Out of Bound issue in DSP services while processing received arguments due to improper validation of length received as an argument' in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C
Vendors Products
Qualcomm
  • Sd675 Firmware
  • Sd660 Firmware
  • Qcs603 Firmware
  • Sd820
  • Sd675
  • Sd821
  • Sa6155 Firmware
  • Sd855 Firmware
  • Sd820 Firmware
  • Qcs605 Firmware
  • Qcs603
  • Sd439 Firmware
  • Sda855
  • Sd429
  • Sa6145p
  • Sd821 Firmware
  • Sa6155
  • Qcs605
  • Sa6145p Firmware
  • Sa6155p Firmware
  • Sa6155p
  • Sd439
  • Sd660
  • Sda855 Firmware
  • Sd429 Firmware
  • Sd855

Configuration 1 [-]

AND
cpe:2.3:o:qualcomm:sd820_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd820:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:qualcomm:sd821_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd821:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:qualcomm:qcs603_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs603:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:qualcomm:sda855_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sda855:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:qualcomm:sa6155_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6155:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:qualcomm:sd675_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd675:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:qualcomm:sd660_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd660:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:qualcomm:sd429_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd429:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:qualcomm:sd439_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd439:-:*:*:*:*:*:*:*
References
Link Resource
https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/ Third Party Advisory
https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/ Exploit Third Party Advisory
https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: qualcomm

Published: 2020-11-12T10:00:58

Updated: 2022-03-15T10:50:10

Reserved: 2020-03-31T00:00:00

Link: CVE-2020-11208

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2020-11-12T10:15:13.170

Modified: 2022-10-19T15:43:44.033

Link: CVE-2020-11208

JSON object: View

cve-icon Redhat Information

No data.

CWE