CVE-2020-11132 - OpenCVE

u'Buffer over read in boot due to size check ignored before copying GUID attribute from request to response' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, MDM8207, MDM9150, MDM9205, MDM9206, MDM9207, MDM9250, MDM9607, MDM9628, MDM9650, MSM8108, MSM8208, MSM8209, MSM8608, MSM8905, MSM8909, MSM8998, QCM4290, QCS405, QCS410, QCS4290, QCS603, QCS605, QCS610, QSM8250, SA415M, SA515M, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA640, SDA670, SDA845, SDA855, SDM1000, SDM640, SDM670, SDM710, SDM712, SDM830, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR1120, SXR1130, SXR2130, SXR2130P, WCD9330

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact Partial

AV:L/AC:L/Au:N/C:P/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Qualcomm	Qsm8250 Firmware Sxr2130 Msm8108 Mdm9206 Apq8098 Qsm8250 Sm8150p Firmware Qcs410 Firmware Mdm8207 Firmware Msm8909 Sa6155 Firmware Sdx55 Sm7250p Firmware Sm6115 Msm8209 Firmware Sa6150p Sc7180 Sa6145p Msm8608 Firmware Sdm670 Msm8208 Sxr2130p Firmware Sm6350 Sm6125 Firmware Msm8909 Firmware Qcs610 Firmware Mdm9650 Sm7250 Firmware Sxr1130 Firmware Sdm850 Sa8155 Firmware Mdm9628 Sm7225 Firmware Sdm710 Firmware Sxr2130 Firmware Mdm9206 Firmware Sdm712 Firmware Sm6150p Msm8998 Firmware Sdm712 Qcs405 Sm4250p Firmware Apq8096au Wcd9330 Sda845 Firmware Msm8608 Msm8208 Firmware Sm7150 Firmware Apq8096au Firmware Sm6150 Firmware Sdx55m Sdx24 Sda855 Sxr1120 Sm7150p Firmware Sdm845 Sm4250 Firmware Sxr2130p Sm7225 Sa8150p Firmware Mdm9607 Apq8098 Firmware Sdm670 Firmware Sm6150p Firmware Sa6155 Sm6250p Firmware Mdm9150 Mdm9628 Firmware Qcs605 Mdm9250 Firmware Sm6350 Firmware Sc7180 Firmware Sdx50m Sa6145p Firmware Sa6155p Mdm9150 Firmware Sa415m Firmware Qcs405 Firmware Sm4250 Sc8180xp Sc8180xp Firmware Sda845 Sdm640 Sxr1130 Sm6250 Firmware Mdm9207 Sm6150 Mdm9607 Firmware Sm8150p Sm6250p Sda670 Firmware Apq8009 Qcs410 Sda640 Sm6250 Sm8150 Firmware Qcm4290 Mdm9205 Sm4250p Sa8195p Qcs605 Firmware Sm8150 Sda670 Sa8155p Firmware Qcs603 Sm7150p Qcs4290 Firmware Msm8998 Sm8250 Sa8155 Sdm830 Sm8250 Firmware Sdm710 Sa515m Sdx55m Firmware Sdm640 Firmware Sm6125 Qcs4290 Sda855 Firmware Wcd9330 Firmware Mdm9207 Firmware Msm8209 Sa8195p Firmware Sdx55 Firmware Sm4125 Firmware Sdm1000 Firmware Sda640 Firmware Sm6115p Sm7250 Qcs603 Firmware Mdm9205 Firmware Sa8150p Sa415m Mdm8207 Sm6115 Firmware Sa8155p Sxr1120 Firmware Apq8009 Firmware Sm6115p Firmware Mdm9250 Qcm4290 Firmware Sm7125 Sm7125 Firmware Sm7250p Sdx50m Firmware Msm8905 Firmware Sm4125 Qcs610 Sdm830 Firmware Sc8180x Firmware Msm8905 Sc8180x Sa6150p Firmware Sdm850 Firmware Sdm1000 Sa6155p Firmware Sm7150 Sdx24 Firmware Mdm9650 Firmware Msm8108 Firmware Sa515m Firmware Sdm845 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:qualcomm:mdm9207_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9207:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:qualcomm:mdm9250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9250:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9628:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:qualcomm:msm8108_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8108:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:qualcomm:msm8208_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8208:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:qualcomm:msm8209_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8209:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:qualcomm:msm8608_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8608:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:qualcomm:qcm4290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm4290:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs410:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:qualcomm:qcs4290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs4290:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:qualcomm:qcs603_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs603:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:qualcomm:qsm8250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qsm8250:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:qualcomm:sa6155_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6155:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:qualcomm:sa8155_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8155:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:qualcomm:sc8180xp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sc8180xp:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:qualcomm:sda640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sda640:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:qualcomm:sda670_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sda670:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:qualcomm:sda855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sda855:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:qualcomm:sdm1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm1000:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:qualcomm:sdm640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm640:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:qualcomm:sdm712_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm712:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:qualcomm:sdm830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm830:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:qualcomm:sdx50m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx50m:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:qualcomm:sm4125_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm4125:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:qualcomm:sm4250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm4250:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:qualcomm:sm4250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm4250p:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:qualcomm:sm6115_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6115:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:qualcomm:sm6115p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6115p:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:qualcomm:sm6125_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6125:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:qualcomm:sm6150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6150p:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:qualcomm:sm6250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6250:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:qualcomm:sm6250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6250p:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:qualcomm:sm6350_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6350:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

cpe:2.3:o:qualcomm:sm7125_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7125:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*

Configuration 72 [-]

AND

cpe:2.3:o:qualcomm:sm7150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7150p:-:*:*:*:*:*:*:*

Configuration 73 [-]

AND

cpe:2.3:o:qualcomm:sm7225_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7225:-:*:*:*:*:*:*:*

Configuration 74 [-]

AND

cpe:2.3:o:qualcomm:sm7250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7250:-:*:*:*:*:*:*:*

Configuration 75 [-]

AND

cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7250p:-:*:*:*:*:*:*:*

Configuration 76 [-]

AND

cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*

Configuration 77 [-]

AND

cpe:2.3:o:qualcomm:sm8150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm8150p:-:*:*:*:*:*:*:*

Configuration 78 [-]

AND

cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*

Configuration 79 [-]

AND

cpe:2.3:o:qualcomm:sxr1120_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr1120:-:*:*:*:*:*:*:*

Configuration 80 [-]

AND

cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*

Configuration 81 [-]

AND

cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*

Configuration 82 [-]

AND

cpe:2.3:o:qualcomm:sxr2130p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr2130p:-:*:*:*:*:*:*:*

Configuration 83 [-]

AND

cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:*

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: qualcomm

Published: 2020-11-12T10:00:53

Updated: 2020-11-12T10:00:53

Reserved: 2020-03-31T00:00:00

Link: CVE-2020-11132

JSON object: View

NVD Information

Status : Analyzed

Published: 2020-11-12T10:15:12.357

Modified: 2020-11-19T18:21:36.513

Link: CVE-2020-11132

JSON object: View

Redhat Information

No data.

CWE

CWE-125