CVE-2020-11210 : Possible memory corruption in RPM region due to improper XPU configuration in Sn

Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

Published 2021-04-07 08:15:14

Updated 2022-05-03 16:04:40

Source Qualcomm, Inc.

View at NVD, CVE.org

Vulnerability category: Memory Corruption

Products affected by CVE-2020-11210

Qualcomm » Qcs405 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcs405 » Version: N/A
Qualcomm » Qca6390 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6390 » Version: N/A
Qualcomm » Smb1351 Firmware » Version: N/A
cpe:2.3:o:qualcomm:smb1351_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Smb1351 » Version: N/A
Qualcomm » Wcn3998 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3998 » Version: N/A
Qualcomm » Wcn6850 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6850 » Version: N/A
Qualcomm » Wgr7640 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wgr7640_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wgr7640 » Version: N/A
Qualcomm » Wsa8810 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8810 » Version: N/A
Qualcomm » Wsa8815 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8815 » Version: N/A
Qualcomm » Qcm4290 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcm4290_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcm4290 » Version: N/A
Qualcomm » Qcs4290 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcs4290_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcs4290 » Version: N/A
Qualcomm » Sm4125 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm4125_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm4125 » Version: N/A
Qualcomm » Ar8035 Firmware » Version: N/A
cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Ar8035 » Version: N/A
Qualcomm » Pm4125 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm4125_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm4125 » Version: N/A
Qualcomm » Pm6125 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm6125_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm6125 » Version: N/A
Qualcomm » Pm6150a Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm6150a_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm6150a » Version: N/A
Qualcomm » Pm6150l Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm6150l_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm6150l » Version: N/A
Qualcomm » Pm6350 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm6350_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm6350 » Version: N/A
Qualcomm » Pm7250b Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm7250b_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm7250b » Version: N/A
Qualcomm » Pm8008 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm8008_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm8008 » Version: N/A
Qualcomm » Pmd9655 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pmd9655_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pmd9655 » Version: N/A
Qualcomm » Pmi632 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pmi632_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pmi632 » Version: N/A
Qualcomm » Pmk8003 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pmk8003_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pmk8003 » Version: N/A
Qualcomm » Qat3519 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qat3519_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qat3519 » Version: N/A
Qualcomm » Qat3522 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qat3522_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qat3522 » Version: N/A
Qualcomm » Qat3555 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qat3555_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qat3555 » Version: N/A
Qualcomm » Qat5515 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qat5515_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qat5515 » Version: N/A
Qualcomm » Qat5516 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qat5516_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qat5516 » Version: N/A
Qualcomm » Qca9984 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca9984_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca9984 » Version: N/A
Qualcomm » Qdm2301 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qdm2301_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qdm2301 » Version: N/A
Qualcomm » Qdm2302 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qdm2302_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qdm2302 » Version: N/A
Qualcomm » Qet4101 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qet4101_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qet4101 » Version: N/A
Qualcomm » Qpa4360 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qpa4360_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qpa4360 » Version: N/A
Qualcomm » Qpa4361 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qpa4361_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qpa4361 » Version: N/A
Qualcomm » Qpa6560 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qpa6560_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qpa6560 » Version: N/A
Qualcomm » Qpa8673 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qpa8673_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qpa8673 » Version: N/A
Qualcomm » Qsw6310 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qsw6310_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qsw6310 » Version: N/A
Qualcomm » Qsw8573 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qsw8573_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qsw8573 » Version: N/A
Qualcomm » Qsw8574 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qsw8574_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qsw8574 » Version: N/A
Qualcomm » Qtc410s Firmware » Version: N/A
cpe:2.3:o:qualcomm:qtc410s_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qtc410s » Version: N/A
Qualcomm » Qtm525 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qtm525_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qtm525 » Version: N/A
Qualcomm » Sd460 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd460_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd460 » Version: N/A
Qualcomm » Sd662 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd662_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd662 » Version: N/A
Qualcomm » Sd665 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd665_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd665 » Version: N/A
Qualcomm » Sdr425 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sdr425_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sdr425 » Version: N/A
Qualcomm » Sdr660 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sdr660_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sdr660 » Version: N/A
Qualcomm » Sdr735 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sdr735_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sdr735 » Version: N/A
Qualcomm » Sdr735g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sdr735g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sdr735g » Version: N/A
Qualcomm » Smb1354 Firmware » Version: N/A
cpe:2.3:o:qualcomm:smb1354_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Smb1354 » Version: N/A
Qualcomm » Smb1355 Firmware » Version: N/A
cpe:2.3:o:qualcomm:smb1355_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Smb1355 » Version: N/A
Qualcomm » Smb1396 Firmware » Version: N/A
cpe:2.3:o:qualcomm:smb1396_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Smb1396 » Version: N/A
Qualcomm » Smr526 Firmware » Version: N/A
cpe:2.3:o:qualcomm:smr526_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Smr526 » Version: N/A
Qualcomm » Wcd9370 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9370 » Version: N/A
Qualcomm » Wcd9375 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9375 » Version: N/A
Qualcomm » Wcd9385 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9385 » Version: N/A
Qualcomm » Wcn3910 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3910_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3910 » Version: N/A
Qualcomm » Wcn3950 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3950 » Version: N/A
Qualcomm » Wcn3980 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3980 » Version: N/A
Qualcomm » Wcn3988 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3988 » Version: N/A
Qualcomm » Wcn3991 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3991_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3991 » Version: N/A
Qualcomm » Wcn3999 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3999 » Version: N/A
Qualcomm » Wtr2965 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wtr2965_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wtr2965 » Version: N/A
Qualcomm » Wtr3925 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wtr3925_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wtr3925 » Version: N/A
Qualcomm » Pm4250 Firmware » Version: N/A
cpe:2.3:o:qualcomm:pm4250_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Pm4250 » Version: N/A
Qualcomm » Qcm2290 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcm2290_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcm2290 » Version: N/A
Qualcomm » Qcs2290 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcs2290_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcs2290 » Version: N/A
Qualcomm » Sd480 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd480_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd480 » Version: N/A
Qualcomm » Qet6105 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qet6105_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qet6105 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2020-11210

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 8 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-11210

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
8.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H	2.0	6.0	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High
9.3	CRITICAL	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H	2.5	6.0	Qualcomm, Inc.
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-11210

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2020-11210

https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin

April 2021 Security Bulletin | Qualcomm
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-11210

Products affected by CVE-2020-11210

Exploit prediction scoring system (EPSS) score for CVE-2020-11210

CVSS scores for CVE-2020-11210

CWE ids for CVE-2020-11210

References for CVE-2020-11210