Lucene search

[email protected]NVD:CVE-2020-11183

HistoryJan 21, 2021 - 10:15 a.m.

CVE-2020-11183

2021-01-2110:15:14

CWE-120

[email protected]

web.nvd.nist.gov

buffer overflow

privilege escalation

display service

snapdragon auto

snapdragon connectivity

snapdragon consumer iot

snapdragon industrial iot

snapdragon mobile

snapdragon voice & music

snapdragon wearables

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

Percentile

12.6%

JSON

A process can potentially cause a buffer overflow in the display service allowing privilege escalation by executing code as that service in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Affected configurations

Nvd

Node

qualcommapq8009Match-

qualcommapq8009wMatch-

qualcommapq8017Match-

qualcommapq8037Match-

qualcommapq8053Match-

qualcommapq8096auMatch-

qualcommar8151Match-

qualcommmdm9206Match-

qualcommmdm9250Match-

qualcommmdm9650Match-

qualcommmdm9655Match-

qualcommmsm8909wMatch-

qualcommmsm8917Match-

qualcommmsm8920Match-

qualcommmsm8937Match-

qualcommmsm8940Match-

qualcommmsm8953Match-

qualcommmsm8996auMatch-

qualcommpm215Match-

qualcommpm439Match-

qualcommpm660Match-

qualcommpm660aMatch-

qualcommpm660lMatch-

qualcommpm8004Match-

qualcommpm8005Match-

qualcommpm855aMatch-

qualcommpm8909Match-

qualcommpm8916Match-

qualcommpm8937Match-

qualcommpm8940Match-

qualcommpm8953Match-

qualcommpm8996Match-

qualcommpm8998Match-

qualcommpmd9607Match-

qualcommpmd9655Match-

qualcommpmi632Match-

qualcommpmi8937Match-

qualcommpmi8940Match-

qualcommpmi8952Match-

qualcommpmi8994Match-

qualcommpmi8996Match-

qualcommpmi8998Match-

qualcommpmk8001Match-

qualcommpmm855auMatch-

qualcommpmm8996auMatch-

qualcommpmx20Match-

qualcommqat3514Match-

qualcommqat3522Match-

qualcommqat3550Match-

qualcommqbt1000Match-

qualcommqbt1500Match-

qualcommqca6174aMatch-

qualcommqca6310Match-

qualcommqca6320Match-

qualcommqca6564aMatch-

qualcommqca6564auMatch-

qualcommqca6574aMatch-

qualcommqca6574auMatch-

qualcommqca6595Match-

qualcommqca6595auMatch-

qualcommqca9367Match-

qualcommqca9377Match-

qualcommqca9379Match-

qualcommqcc1110Match-

qualcommqet4100Match-

qualcommqet4101Match-

qualcommqet4200aqMatch-

qualcommqet5100Match-

qualcommqfe2080fcMatch-

qualcommqfe2081fcMatch-

qualcommqfe2082fcMatch-

qualcommqfe2101Match-

qualcommqfe2550Match-

qualcommqfe3100Match-

qualcommqfe3440fcMatch-

qualcommqfe4301Match-

qualcommqfe4302Match-

qualcommqfe4303Match-

qualcommqfe4305Match-

qualcommqfe4308Match-

qualcommqfe4309Match-

qualcommqfe4320Match-

qualcommqfe4373fcMatch-

qualcommqfe4455fcMatch-

qualcommqfe4465fcMatch-

qualcommqln1021aqMatch-

qualcommqln1030Match-

qualcommqln1031Match-

qualcommqln1035bdMatch-

qualcommqln1036aqMatch-

qualcommqpa4340Match-

qualcommqpa4360Match-

qualcommqpa5373Match-

qualcommqpa5460Match-

qualcommqsw8573Match-

qualcommqtc800hMatch-

qualcommqtc800sMatch-

qualcommqtc800tMatch-

qualcommqtc801sMatch-

qualcommqualcomm215Match-

qualcommrgr7640auMatch-

qualcommrsw8577Match-

qualcommsd439Match-

qualcommsd450Match-

qualcommsd636Match-

qualcommsd660Match-

qualcommsd710Match-

qualcommsd712Match-

qualcommsd820Match-

qualcommsd821Match-

qualcommsd835Match-

qualcommsdm630Match-

qualcommsdm830Match-

qualcommsdr051Match-

qualcommsdr052Match-

qualcommsdr660Match-

qualcommsdw2500Match-

qualcommsdw3100Match-

qualcommsdx20Match-

qualcommsdx20mMatch-

qualcommsdx50mMatch-

qualcommsmb1350Match-

qualcommsmb1351Match-

qualcommsmb1355Match-

qualcommsmb1357Match-

qualcommsmb1358Match-

qualcommsmb1360Match-

qualcommsmb1380Match-

qualcommsmb231Match-

qualcommwcd9326Match-

qualcommwcd9330Match-

qualcommwcd9335Match-

qualcommwcd9340Match-

qualcommwcd9341Match-

qualcommwcn3615Match-

qualcommwcn3620Match-

qualcommwcn3660bMatch-

qualcommwcn3680Match-

qualcommwcn3680bMatch-

qualcommwcn3980Match-

qualcommwcn3990Match-

qualcommwgr7640Match-

qualcommwsa8810Match-

qualcommwsa8815Match-

qualcommwtr2955Match-

qualcommwtr2965Match-

qualcommwtr3905Match-

qualcommwtr3925Match-

qualcommwtr3950Match-

qualcommwtr4905Match-

qualcommwtr5975Match-

VendorProductVersionCPE
qualcommapq8009-cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*
qualcommapq8009w-cpe:2.3:h:qualcomm:apq8009w:-:*:*:*:*:*:*:*
qualcommapq8017-cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*
qualcommapq8037-cpe:2.3:h:qualcomm:apq8037:-:*:*:*:*:*:*:*
qualcommapq8053-cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*
qualcommapq8096au-cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*
qualcommar8151-cpe:2.3:h:qualcomm:ar8151:-:*:*:*:*:*:*:*
qualcommmdm9206-cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*
qualcommmdm9250-cpe:2.3:h:qualcomm:mdm9250:-:*:*:*:*:*:*:*
qualcommmdm9650-cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	apq8009	-	cpe:2.3:h:qualcomm:apq8009:-:::::::*
qualcomm	apq8009w	-	cpe:2.3:h:qualcomm:apq8009w:-:::::::*
qualcomm	apq8017	-	cpe:2.3:h:qualcomm:apq8017:-:::::::*
qualcomm	apq8037	-	cpe:2.3:h:qualcomm:apq8037:-:::::::*
qualcomm	apq8053	-	cpe:2.3:h:qualcomm:apq8053:-:::::::*
qualcomm	apq8096au	-	cpe:2.3:h:qualcomm:apq8096au:-:::::::*
qualcomm	ar8151	-	cpe:2.3:h:qualcomm:ar8151:-:::::::*
qualcomm	mdm9206	-	cpe:2.3:h:qualcomm:mdm9206:-:::::::*
qualcomm	mdm9250	-	cpe:2.3:h:qualcomm:mdm9250:-:::::::*
qualcomm	mdm9650	-	cpe:2.3:h:qualcomm:mdm9650:-:::::::*

Rows per page:

1-10 of 1511

References

www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin

www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2020-11183

prion1 cvelist1 cve1 androidsecurity1