L, PM8250, PMK8002, PMR525, PMX55, QBT2000, QCA6390, QCA6391, QCA6421, QCA6426, QCA6431, QCA6436, QFS2530, QFS2580, QSM8250, QTC800H, QTC801S, SD865 5G, SDR8250, SDR865, SDX55, SDX55M, SDXR2 5G, SMB1355, SMB1390, SMR525, SMR526, WCD9380, WCD9385, WCN6750, WCN6850, WCN6851, WSA8810, WSA8815"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.17.8

CVSS 27.2

EPSS0.00033