CVE-2020-11185 - OpenCVE

Out of bound issue in WLAN driver while processing vdev responses from firmware due to lack of validation of data received from firmware in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Qualcomm	Ipq8070 Qca9980 Qpm4630 Pm7350c Ipq8072a Pm8350b Qcn5122 Qca9886 Qpm6670 Sd8885g Qcn7606 Sdr865 Ipq8071a Qpm5641 Qca6574a Pmr735a Sdx55 Qca6428 Smr546 Pmm8155au Qca6391 Qet6110 Qpa6560 Qpa8802 Qln5040 Qpm4640 Sa6145p Qca8081 Pm8350bhs Qpa2625 Qln4642 Ipq4029 Qcn9074 Qca6574au Qcn5154 Ipq4028 Smb1396 Qdm2308 Qat5515 Qpm4621 Qpm5679 Sdr660g Ipq8070a Qcn5152 Qet6100 Qfs2580 Ipq4018 Qca9888 Qat3516 Qdm5679 Ipq8064 Pm8008 Qcn7605 Qfs2608 Qdm3302 Qdm5671 Qcn5024 Qln5020 Qat3555 Pmk8350 Qcn5022 Qpm8820 Ipq8074 Pmm855au Qca9889 Qca6390 Qdm4650 Ipq8076 Pm8009 Qcn5121 Sdx55m Qca9994 Ipq8174 Qcn5124 Qpm8870 Qpa8842 Ipq8072 Qca6595 Ipq8065 Qcn5052 Qdm5579 Smb1395 Qca9880 Qpm6621 Pm3003a Qca7500 Qca9992 Wsa8835 Ipq8068 Ipq8078 Sa6155p Wcd9385 Wcn3991 Ipq8071 Ipq4019 Qat3519 Qpa8801 Wcn6850 Wsa8830 Qtm525 Qca9990 Pm8350bh Qdm5621 Smr526 Qpm5875 Qca4024 Wcd9380 Qcn5164 Pmk8002 Ipq8076a Pmm6155au Pmx55 Qca6595au Ipq6028 Qpa5461 Wcd9341 Qcn9000 Qat3518 Sa8195p Csr8811 Qln4650 Pmm8195au Qdm5677 Qln5030 Ipq6018 Qpa5581 Qpm6585 Qca9985 Qat5568 Qet5100m Sdr8250 Wcn3910 Smr545 Qca9898 Qpm5621 Sa8155 Qca6438 Smr525 Qca6564a Qcn5550 Qet5100 Qca6574 Qdm5670 Wcn6750 Smb1398 Qca6564au Ipq8173 Ipq6010 Pm8350 Qdm5620 Qca8075 Qcn5054 Qpm4641 Wcn3998 Pmr735b Qca6175a Qdm2307 Qca6584au Qpm4650 Qdm4643 Qpm5870 Ipq6000 Pm8350c Qdm3301 Pmr525 Qca9984 Sa8150p Qcn5021 Wcn6740 Qat5516 Qpm5670 Sa8155p Qca6696 Ipq8074a Sdr735 Qpm5677 Sm7350 Ipq6005 Wcn6856 Sdr735g Qat3514 Qpa5580 Ipq8078a Smb1394 Qca8072 Qpa8803 Wcn6851 Pmk7350 Qpa8821 Qat5522 Qfs2530 Qcn5064 Ar9380 Qfs2630 Qdm2310

Configuration 1 [-]

OR	cpe:2.3:h:qualcomm:ar9380:-:::::::*
	cpe:2.3:h:qualcomm:csr8811:-:::::::*
	cpe:2.3:h:qualcomm:ipq4018:-:::::::*
	cpe:2.3:h:qualcomm:ipq4019:-:::::::*
	cpe:2.3:h:qualcomm:ipq4028:-:::::::*
	cpe:2.3:h:qualcomm:ipq4029:-:::::::*
	cpe:2.3:h:qualcomm:ipq6000:-:::::::*
	cpe:2.3:h:qualcomm:ipq6005:-:::::::*
	cpe:2.3:h:qualcomm:ipq6010:-:::::::*
	cpe:2.3:h:qualcomm:ipq6018:-:::::::*
	cpe:2.3:h:qualcomm:ipq6028:-:::::::*
	cpe:2.3:h:qualcomm:ipq8064:-:::::::*
	cpe:2.3:h:qualcomm:ipq8065:-:::::::*
	cpe:2.3:h:qualcomm:ipq8068:-:::::::*
	cpe:2.3:h:qualcomm:ipq8070:-:::::::*
	cpe:2.3:h:qualcomm:ipq8070a:-:::::::*
	cpe:2.3:h:qualcomm:ipq8071:-:::::::*
	cpe:2.3:h:qualcomm:ipq8071a:-:::::::*
	cpe:2.3:h:qualcomm:ipq8072:-:::::::*
	cpe:2.3:h:qualcomm:ipq8072a:-:::::::*
	cpe:2.3:h:qualcomm:ipq8074:-:::::::*
	cpe:2.3:h:qualcomm:ipq8074a:-:::::::*
	cpe:2.3:h:qualcomm:ipq8076:-:::::::*
	cpe:2.3:h:qualcomm:ipq8076a:-:::::::*
	cpe:2.3:h:qualcomm:ipq8078:-:::::::*
	cpe:2.3:h:qualcomm:ipq8078a:-:::::::*
	cpe:2.3:h:qualcomm:ipq8173:-:::::::*
	cpe:2.3:h:qualcomm:ipq8174:-:::::::*
	cpe:2.3:h:qualcomm:pm3003a:-:::::::*
	cpe:2.3:h:qualcomm:pm7350c:-:::::::*
	cpe:2.3:h:qualcomm:pm8008:-:::::::*
	cpe:2.3:h:qualcomm:pm8009:-:::::::*
	cpe:2.3:h:qualcomm:pm8350:-:::::::*
	cpe:2.3:h:qualcomm:pm8350b:-:::::::*
	cpe:2.3:h:qualcomm:pm8350bh:-:::::::*
	cpe:2.3:h:qualcomm:pm8350bhs:-:::::::*
	cpe:2.3:h:qualcomm:pm8350c:-:::::::*
	cpe:2.3:h:qualcomm:pmk7350:-:::::::*
	cpe:2.3:h:qualcomm:pmk8002:-:::::::*
	cpe:2.3:h:qualcomm:pmk8350:-:::::::*
	cpe:2.3:h:qualcomm:pmm6155au:-:::::::*
	cpe:2.3:h:qualcomm:pmm8155au:-:::::::*
	cpe:2.3:h:qualcomm:pmm8195au:-:::::::*
	cpe:2.3:h:qualcomm:pmm855au:-:::::::*
	cpe:2.3:h:qualcomm:pmr525:-:::::::*
	cpe:2.3:h:qualcomm:pmr735a:-:::::::*
	cpe:2.3:h:qualcomm:pmr735b:-:::::::*
	cpe:2.3:h:qualcomm:pmx55:-:::::::*
	cpe:2.3:h:qualcomm:qat3514:-:::::::*
	cpe:2.3:h:qualcomm:qat3516:-:::::::*
	cpe:2.3:h:qualcomm:qat3518:-:::::::*
	cpe:2.3:h:qualcomm:qat3519:-:::::::*
	cpe:2.3:h:qualcomm:qat3555:-:::::::*
	cpe:2.3:h:qualcomm:qat5515:-:::::::*
	cpe:2.3:h:qualcomm:qat5516:-:::::::*
	cpe:2.3:h:qualcomm:qat5522:-:::::::*
	cpe:2.3:h:qualcomm:qat5568:-:::::::*
	cpe:2.3:h:qualcomm:qca4024:-:::::::*
	cpe:2.3:h:qualcomm:qca6175a:-:::::::*
	cpe:2.3:h:qualcomm:qca6390:-:::::::*
	cpe:2.3:h:qualcomm:qca6391:-:::::::*
	cpe:2.3:h:qualcomm:qca6428:-:::::::*
	cpe:2.3:h:qualcomm:qca6438:-:::::::*
	cpe:2.3:h:qualcomm:qca6564a:-:::::::*
cpe:2.3:h:qualcomm:qca6564au:-:::::::*
cpe:2.3:h:qualcomm:qca6574:-:::::::*
cpe:2.3:h:qualcomm:qca6574a:-:::::::*
cpe:2.3:h:qualcomm:qca6574au:-:::::::*
cpe:2.3:h:qualcomm:qca6584au:-:::::::*
cpe:2.3:h:qualcomm:qca6595:-:::::::*
cpe:2.3:h:qualcomm:qca6595au:-:::::::*
cpe:2.3:h:qualcomm:qca6696:-:::::::*
cpe:2.3:h:qualcomm:qca7500:-:::::::*
cpe:2.3:h:qualcomm:qca8072:-:::::::*
cpe:2.3:h:qualcomm:qca8075:-:::::::*
cpe:2.3:h:qualcomm:qca8081:-:::::::*
cpe:2.3:h:qualcomm:qca9880:-:::::::*
cpe:2.3:h:qualcomm:qca9886:-:::::::*
cpe:2.3:h:qualcomm:qca9888:-:::::::*
cpe:2.3:h:qualcomm:qca9889:-:::::::*
cpe:2.3:h:qualcomm:qca9898:-:::::::*
cpe:2.3:h:qualcomm:qca9980:-:::::::*
cpe:2.3:h:qualcomm:qca9984:-:::::::*
cpe:2.3:h:qualcomm:qca9985:-:::::::*
cpe:2.3:h:qualcomm:qca9990:-:::::::*
cpe:2.3:h:qualcomm:qca9992:-:::::::*
cpe:2.3:h:qualcomm:qca9994:-:::::::*
cpe:2.3:h:qualcomm:qcn5021:-:::::::*
cpe:2.3:h:qualcomm:qcn5022:-:::::::*
cpe:2.3:h:qualcomm:qcn5024:-:::::::*
cpe:2.3:h:qualcomm:qcn5052:-:::::::*
cpe:2.3:h:qualcomm:qcn5054:-:::::::*
cpe:2.3:h:qualcomm:qcn5064:-:::::::*
cpe:2.3:h:qualcomm:qcn5121:-:::::::*
cpe:2.3:h:qualcomm:qcn5122:-:::::::*
cpe:2.3:h:qualcomm:qcn5124:-:::::::*
cpe:2.3:h:qualcomm:qcn5152:-:::::::*
cpe:2.3:h:qualcomm:qcn5154:-:::::::*
cpe:2.3:h:qualcomm:qcn5164:-:::::::*
cpe:2.3:h:qualcomm:qcn5550:-:::::::*
cpe:2.3:h:qualcomm:qcn7605:-:::::::*
cpe:2.3:h:qualcomm:qcn7606:-:::::::*
cpe:2.3:h:qualcomm:qcn9000:-:::::::*
cpe:2.3:h:qualcomm:qcn9074:-:::::::*
cpe:2.3:h:qualcomm:qdm2307:-:::::::*
cpe:2.3:h:qualcomm:qdm2308:-:::::::*
cpe:2.3:h:qualcomm:qdm2310:-:::::::*
cpe:2.3:h:qualcomm:qdm3301:-:::::::*
cpe:2.3:h:qualcomm:qdm3302:-:::::::*
cpe:2.3:h:qualcomm:qdm4643:-:::::::*
cpe:2.3:h:qualcomm:qdm4650:-:::::::*
cpe:2.3:h:qualcomm:qdm5579:-:::::::*
cpe:2.3:h:qualcomm:qdm5620:-:::::::*
cpe:2.3:h:qualcomm:qdm5621:-:::::::*
cpe:2.3:h:qualcomm:qdm5670:-:::::::*
cpe:2.3:h:qualcomm:qdm5671:-:::::::*
cpe:2.3:h:qualcomm:qdm5677:-:::::::*
cpe:2.3:h:qualcomm:qdm5679:-:::::::*
cpe:2.3:h:qualcomm:qet5100:-:::::::*
cpe:2.3:h:qualcomm:qet5100m:-:::::::*
cpe:2.3:h:qualcomm:qet6100:-:::::::*
cpe:2.3:h:qualcomm:qet6110:-:::::::*
cpe:2.3:h:qualcomm:qfs2530:-:::::::*
cpe:2.3:h:qualcomm:qfs2580:-:::::::*
cpe:2.3:h:qualcomm:qfs2608:-:::::::*
cpe:2.3:h:qualcomm:qfs2630:-:::::::*
cpe:2.3:h:qualcomm:qln4642:-:::::::*
cpe:2.3:h:qualcomm:qln4650:-:::::::*
cpe:2.3:h:qualcomm:qln5020:-:::::::*
cpe:2.3:h:qualcomm:qln5030:-:::::::*
cpe:2.3:h:qualcomm:qln5040:-:::::::*
cpe:2.3:h:qualcomm:qpa2625:-:::::::*
cpe:2.3:h:qualcomm:qpa5461:-:::::::*
cpe:2.3:h:qualcomm:qpa5580:-:::::::*
cpe:2.3:h:qualcomm:qpa5581:-:::::::*
cpe:2.3:h:qualcomm:qpa6560:-:::::::*
cpe:2.3:h:qualcomm:qpa8801:-:::::::*
cpe:2.3:h:qualcomm:qpa8802:-:::::::*
cpe:2.3:h:qualcomm:qpa8803:-:::::::*
cpe:2.3:h:qualcomm:qpa8821:-:::::::*
cpe:2.3:h:qualcomm:qpa8842:-:::::::*
cpe:2.3:h:qualcomm:qpm4621:-:::::::*
cpe:2.3:h:qualcomm:qpm4630:-:::::::*
cpe:2.3:h:qualcomm:qpm4640:-:::::::*
cpe:2.3:h:qualcomm:qpm4641:-:::::::*
cpe:2.3:h:qualcomm:qpm4650:-:::::::*
cpe:2.3:h:qualcomm:qpm5621:-:::::::*
cpe:2.3:h:qualcomm:qpm5641:-:::::::*
cpe:2.3:h:qualcomm:qpm5670:-:::::::*
cpe:2.3:h:qualcomm:qpm5677:-:::::::*
cpe:2.3:h:qualcomm:qpm5679:-:::::::*
cpe:2.3:h:qualcomm:qpm5870:-:::::::*
cpe:2.3:h:qualcomm:qpm5875:-:::::::*
cpe:2.3:h:qualcomm:qpm6585:-:::::::*
cpe:2.3:h:qualcomm:qpm6621:-:::::::*
cpe:2.3:h:qualcomm:qpm6670:-:::::::*
cpe:2.3:h:qualcomm:qpm8820:-:::::::*
cpe:2.3:h:qualcomm:qpm8870:-:::::::*
cpe:2.3:h:qualcomm:qtm525:-:::::::*
cpe:2.3:h:qualcomm:sa6145p:-:::::::*
cpe:2.3:h:qualcomm:sa6155p:-:::::::*
cpe:2.3:h:qualcomm:sa8150p:-:::::::*
cpe:2.3:h:qualcomm:sa8155:-:::::::*
cpe:2.3:h:qualcomm:sa8155p:-:::::::*
cpe:2.3:h:qualcomm:sa8195p:-:::::::*
cpe:2.3:h:qualcomm:sd8885g:-:::::::*
cpe:2.3:h:qualcomm:sdr660g:-:::::::*
cpe:2.3:h:qualcomm:sdr735:-:::::::*
cpe:2.3:h:qualcomm:sdr735g:-:::::::*
cpe:2.3:h:qualcomm:sdr8250:-:::::::*
cpe:2.3:h:qualcomm:sdr865:-:::::::*
cpe:2.3:h:qualcomm:sdx55:-:::::::*
cpe:2.3:h:qualcomm:sdx55m:-:::::::*
cpe:2.3:h:qualcomm:sm7350:-:::::::*
cpe:2.3:h:qualcomm:smb1394:-:::::::*
cpe:2.3:h:qualcomm:smb1395:-:::::::*
cpe:2.3:h:qualcomm:smb1396:-:::::::*
cpe:2.3:h:qualcomm:smb1398:-:::::::*
cpe:2.3:h:qualcomm:smr525:-:::::::*
cpe:2.3:h:qualcomm:smr526:-:::::::*
cpe:2.3:h:qualcomm:smr545:-:::::::*
cpe:2.3:h:qualcomm:smr546:-:::::::*
cpe:2.3:h:qualcomm:wcd9341:-:::::::*
cpe:2.3:h:qualcomm:wcd9380:-:::::::*
cpe:2.3:h:qualcomm:wcd9385:-:::::::*
cpe:2.3:h:qualcomm:wcn3910:-:::::::*
cpe:2.3:h:qualcomm:wcn3991:-:::::::*
cpe:2.3:h:qualcomm:wcn3998:-:::::::*
cpe:2.3:h:qualcomm:wcn6740:-:::::::*
cpe:2.3:h:qualcomm:wcn6750:-:::::::*
cpe:2.3:h:qualcomm:wcn6850:-:::::::*
cpe:2.3:h:qualcomm:wcn6851:-:::::::*
cpe:2.3:h:qualcomm:wcn6856:-:::::::*
cpe:2.3:h:qualcomm:wsa8830:-:::::::*
cpe:2.3:h:qualcomm:wsa8835:-:::::::*

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin	Broken Link
https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin	Patch Vendor Advisory