CVE-2020-11225

9.8

CRITICAL

Snapdragon Buffer Overflow

Description

Out of bound access in WLAN driver due to lack of validation of array length before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

INFO

Published Date :

Jan. 21, 2021, 10:15 a.m.

Last Modified :

Jan. 29, 2021, 11:42 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

5.9

Exploitability Score :

3.9

Affected Products

The following products are affected by CVE-2020-11225 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Qualcomm	apq8064au
2	Qualcomm	apq8096au
3	Qualcomm	aqt1000
4	Qualcomm	ar8031
5	Qualcomm	ar8035
6	Qualcomm	csra6620
7	Qualcomm	csra6640
8	Qualcomm	csrb31024
9	Qualcomm	mdm9650
10	Qualcomm	msm8996au
11	Qualcomm	pm3003a
12	Qualcomm	pm4125
13	Qualcomm	pm456
14	Qualcomm	pm6125
15	Qualcomm	pm6150
16	Qualcomm	pm6150a
17	Qualcomm	pm6150l
18	Qualcomm	pm6250
19	Qualcomm	pm6350
20	Qualcomm	pm640a
21	Qualcomm	pm640l
22	Qualcomm	pm640p
23	Qualcomm	pm660
24	Qualcomm	pm660a
25	Qualcomm	pm660l
26	Qualcomm	pm7150a
27	Qualcomm	pm7150l
28	Qualcomm	pm7250
29	Qualcomm	pm7250b
30	Qualcomm	pm7350c
31	Qualcomm	pm8004
32	Qualcomm	pm8005
33	Qualcomm	pm8008
34	Qualcomm	pm8009
35	Qualcomm	pm8150
36	Qualcomm	pm8150a
37	Qualcomm	pm8150b
38	Qualcomm	pm8150c
39	Qualcomm	pm8150l
40	Qualcomm	pm8250
41	Qualcomm	pm8350
42	Qualcomm	pm8350b
43	Qualcomm	pm8350bh
44	Qualcomm	pm8350bhs
45	Qualcomm	pm8350c
46	Qualcomm	pm855
47	Qualcomm	pm855b
48	Qualcomm	pm855l
49	Qualcomm	pm855p
50	Qualcomm	pm8998
51	Qualcomm	pmc1000h
52	Qualcomm	pmd9655
53	Qualcomm	pmi632
54	Qualcomm	pmi8998
55	Qualcomm	pmk7350
56	Qualcomm	pmk8002
57	Qualcomm	pmk8003
58	Qualcomm	pmk8350
59	Qualcomm	pmm6155au
60	Qualcomm	pmm8155au
61	Qualcomm	pmm8195au
62	Qualcomm	pmm855au
63	Qualcomm	pmm8996au
64	Qualcomm	pmr525
65	Qualcomm	pmr735a
66	Qualcomm	pmr735b
67	Qualcomm	pmx24
68	Qualcomm	pmx50
69	Qualcomm	pmx55
70	Qualcomm	qat3514
71	Qualcomm	qat3516
72	Qualcomm	qat3518
73	Qualcomm	qat3519
74	Qualcomm	qat3522
75	Qualcomm	qat3550
76	Qualcomm	qat3555
77	Qualcomm	qat5515
78	Qualcomm	qat5516
79	Qualcomm	qat5522
80	Qualcomm	qat5533
81	Qualcomm	qat5568
82	Qualcomm	qbt1500
83	Qualcomm	qbt2000
84	Qualcomm	qca6175a
85	Qualcomm	qca6310
86	Qualcomm	qca6320
87	Qualcomm	qca6335
88	Qualcomm	qca6390
89	Qualcomm	qca6391
90	Qualcomm	qca6420
91	Qualcomm	qca6421
92	Qualcomm	qca6426
93	Qualcomm	qca6430
94	Qualcomm	qca6431
95	Qualcomm	qca6436
96	Qualcomm	qca6564
97	Qualcomm	qca6564a
98	Qualcomm	qca6564au
99	Qualcomm	qca6574
100	Qualcomm	qca6574a
101	Qualcomm	qca6574au
102	Qualcomm	qca6584au
103	Qualcomm	qca6595
104	Qualcomm	qca6595au
105	Qualcomm	qca6694
106	Qualcomm	qca6696
107	Qualcomm	qca9984
108	Qualcomm	qcm2290
109	Qualcomm	qcm4290
110	Qualcomm	qcm6125
111	Qualcomm	qcs2290
112	Qualcomm	qcs405
113	Qualcomm	qcs410
114	Qualcomm	qcs4290
115	Qualcomm	qcs610
116	Qualcomm	qcs6125
117	Qualcomm	qdm2301
118	Qualcomm	qdm2302
119	Qualcomm	qdm2305
120	Qualcomm	qdm2307
121	Qualcomm	qdm2308
122	Qualcomm	qdm2310
123	Qualcomm	qdm3301
124	Qualcomm	qdm3302
125	Qualcomm	qdm4643
126	Qualcomm	qdm4650
127	Qualcomm	qdm5579
128	Qualcomm	qdm5620
129	Qualcomm	qdm5621
130	Qualcomm	qdm5650
131	Qualcomm	qdm5652
132	Qualcomm	qdm5670
133	Qualcomm	qdm5671
134	Qualcomm	qdm5677
135	Qualcomm	qdm5679
136	Qualcomm	qet4100
137	Qualcomm	qet4101
138	Qualcomm	qet4200aq
139	Qualcomm	qet5100
140	Qualcomm	qet5100m
141	Qualcomm	qet6100
142	Qualcomm	qet6110
143	Qualcomm	qfs2530
144	Qualcomm	qfs2580
145	Qualcomm	qfs2608
146	Qualcomm	qfs2630
147	Qualcomm	qln1020
148	Qualcomm	qln1021aq
149	Qualcomm	qln1030
150	Qualcomm	qln1031
151	Qualcomm	qln1036aq
152	Qualcomm	qln4640
153	Qualcomm	qln4642
154	Qualcomm	qln4650
155	Qualcomm	qln5020
156	Qualcomm	qln5030
157	Qualcomm	qln5040
158	Qualcomm	qpa2625
159	Qualcomm	qpa4340
160	Qualcomm	qpa4360
161	Qualcomm	qpa4361
162	Qualcomm	qpa5461
163	Qualcomm	qpa5580
164	Qualcomm	qpa5581
165	Qualcomm	qpa6560
166	Qualcomm	qpa8673
167	Qualcomm	qpa8675
168	Qualcomm	qpa8686
169	Qualcomm	qpa8801
170	Qualcomm	qpa8802
171	Qualcomm	qpa8803
172	Qualcomm	qpa8821
173	Qualcomm	qpa8842
174	Qualcomm	qpm2630
175	Qualcomm	qpm4621
176	Qualcomm	qpm4630
177	Qualcomm	qpm4640
178	Qualcomm	qpm4641
179	Qualcomm	qpm4650
180	Qualcomm	qpm5620
181	Qualcomm	qpm5621
182	Qualcomm	qpm5641
183	Qualcomm	qpm5657
184	Qualcomm	qpm5658
185	Qualcomm	qpm5670
186	Qualcomm	qpm5677
187	Qualcomm	qpm5679
188	Qualcomm	qpm5870
189	Qualcomm	qpm5875
190	Qualcomm	qpm6582
191	Qualcomm	qpm6585
192	Qualcomm	qpm6621
193	Qualcomm	qpm6670
194	Qualcomm	qpm8820
195	Qualcomm	qpm8830
196	Qualcomm	qpm8870
197	Qualcomm	qpm8895
198	Qualcomm	qsm7250
199	Qualcomm	qsw6310
200	Qualcomm	qsw8573
201	Qualcomm	qsw8574
202	Qualcomm	qtc410s
203	Qualcomm	qtc800h
204	Qualcomm	qtc800s
205	Qualcomm	qtc801s
206	Qualcomm	qtm525
207	Qualcomm	rgr7640au
208	Qualcomm	rsw8577
209	Qualcomm	sa415m
210	Qualcomm	sa6145p
211	Qualcomm	sa6150p
212	Qualcomm	sa6155
213	Qualcomm	sa6155p
214	Qualcomm	sa8150p
215	Qualcomm	sa8155
216	Qualcomm	sa8155p
217	Qualcomm	sa8195p
218	Qualcomm	sd460
219	Qualcomm	sd660
220	Qualcomm	sd662
221	Qualcomm	sd665
222	Qualcomm	sd670
223	Qualcomm	sd675
224	Qualcomm	sd710
225	Qualcomm	sd720g
226	Qualcomm	sd730
227	Qualcomm	sd750g
228	Qualcomm	sd765
229	Qualcomm	sd765g
230	Qualcomm	sd768g
231	Qualcomm	sd835
232	Qualcomm	sd845
233	Qualcomm	sd855
234	Qualcomm	sdm630
235	Qualcomm	sdr051
236	Qualcomm	sdr052
237	Qualcomm	sdr425
238	Qualcomm	sdr660
239	Qualcomm	sdr660g
240	Qualcomm	sdr675
241	Qualcomm	sdr735
242	Qualcomm	sdr735g
243	Qualcomm	sdr8150
244	Qualcomm	sdr8250
245	Qualcomm	sdr865
246	Qualcomm	sdx50m
247	Qualcomm	sdx55
248	Qualcomm	sdx55m
249	Qualcomm	sdxr1
250	Qualcomm	sm4125
251	Qualcomm	sm6250
252	Qualcomm	sm6250p
253	Qualcomm	sm7250p
254	Qualcomm	sm7350
255	Qualcomm	smb1351
256	Qualcomm	smb1354
257	Qualcomm	smb1355
258	Qualcomm	smb1380
259	Qualcomm	smb1381
260	Qualcomm	smb1390
261	Qualcomm	smb1394
262	Qualcomm	smb1395
263	Qualcomm	smb1396
264	Qualcomm	smb1398
265	Qualcomm	smb2351
266	Qualcomm	smr525
267	Qualcomm	smr526
268	Qualcomm	smr545
269	Qualcomm	smr546
270	Qualcomm	wcd9326
271	Qualcomm	wcd9335
272	Qualcomm	wcd9340
273	Qualcomm	wcd9341
274	Qualcomm	wcd9370
275	Qualcomm	wcd9371
276	Qualcomm	wcd9375
277	Qualcomm	wcd9380
278	Qualcomm	wcd9385
279	Qualcomm	wcn3910
280	Qualcomm	wcn3950
281	Qualcomm	wcn3980
282	Qualcomm	wcn3988
283	Qualcomm	wcn3990
284	Qualcomm	wcn3991
285	Qualcomm	wcn3998
286	Qualcomm	wcn3999
287	Qualcomm	wcn6740
288	Qualcomm	wcn6750
289	Qualcomm	wcn6850
290	Qualcomm	wcn6851
291	Qualcomm	wcn6856
292	Qualcomm	wgr7640
293	Qualcomm	wsa8810
294	Qualcomm	wsa8815
295	Qualcomm	wsa8830
296	Qualcomm	wsa8835
297	Qualcomm	wtr2965
298	Qualcomm	wtr3925
299	Qualcomm	wtr4905
300	Qualcomm	wtr5975
301	Qualcomm	wtr6955
302	Qualcomm	sd636
303	Qualcomm	sd8c
304	Qualcomm	sd8cx
305	Qualcomm	qca8337
306	Qualcomm	qtm527
307	Qualcomm	sd6905g
308	Qualcomm	sd8655g
309	Qualcomm	sd8885g
310	Qualcomm	sdxr25g
311	Qualcomm	fsm10055
312	Qualcomm	qpm5541
313	Qualcomm	qpm5577
314	Qualcomm	qpm5579
315	Qualcomm	qpm6325
316	Qualcomm	qpm6375
317	Qualcomm	sa515m
318	Qualcomm	fsm10056
319	Qualcomm	ar9380
320	Qualcomm	csr8811
321	Qualcomm	ipq4018
322	Qualcomm	ipq4019
323	Qualcomm	ipq4028
324	Qualcomm	ipq4029
325	Qualcomm	ipq6000
326	Qualcomm	ipq6005
327	Qualcomm	ipq6010
328	Qualcomm	ipq6018
329	Qualcomm	ipq6028
330	Qualcomm	ipq8064
331	Qualcomm	ipq8065
332	Qualcomm	ipq8068
333	Qualcomm	ipq8070
334	Qualcomm	ipq8070a
335	Qualcomm	ipq8071
336	Qualcomm	ipq8071a
337	Qualcomm	ipq8072
338	Qualcomm	ipq8072a
339	Qualcomm	ipq8074
340	Qualcomm	ipq8074a
341	Qualcomm	ipq8076
342	Qualcomm	ipq8076a
343	Qualcomm	ipq8078
344	Qualcomm	ipq8078a
345	Qualcomm	ipq8173
346	Qualcomm	ipq8174
347	Qualcomm	qca4024
348	Qualcomm	qca6428
349	Qualcomm	qca6438
350	Qualcomm	qca7500
351	Qualcomm	qca8072
352	Qualcomm	qca8075
353	Qualcomm	qca8081
354	Qualcomm	qca9880
355	Qualcomm	qca9886
356	Qualcomm	qca9888
357	Qualcomm	qca9889
358	Qualcomm	qca9898
359	Qualcomm	qca9980
360	Qualcomm	qca9985
361	Qualcomm	qca9990
362	Qualcomm	qca9992
363	Qualcomm	qca9994
364	Qualcomm	qcn5021
365	Qualcomm	qcn5022
366	Qualcomm	qcn5024
367	Qualcomm	qcn5052
368	Qualcomm	qcn5054
369	Qualcomm	qcn5064
370	Qualcomm	qcn5121
371	Qualcomm	qcn5122
372	Qualcomm	qcn5124
373	Qualcomm	qcn5152
374	Qualcomm	qcn5154
375	Qualcomm	qcn5164
376	Qualcomm	qcn5550
377	Qualcomm	qcn7605
378	Qualcomm	qcn7606
379	Qualcomm	qcn9000
380	Qualcomm	qcn9074
381	Qualcomm	ipq5010
382	Qualcomm	ipq5018
383	Qualcomm	ipq8069
384	Qualcomm	pmp8074
385	Qualcomm	qcn6023
386	Qualcomm	qcn6024
387	Qualcomm	qcn9012
388	Qualcomm	qcn9022
389	Qualcomm	qcn9024
390	Qualcomm	qcn9070
391	Qualcomm	qcn9072
392	Qualcomm	qcn9100
393	Qualcomm	wcn6855
394	Qualcomm	qca1062
395	Qualcomm	qca1064
396	Qualcomm	qca9531
397	Qualcomm	qca9558
398	Qualcomm	qca9561
399	Qualcomm	qca9563
400	Qualcomm	qca9882
401	Qualcomm	qca9887
402	Qualcomm	qca9896
403	Qualcomm	qca9982
404	Qualcomm	qcn5500
405	Qualcomm	qcn5502

: Total Affected Vendor : 1 | Products : 405

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2020-11225.

URL	Resource
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin	Broken Link
https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin	Patch Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2020-11225 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2020-11225 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action Type Old Value New Value

Initial Analysis by [email protected]

Jan. 29, 2021

Action	Type	Old Value	New Value
Added	CVSS V2		NIST (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Changed	Reference Type	https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin No Types Assigned	https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin Broken Link
Added	Reference		https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin [Patch, Vendor Advisory]
Added	CWE		NIST CWE-787
Added	CWE		NIST CWE-120
Added	CPE Configuration		OR cpe:2.3:h:qualcomm:apq8064au:-::::::: cpe:2.3:h:qualcomm:apq8096au:-::::::: cpe:2.3:h:qualcomm:aqt1000:-::::::: cpe:2.3:h:qualcomm:ar8031:-::::::: cpe:2.3:h:qualcomm:ar8035:-::::::: cpe:2.3:h:qualcomm:ar9380:-::::::: cpe:2.3:h:qualcomm:csr8811:-::::::: cpe:2.3:h:qualcomm:csra6620:-::::::: cpe:2.3:h:qualcomm:csra6640:-::::::: cpe:2.3:h:qualcomm:csrb31024:-::::::: cpe:2.3:h:qualcomm:fsm10055:-::::::: cpe:2.3:h:qualcomm:fsm10056:-::::::: cpe:2.3:h:qualcomm:ipq4018:-::::::: cpe:2.3:h:qualcomm:ipq4019:-::::::: cpe:2.3:h:qualcomm:ipq4028:-::::::: cpe:2.3:h:qualcomm:ipq4029:-::::::: cpe:2.3:h:qualcomm:ipq5010:-::::::: cpe:2.3:h:qualcomm:ipq5018:-::::::: cpe:2.3:h:qualcomm:ipq6000:-::::::: cpe:2.3:h:qualcomm:ipq6005:-::::::: cpe:2.3:h:qualcomm:ipq6010:-::::::: cpe:2.3:h:qualcomm:ipq6018:-::::::: cpe:2.3:h:qualcomm:ipq6028:-::::::: cpe:2.3:h:qualcomm:ipq8064:-::::::: cpe:2.3:h:qualcomm:ipq8065:-::::::: cpe:2.3:h:qualcomm:ipq8068:-::::::: cpe:2.3:h:qualcomm:ipq8069:-::::::: cpe:2.3:h:qualcomm:ipq8070:-::::::: cpe:2.3:h:qualcomm:ipq8070a:-::::::: cpe:2.3:h:qualcomm:ipq8071:-::::::: cpe:2.3:h:qualcomm:ipq8071a:-::::::: cpe:2.3:h:qualcomm:ipq8072:-::::::: cpe:2.3:h:qualcomm:ipq8072a:-::::::: cpe:2.3:h:qualcomm:ipq8074:-::::::: cpe:2.3:h:qualcomm:ipq8074a:-::::::: cpe:2.3:h:qualcomm:ipq8076:-::::::: cpe:2.3:h:qualcomm:ipq8076a:-::::::: cpe:2.3:h:qualcomm:ipq8078:-::::::: cpe:2.3:h:qualcomm:ipq8078a:-::::::: cpe:2.3:h:qualcomm:ipq8173:-::::::: cpe:2.3:h:qualcomm:ipq8174:-::::::: cpe:2.3:h:qualcomm:mdm9650:-::::::: cpe:2.3:h:qualcomm:msm8996au:-::::::: cpe:2.3:h:qualcomm:pm3003a:-::::::: cpe:2.3:h:qualcomm:pm4125:-::::::: cpe:2.3:h:qualcomm:pm456:-::::::: cpe:2.3:h:qualcomm:pm6125:-::::::: cpe:2.3:h:qualcomm:pm6150:-::::::: cpe:2.3:h:qualcomm:pm6150a:-::::::: cpe:2.3:h:qualcomm:pm6150l:-::::::: cpe:2.3:h:qualcomm:pm6250:-::::::: cpe:2.3:h:qualcomm:pm6350:-::::::: cpe:2.3:h:qualcomm:pm640a:-::::::: cpe:2.3:h:qualcomm:pm640l:-::::::: cpe:2.3:h:qualcomm:pm640p:-::::::: cpe:2.3:h:qualcomm:pm660:-::::::: cpe:2.3:h:qualcomm:pm660a:-::::::: cpe:2.3:h:qualcomm:pm660l:-::::::: cpe:2.3:h:qualcomm:pm7150a:-::::::: cpe:2.3:h:qualcomm:pm7150l:-::::::: cpe:2.3:h:qualcomm:pm7250:-::::::: cpe:2.3:h:qualcomm:pm7250b:-::::::: cpe:2.3:h:qualcomm:pm7350c:-::::::: cpe:2.3:h:qualcomm:pm8004:-::::::: cpe:2.3:h:qualcomm:pm8005:-::::::: cpe:2.3:h:qualcomm:pm8008:-::::::: cpe:2.3:h:qualcomm:pm8009:-::::::: cpe:2.3:h:qualcomm:pm8150:-::::::: cpe:2.3:h:qualcomm:pm8150a:-::::::: cpe:2.3:h:qualcomm:pm8150b:-::::::: cpe:2.3:h:qualcomm:pm8150c:-::::::: cpe:2.3:h:qualcomm:pm8150l:-::::::: cpe:2.3:h:qualcomm:pm8250:-::::::: cpe:2.3:h:qualcomm:pm8350:-::::::: cpe:2.3:h:qualcomm:pm8350b:-::::::: cpe:2.3:h:qualcomm:pm8350bh:-::::::: cpe:2.3:h:qualcomm:pm8350bhs:-::::::: cpe:2.3:h:qualcomm:pm8350c:-::::::: cpe:2.3:h:qualcomm:pm855:-::::::: cpe:2.3:h:qualcomm:pm855b:-::::::: cpe:2.3:h:qualcomm:pm855l:-::::::: cpe:2.3:h:qualcomm:pm855p:-::::::: cpe:2.3:h:qualcomm:pm8998:-::::::: cpe:2.3:h:qualcomm:pmc1000h:-::::::: cpe:2.3:h:qualcomm:pmd9655:-::::::: cpe:2.3:h:qualcomm:pmi632:-::::::: cpe:2.3:h:qualcomm:pmi8998:-::::::: cpe:2.3:h:qualcomm:pmk7350:-::::::: cpe:2.3:h:qualcomm:pmk8002:-::::::: cpe:2.3:h:qualcomm:pmk8003:-::::::: cpe:2.3:h:qualcomm:pmk8350:-::::::: cpe:2.3:h:qualcomm:pmm6155au:-::::::: cpe:2.3:h:qualcomm:pmm8155au:-::::::: cpe:2.3:h:qualcomm:pmm8195au:-::::::: cpe:2.3:h:qualcomm:pmm855au:-::::::: cpe:2.3:h:qualcomm:pmm8996au:-::::::: cpe:2.3:h:qualcomm:pmp8074:-::::::: cpe:2.3:h:qualcomm:pmr525:-::::::: cpe:2.3:h:qualcomm:pmr735a:-::::::: cpe:2.3:h:qualcomm:pmr735b:-::::::: cpe:2.3:h:qualcomm:pmx24:-::::::: cpe:2.3:h:qualcomm:pmx50:-::::::: cpe:2.3:h:qualcomm:pmx55:-::::::: cpe:2.3:h:qualcomm:qat3514:-::::::: cpe:2.3:h:qualcomm:qat3516:-::::::: cpe:2.3:h:qualcomm:qat3518:-::::::: cpe:2.3:h:qualcomm:qat3519:-::::::: cpe:2.3:h:qualcomm:qat3522:-::::::: cpe:2.3:h:qualcomm:qat3550:-::::::: cpe:2.3:h:qualcomm:qat3555:-::::::: cpe:2.3:h:qualcomm:qat5515:-::::::: cpe:2.3:h:qualcomm:qat5516:-::::::: cpe:2.3:h:qualcomm:qat5522:-::::::: cpe:2.3:h:qualcomm:qat5533:-::::::: cpe:2.3:h:qualcomm:qat5568:-::::::: cpe:2.3:h:qualcomm:qbt1500:-::::::: cpe:2.3:h:qualcomm:qbt2000:-::::::: cpe:2.3:h:qualcomm:qca1062:-::::::: cpe:2.3:h:qualcomm:qca1064:-::::::: cpe:2.3:h:qualcomm:qca4024:-::::::: cpe:2.3:h:qualcomm:qca6175a:-::::::: cpe:2.3:h:qualcomm:qca6310:-::::::: cpe:2.3:h:qualcomm:qca6320:-::::::: cpe:2.3:h:qualcomm:qca6335:-::::::: cpe:2.3:h:qualcomm:qca6390:-::::::: cpe:2.3:h:qualcomm:qca6391:-::::::: cpe:2.3:h:qualcomm:qca6420:-::::::: cpe:2.3:h:qualcomm:qca6421:-::::::: cpe:2.3:h:qualcomm:qca6426:-::::::: cpe:2.3:h:qualcomm:qca6428:-::::::: cpe:2.3:h:qualcomm:qca6430:-::::::: cpe:2.3:h:qualcomm:qca6431:-::::::: cpe:2.3:h:qualcomm:qca6436:-::::::: cpe:2.3:h:qualcomm:qca6438:-::::::: cpe:2.3:h:qualcomm:qca6564:-::::::: cpe:2.3:h:qualcomm:qca6564a:-::::::: cpe:2.3:h:qualcomm:qca6564au:-::::::: cpe:2.3:h:qualcomm:qca6574:-::::::: cpe:2.3:h:qualcomm:qca6574a:-::::::: cpe:2.3:h:qualcomm:qca6574au:-::::::: cpe:2.3:h:qualcomm:qca6584au:-::::::: cpe:2.3:h:qualcomm:qca6595:-::::::: cpe:2.3:h:qualcomm:qca6595au:-::::::: cpe:2.3:h:qualcomm:qca6694:-::::::: cpe:2.3:h:qualcomm:qca6696:-::::::: cpe:2.3:h:qualcomm:qca7500:-::::::: cpe:2.3:h:qualcomm:qca8072:-::::::: cpe:2.3:h:qualcomm:qca8075:-::::::: cpe:2.3:h:qualcomm:qca8081:-::::::: cpe:2.3:h:qualcomm:qca8337:-::::::: cpe:2.3:h:qualcomm:qca9531:-::::::: cpe:2.3:h:qualcomm:qca9558:-::::::: cpe:2.3:h:qualcomm:qca9561:-::::::: cpe:2.3:h:qualcomm:qca9563:-::::::: cpe:2.3:h:qualcomm:qca9880:-::::::: cpe:2.3:h:qualcomm:qca9882:-::::::: cpe:2.3:h:qualcomm:qca9886:-::::::: cpe:2.3:h:qualcomm:qca9887:-::::::: cpe:2.3:h:qualcomm:qca9888:-::::::: cpe:2.3:h:qualcomm:qca9889:-::::::: cpe:2.3:h:qualcomm:qca9896:-::::::: cpe:2.3:h:qualcomm:qca9898:-::::::: cpe:2.3:h:qualcomm:qca9980:-::::::: cpe:2.3:h:qualcomm:qca9982:-::::::: cpe:2.3:h:qualcomm:qca9984:-::::::: cpe:2.3:h:qualcomm:qca9985:-::::::: cpe:2.3:h:qualcomm:qca9990:-::::::: cpe:2.3:h:qualcomm:qca9992:-::::::: cpe:2.3:h:qualcomm:qca9994:-::::::: cpe:2.3:h:qualcomm:qcm2290:-::::::: cpe:2.3:h:qualcomm:qcm4290:-::::::: cpe:2.3:h:qualcomm:qcm6125:-::::::: cpe:2.3:h:qualcomm:qcn5021:-::::::: cpe:2.3:h:qualcomm:qcn5022:-::::::: cpe:2.3:h:qualcomm:qcn5024:-::::::: cpe:2.3:h:qualcomm:qcn5052:-::::::: cpe:2.3:h:qualcomm:qcn5054:-::::::: cpe:2.3:h:qualcomm:qcn5064:-::::::: cpe:2.3:h:qualcomm:qcn5121:-::::::: cpe:2.3:h:qualcomm:qcn5122:-::::::: cpe:2.3:h:qualcomm:qcn5124:-::::::: cpe:2.3:h:qualcomm:qcn5152:-::::::: cpe:2.3:h:qualcomm:qcn5154:-::::::: cpe:2.3:h:qualcomm:qcn5164:-::::::: cpe:2.3:h:qualcomm:qcn5500:-::::::: cpe:2.3:h:qualcomm:qcn5502:-::::::: cpe:2.3:h:qualcomm:qcn5550:-::::::: cpe:2.3:h:qualcomm:qcn6023:-::::::: cpe:2.3:h:qualcomm:qcn6024:-::::::: cpe:2.3:h:qualcomm:qcn7605:-::::::: cpe:2.3:h:qualcomm:qcn7606:-::::::: cpe:2.3:h:qualcomm:qcn9000:-::::::: cpe:2.3:h:qualcomm:qcn9012:-::::::: cpe:2.3:h:qualcomm:qcn9022:-::::::: cpe:2.3:h:qualcomm:qcn9024:-::::::: cpe:2.3:h:qualcomm:qcn9070:-::::::: cpe:2.3:h:qualcomm:qcn9072:-::::::: cpe:2.3:h:qualcomm:qcn9074:-::::::: cpe:2.3:h:qualcomm:qcn9100:-::::::: cpe:2.3:h:qualcomm:qcs2290:-::::::: cpe:2.3:h:qualcomm:qcs405:-::::::: cpe:2.3:h:qualcomm:qcs410:-::::::: cpe:2.3:h:qualcomm:qcs4290:-::::::: cpe:2.3:h:qualcomm:qcs610:-::::::: cpe:2.3:h:qualcomm:qcs6125:-::::::: cpe:2.3:h:qualcomm:qdm2301:-::::::: cpe:2.3:h:qualcomm:qdm2302:-::::::: cpe:2.3:h:qualcomm:qdm2305:-::::::: cpe:2.3:h:qualcomm:qdm2307:-::::::: cpe:2.3:h:qualcomm:qdm2308:-::::::: cpe:2.3:h:qualcomm:qdm2310:-::::::: cpe:2.3:h:qualcomm:qdm3301:-::::::: cpe:2.3:h:qualcomm:qdm3302:-::::::: cpe:2.3:h:qualcomm:qdm4643:-::::::: cpe:2.3:h:qualcomm:qdm4650:-::::::: cpe:2.3:h:qualcomm:qdm5579:-::::::: cpe:2.3:h:qualcomm:qdm5620:-::::::: cpe:2.3:h:qualcomm:qdm5621:-::::::: cpe:2.3:h:qualcomm:qdm5650:-::::::: cpe:2.3:h:qualcomm:qdm5652:-::::::: cpe:2.3:h:qualcomm:qdm5670:-::::::: cpe:2.3:h:qualcomm:qdm5671:-::::::: cpe:2.3:h:qualcomm:qdm5677:-::::::: cpe:2.3:h:qualcomm:qdm5679:-::::::: cpe:2.3:h:qualcomm:qet4100:-::::::: cpe:2.3:h:qualcomm:qet4101:-::::::: cpe:2.3:h:qualcomm:qet4200aq:-::::::: cpe:2.3:h:qualcomm:qet5100:-::::::: cpe:2.3:h:qualcomm:qet5100m:-::::::: cpe:2.3:h:qualcomm:qet6100:-::::::: cpe:2.3:h:qualcomm:qet6110:-::::::: cpe:2.3:h:qualcomm:qfs2530:-::::::: cpe:2.3:h:qualcomm:qfs2580:-::::::: cpe:2.3:h:qualcomm:qfs2608:-::::::: cpe:2.3:h:qualcomm:qfs2630:-::::::: cpe:2.3:h:qualcomm:qln1020:-::::::: cpe:2.3:h:qualcomm:qln1021aq:-::::::: cpe:2.3:h:qualcomm:qln1030:-::::::: cpe:2.3:h:qualcomm:qln1031:-::::::: cpe:2.3:h:qualcomm:qln1036aq:-::::::: cpe:2.3:h:qualcomm:qln4640:-::::::: cpe:2.3:h:qualcomm:qln4642:-::::::: cpe:2.3:h:qualcomm:qln4650:-::::::: cpe:2.3:h:qualcomm:qln5020:-::::::: cpe:2.3:h:qualcomm:qln5030:-::::::: cpe:2.3:h:qualcomm:qln5040:-::::::: cpe:2.3:h:qualcomm:qpa2625:-::::::: cpe:2.3:h:qualcomm:qpa4340:-::::::: cpe:2.3:h:qualcomm:qpa4360:-::::::: cpe:2.3:h:qualcomm:qpa4361:-::::::: cpe:2.3:h:qualcomm:qpa5461:-::::::: cpe:2.3:h:qualcomm:qpa5580:-::::::: cpe:2.3:h:qualcomm:qpa5581:-::::::: cpe:2.3:h:qualcomm:qpa6560:-::::::: cpe:2.3:h:qualcomm:qpa8673:-::::::: cpe:2.3:h:qualcomm:qpa8675:-::::::: cpe:2.3:h:qualcomm:qpa8686:-::::::: cpe:2.3:h:qualcomm:qpa8801:-::::::: cpe:2.3:h:qualcomm:qpa8802:-::::::: cpe:2.3:h:qualcomm:qpa8803:-::::::: cpe:2.3:h:qualcomm:qpa8821:-::::::: cpe:2.3:h:qualcomm:qpa8842:-::::::: cpe:2.3:h:qualcomm:qpm2630:-::::::: cpe:2.3:h:qualcomm:qpm4621:-::::::: cpe:2.3:h:qualcomm:qpm4630:-::::::: cpe:2.3:h:qualcomm:qpm4640:-::::::: cpe:2.3:h:qualcomm:qpm4641:-::::::: cpe:2.3:h:qualcomm:qpm4650:-::::::: cpe:2.3:h:qualcomm:qpm5541:-::::::: cpe:2.3:h:qualcomm:qpm5577:-::::::: cpe:2.3:h:qualcomm:qpm5579:-::::::: cpe:2.3:h:qualcomm:qpm5620:-::::::: cpe:2.3:h:qualcomm:qpm5621:-::::::: cpe:2.3:h:qualcomm:qpm5641:-::::::: cpe:2.3:h:qualcomm:qpm5657:-::::::: cpe:2.3:h:qualcomm:qpm5658:-::::::: cpe:2.3:h:qualcomm:qpm5670:-::::::: cpe:2.3:h:qualcomm:qpm5677:-::::::: cpe:2.3:h:qualcomm:qpm5679:-::::::: cpe:2.3:h:qualcomm:qpm5870:-::::::: cpe:2.3:h:qualcomm:qpm5875:-::::::: cpe:2.3:h:qualcomm:qpm6325:-::::::: cpe:2.3:h:qualcomm:qpm6375:-::::::: cpe:2.3:h:qualcomm:qpm6582:-::::::: cpe:2.3:h:qualcomm:qpm6585:-::::::: cpe:2.3:h:qualcomm:qpm6621:-::::::: cpe:2.3:h:qualcomm:qpm6670:-::::::: cpe:2.3:h:qualcomm:qpm8820:-::::::: cpe:2.3:h:qualcomm:qpm8830:-::::::: cpe:2.3:h:qualcomm:qpm8870:-::::::: cpe:2.3:h:qualcomm:qpm8895:-::::::: cpe:2.3:h:qualcomm:qsm7250:-::::::: cpe:2.3:h:qualcomm:qsw6310:-::::::: cpe:2.3:h:qualcomm:qsw8573:-::::::: cpe:2.3:h:qualcomm:qsw8574:-::::::: cpe:2.3:h:qualcomm:qtc410s:-::::::: cpe:2.3:h:qualcomm:qtc800h:-::::::: cpe:2.3:h:qualcomm:qtc800s:-::::::: cpe:2.3:h:qualcomm:qtc801s:-::::::: cpe:2.3:h:qualcomm:qtm525:-::::::: cpe:2.3:h:qualcomm:qtm527:-::::::: cpe:2.3:h:qualcomm:rgr7640au:-::::::: cpe:2.3:h:qualcomm:rsw8577:-::::::: cpe:2.3:h:qualcomm:sa415m:-::::::: cpe:2.3:h:qualcomm:sa515m:-::::::: cpe:2.3:h:qualcomm:sa6145p:-::::::: cpe:2.3:h:qualcomm:sa6150p:-::::::: cpe:2.3:h:qualcomm:sa6155:-::::::: cpe:2.3:h:qualcomm:sa6155p:-::::::: cpe:2.3:h:qualcomm:sa8150p:-::::::: cpe:2.3:h:qualcomm:sa8155:-::::::: cpe:2.3:h:qualcomm:sa8155p:-::::::: cpe:2.3:h:qualcomm:sa8195p:-::::::: cpe:2.3:h:qualcomm:sd460:-::::::: cpe:2.3:h:qualcomm:sd636:-::::::: cpe:2.3:h:qualcomm:sd660:-::::::: cpe:2.3:h:qualcomm:sd662:-::::::: cpe:2.3:h:qualcomm:sd665:-::::::: cpe:2.3:h:qualcomm:sd670:-::::::: cpe:2.3:h:qualcomm:sd675:-::::::: cpe:2.3:h:qualcomm:sd6905g:-::::::: cpe:2.3:h:qualcomm:sd710:-::::::: cpe:2.3:h:qualcomm:sd720g:-::::::: cpe:2.3:h:qualcomm:sd730:-::::::: cpe:2.3:h:qualcomm:sd750g:-::::::: cpe:2.3:h:qualcomm:sd765:-::::::: cpe:2.3:h:qualcomm:sd765g:-::::::: cpe:2.3:h:qualcomm:sd768g:-::::::: cpe:2.3:h:qualcomm:sd835:-::::::: cpe:2.3:h:qualcomm:sd845:-::::::: cpe:2.3:h:qualcomm:sd855:-::::::: cpe:2.3:h:qualcomm:sd8655g:-::::::: cpe:2.3:h:qualcomm:sd8885g:-::::::: cpe:2.3:h:qualcomm:sd8c:-::::::: cpe:2.3:h:qualcomm:sd8cx:-::::::: cpe:2.3:h:qualcomm:sdm630:-::::::: cpe:2.3:h:qualcomm:sdr051:-::::::: cpe:2.3:h:qualcomm:sdr052:-::::::: cpe:2.3:h:qualcomm:sdr425:-::::::: cpe:2.3:h:qualcomm:sdr660:-::::::: cpe:2.3:h:qualcomm:sdr660g:-::::::: cpe:2.3:h:qualcomm:sdr675:-::::::: cpe:2.3:h:qualcomm:sdr735:-::::::: cpe:2.3:h:qualcomm:sdr735g:-::::::: cpe:2.3:h:qualcomm:sdr8150:-::::::: cpe:2.3:h:qualcomm:sdr8250:-::::::: cpe:2.3:h:qualcomm:sdr865:-::::::: cpe:2.3:h:qualcomm:sdx50m:-::::::: cpe:2.3:h:qualcomm:sdx55:-::::::: cpe:2.3:h:qualcomm:sdx55m:-::::::: cpe:2.3:h:qualcomm:sdxr1:-::::::: cpe:2.3:h:qualcomm:sdxr25g:-::::::: cpe:2.3:h:qualcomm:sm4125:-::::::: cpe:2.3:h:qualcomm:sm6250:-::::::: cpe:2.3:h:qualcomm:sm6250p:-::::::: cpe:2.3:h:qualcomm:sm7250p:-::::::: cpe:2.3:h:qualcomm:sm7350:-::::::: cpe:2.3:h:qualcomm:smb1351:-::::::: cpe:2.3:h:qualcomm:smb1354:-::::::: cpe:2.3:h:qualcomm:smb1355:-::::::: cpe:2.3:h:qualcomm:smb1380:-::::::: cpe:2.3:h:qualcomm:smb1381:-::::::: cpe:2.3:h:qualcomm:smb1390:-::::::: cpe:2.3:h:qualcomm:smb1394:-::::::: cpe:2.3:h:qualcomm:smb1395:-::::::: cpe:2.3:h:qualcomm:smb1396:-::::::: cpe:2.3:h:qualcomm:smb1398:-::::::: cpe:2.3:h:qualcomm:smb2351:-::::::: cpe:2.3:h:qualcomm:smr525:-::::::: cpe:2.3:h:qualcomm:smr526:-::::::: cpe:2.3:h:qualcomm:smr545:-::::::: cpe:2.3:h:qualcomm:smr546:-::::::: cpe:2.3:h:qualcomm:wcd9326:-::::::: cpe:2.3:h:qualcomm:wcd9335:-::::::: cpe:2.3:h:qualcomm:wcd9340:-::::::: cpe:2.3:h:qualcomm:wcd9341:-::::::: cpe:2.3:h:qualcomm:wcd9370:-::::::: cpe:2.3:h:qualcomm:wcd9371:-::::::: cpe:2.3:h:qualcomm:wcd9375:-::::::: cpe:2.3:h:qualcomm:wcd9380:-::::::: cpe:2.3:h:qualcomm:wcd9385:-::::::: cpe:2.3:h:qualcomm:wcn3910:-::::::: cpe:2.3:h:qualcomm:wcn3950:-::::::: cpe:2.3:h:qualcomm:wcn3980:-::::::: cpe:2.3:h:qualcomm:wcn3988:-::::::: cpe:2.3:h:qualcomm:wcn3990:-::::::: cpe:2.3:h:qualcomm:wcn3991:-::::::: cpe:2.3:h:qualcomm:wcn3998:-::::::: cpe:2.3:h:qualcomm:wcn3999:-::::::: cpe:2.3:h:qualcomm:wcn6740:-::::::: cpe:2.3:h:qualcomm:wcn6750:-::::::: cpe:2.3:h:qualcomm:wcn6850:-::::::: cpe:2.3:h:qualcomm:wcn6851:-::::::: cpe:2.3:h:qualcomm:wcn6855:-::::::: cpe:2.3:h:qualcomm:wcn6856:-::::::: cpe:2.3:h:qualcomm:wgr7640:-::::::: cpe:2.3:h:qualcomm:wsa8810:-::::::: cpe:2.3:h:qualcomm:wsa8815:-::::::: cpe:2.3:h:qualcomm:wsa8830:-::::::: cpe:2.3:h:qualcomm:wsa8835:-::::::: cpe:2.3:h:qualcomm:wtr2965:-::::::: cpe:2.3:h:qualcomm:wtr3925:-::::::: cpe:2.3:h:qualcomm:wtr4905:-::::::: cpe:2.3:h:qualcomm:wtr5975:-::::::: cpe:2.3:h:qualcomm:wtr6955:-:::::::

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2020-11225 is associated with the following CWEs:

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-787: Out-of-bounds Write

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2020-11225 weaknesses.

CAPEC-8: Buffer Overflow in an API Call Buffer Overflow in an API Call CAPEC-9: Buffer Overflow in Local Command-Line Utilities Buffer Overflow in Local Command-Line Utilities CAPEC-10: Buffer Overflow via Environment Variables Buffer Overflow via Environment Variables CAPEC-14: Client-side Injection-induced Buffer Overflow Client-side Injection-induced Buffer Overflow CAPEC-24: Filter Failure through Buffer Overflow Filter Failure through Buffer Overflow CAPEC-42: MIME Conversion MIME Conversion CAPEC-44: Overflow Binary Resource File Overflow Binary Resource File CAPEC-45: Buffer Overflow via Symbolic Links Buffer Overflow via Symbolic Links CAPEC-46: Overflow Variables and Tags Overflow Variables and Tags CAPEC-47: Buffer Overflow via Parameter Expansion Buffer Overflow via Parameter Expansion CAPEC-67: String Format Overflow in syslog() String Format Overflow in syslog() CAPEC-92: Forced Integer Overflow Forced Integer Overflow CAPEC-100: Overflow Buffers Overflow Buffers

CVE-2020-11225

Snapdragon Buffer Overflow

Description

INFO

Jan. 21, 2021, 10:15 a.m.

Jan. 29, 2021, 11:42 p.m.

[email protected]

Yes !

5.9

3.9

Affected Products

References to Advisories, Solutions, and Tools

CVE Modified by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.22 }} 0.01%

0.60417

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable