Details of VAR-202011-0215

ID

VAR-202011-0215

CVE

CVE-2020-11173

TITLE

plural Qualcomm Product Free Memory Usage Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2020-012921

DESCRIPTION

u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130. plural Qualcomm The product contains a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. Many Qualcomm products have a resource management error vulnerability. The vulnerability originates from the fact that two threads running at the same time may cause race conditions in the fastRPC driver

Trust: 2.25

sources: NVD: CVE-2020-11173 // JVNDB: JVNDB-2020-012921 // CNNVD: CNNVD-202010-311 // VULMON: CVE-2020-11173

AFFECTED PRODUCTS

vendor:	qualcomm	model:	msm8953	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8053	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx55	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sc8180x	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm429	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	saipan	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm7150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq6018	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs405	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm6150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	kamorta	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm632	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	agatti	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8250	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm429w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9607	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6390	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq8064	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs610	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sxr2130	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	bitra	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq4019	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq8074	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	nicobar	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq5018	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	rennell	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs404	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa515m	scope:	eq	version:	-	Trust: 1.0
vendor:	クアルコム	model:	bitra	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	agatti	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	ipq5018	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	apq8053	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	ipq6018	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	ipq4019	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	mdm9607	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	ipq8064	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	ipq8074	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	kamorta	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2020-012921 // NVD: CVE-2020-11173

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2020-11173
value:	HIGH
Trust: 1.0
NVD:	CVE-2020-11173
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202010-311
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2020-11173
severity:	MEDIUM
baseScore:	4.4
vectorString:	AV:L/AC:M/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.4
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

nvd@nist.gov:	CVE-2020-11173
baseSeverity:	HIGH
baseScore:	7.0
vectorString:	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.0
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2020-11173
baseSeverity:	HIGH
baseScore:	7.0
vectorString:	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2020-012921 // CNNVD: CNNVD-202010-311 // NVD: CVE-2020-11173

PROBLEMTYPE DATA

problemtype:	CWE-362	Trust: 1.0
problemtype:	CWE-416	Trust: 1.0
problemtype:	Use of freed memory (CWE-416) [NVD Evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2020-012921 // NVD: CVE-2020-11173

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202010-311

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-202010-311

PATCH

title:	October 2020 Security Bulletin	url:	https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin	Trust: 0.8
title:	Google Android Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129608	Trust: 0.6
title:	Threatpost	url:	https://threatpost.com/google-android-system-flaws/159948/	Trust: 0.1

sources: VULMON: CVE-2020-11173 // JVNDB: JVNDB-2020-012921 // CNNVD: CNNVD-202010-311

EXTERNAL IDS

db:	NVD	id:	CVE-2020-11173	Trust: 2.5
db:	JVNDB	id:	JVNDB-2020-012921	Trust: 0.8
db:	AUSCERT	id:	ESB-2020.3453	Trust: 0.6
db:	CNNVD	id:	CNNVD-202010-311	Trust: 0.6
db:	VULMON	id:	CVE-2020-11173	Trust: 0.1

sources: VULMON: CVE-2020-11173 // JVNDB: JVNDB-2020-012921 // CNNVD: CNNVD-202010-311 // NVD: CVE-2020-11173

REFERENCES

url:	https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin	Trust: 1.7
url:	https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2020-11173	Trust: 1.4
url:	https://www.auscert.org.au/bulletins/esb-2020.3453/	Trust: 0.6
url:	https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491	Trust: 0.6
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://threatpost.com/google-android-system-flaws/159948/	Trust: 0.1

sources: VULMON: CVE-2020-11173 // JVNDB: JVNDB-2020-012921 // CNNVD: CNNVD-202010-311 // NVD: CVE-2020-11173

SOURCES

db:	VULMON	id:	CVE-2020-11173
db:	JVNDB	id:	JVNDB-2020-012921
db:	CNNVD	id:	CNNVD-202010-311
db:	NVD	id:	CVE-2020-11173

LAST UPDATE DATE

2024-11-23T21:06:52.831000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2020-11173	date:	2020-11-06T00:00:00
db:	JVNDB	id:	JVNDB-2020-012921	date:	2021-06-15T03:03:00
db:	CNNVD	id:	CNNVD-202010-311	date:	2021-07-13T00:00:00
db:	NVD	id:	CVE-2020-11173	date:	2024-11-21T04:57:03.403

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2020-11173	date:	2020-11-02T00:00:00
db:	JVNDB	id:	JVNDB-2020-012921	date:	2021-06-15T00:00:00
db:	CNNVD	id:	CNNVD-202010-311	date:	2020-10-06T00:00:00
db:	NVD	id:	CVE-2020-11173	date:	2020-11-02T07:15:14.153