Lucene search

[email protected]NVD:CVE-2020-11154

HistoryNov 02, 2020 - 7:15 a.m.

CVE-2020-11154

2020-11-0207:15:13

CWE-120

[email protected]

web.nvd.nist.gov

buffer overflow

bluetooth

pdu data packet

snapdragon

apq8009

apq8053

qca6390

qcn7605

qcn7606

sa415m

sa515m

sa6155p

sa8155p

sc8180x

sdx55

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

41.2%

JSON

u’Buffer overflow while processing a crafted PDU data packet in bluetooth due to lack of check of buffer size before copying’ in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, QCA6390, QCN7605, QCN7606, SA415M, SA515M, SA6155P, SA8155P, SC8180X, SDX55

Affected configurations

Nvd

Node

qualcommapq8009_firmwareMatch-

AND

qualcommapq8009Match-

Node

qualcommapq8053_firmwareMatch-

AND

qualcommapq8053Match-

Node

qualcommqca6390_firmwareMatch-

AND

qualcommqca6390Match-

Node

qualcommqcn7605_firmwareMatch-

AND

qualcommqcn7605Match-

Node

qualcommqcn7606_firmwareMatch-

AND

qualcommqcn7606Match-

Node

qualcommsa415m_firmwareMatch-

AND

qualcommsa415mMatch-

Node

qualcommsa515m_firmwareMatch-

AND

qualcommsa515mMatch-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsc8180x_firmwareMatch-

AND

qualcommsc8180xMatch-

Node

qualcommsdx55_firmwareMatch-

AND

qualcommsdx55Match-

VendorProductVersionCPE
qualcommapq8009_firmware-cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*
qualcommapq8009-cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*
qualcommapq8053_firmware-cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*
qualcommapq8053-cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*
qualcommqca6390_firmware-cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*
qualcommqca6390-cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*
qualcommqcn7605_firmware-cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*
qualcommqcn7605-cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*
qualcommqcn7606_firmware-cpe:2.3:o:qualcomm:qcn7606_firmware:-:*:*:*:*:*:*:*
qualcommqcn7606-cpe:2.3:h:qualcomm:qcn7606:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	apq8009_firmware	-	cpe:2.3:o:qualcomm:apq8009_firmware:-:::::::*
qualcomm	apq8009	-	cpe:2.3:h:qualcomm:apq8009:-:::::::*
qualcomm	apq8053_firmware	-	cpe:2.3:o:qualcomm:apq8053_firmware:-:::::::*
qualcomm	apq8053	-	cpe:2.3:h:qualcomm:apq8053:-:::::::*
qualcomm	qca6390_firmware	-	cpe:2.3:o:qualcomm:qca6390_firmware:-:::::::*
qualcomm	qca6390	-	cpe:2.3:h:qualcomm:qca6390:-:::::::*
qualcomm	qcn7605_firmware	-	cpe:2.3:o:qualcomm:qcn7605_firmware:-:::::::*
qualcomm	qcn7605	-	cpe:2.3:h:qualcomm:qcn7605:-:::::::*
qualcomm	qcn7606_firmware	-	cpe:2.3:o:qualcomm:qcn7606_firmware:-:::::::*
qualcomm	qcn7606	-	cpe:2.3:h:qualcomm:qcn7606:-:::::::*

Rows per page:

1-10 of 221

References

www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin

www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

41.2%

JSON

Related for NVD:CVE-2020-11154

prion1 cvelist1 cve1 threatpost1