ID

VAR-202101-0083


CVE

CVE-2020-11148


TITLE

plural  Qualcomm  Product Free Memory Usage Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2020-015617

DESCRIPTION

Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables. plural Qualcomm The product contains a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. Many Qualcomm products have resource management error vulnerabilities. The vulnerability originates from the use of callbacks to release the problem in HIDL when the event is released in the RID thread when the internal mutex is not obtained and the callback instance is triggered to close and delete at the same time

Trust: 2.25

sources: NVD: CVE-2020-11148 // JVNDB: JVNDB-2020-015617 // CNNVD: CNNVD-202012-504 // VULMON: CVE-2020-11148

AFFECTED PRODUCTS

vendor:qualcommmodel:qpm6585scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5677scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qsw8573scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd665scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smr546scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm640pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3950scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4303scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4309scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3660bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdxr1scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs605scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm6150scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6595scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm8870scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1394scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1351scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8801scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm4640scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8017scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5579scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5677scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm2305scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa2625scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9326scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmr525scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat5515scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8673scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdr735scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfs2580scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat5568scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3518scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa4360scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4305scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe2101scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm8895scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5620scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qualcomm215scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd750gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm7350scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn6851scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn6740scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8835scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8150cscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm640lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm855lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6595auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5670scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8350cscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmk7350scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6390scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5679scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdxr25gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5658scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qln5030scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm4650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4308scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8150ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wgr7640scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm7150lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4373fcscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1395scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdr865scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8350bhsscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm8820scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1390scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmi8952scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmm855auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm4643scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3610scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa5461scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm640ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat5522scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm4630scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qtc801sscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd768gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm3301scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3514scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd6905gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmk8003scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdm429wscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa6560scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm215scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8815scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qet4101scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8953scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa6155pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm6621scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1396scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd439scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qln4642scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm6350scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6436scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5679scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa5581scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd855scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfs2630scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm2302scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmk8350scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd765gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smr545scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5621scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm670lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm7150ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smr526scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm8830scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3615scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qet6100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wtr2965scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qet6110scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe2520scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4301scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3522scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3550scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8686scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3991scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm3003ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmx55scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm2307scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5652scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sda429wscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8155scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qbt2000scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmr735bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6391scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8053scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe2550scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat5516scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm439scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8250scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1381scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8937scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8917scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdr735gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8821scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qbt1500scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6426scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm7250bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4320scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa4361scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm7250pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm4650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8009scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3516scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3680bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm7250scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm4641scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmr735ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qtm525scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8810scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qsw6310scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5875scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5641scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1355scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8350bhscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm855bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm7350cscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3519scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat3555scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm6150lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qsw8574scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1360scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qtc800hscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8350scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8150pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmi8937scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm4621scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9385scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd8885gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm6150ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn6856scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm670scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe4302scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9341scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm6582scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qsm7250scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qln4650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8803scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm660scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3620scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wtr2955scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdx55scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9370scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5670scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qtc410sscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmk8002scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5671scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm2301scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa5373scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5621scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3980scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8953scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qat5533scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm5870scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd632scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdr660gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdx55mscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8195pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpm6670scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd429scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdr8250scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8842scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm3302scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qln5020scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn6850scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qet5100mscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmi632scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm6125scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd8655gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3988scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa5580scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm855scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8916scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wtr3925scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfe3340scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8008scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qln5040scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm660lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfs2530scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3998scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6431scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6421scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6696scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pmm8195auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qfs2608scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8830scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8350bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1358scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smr525scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm2310scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3990scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd765scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smb1398scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qet5100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd675scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8150lscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdr660scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3680scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qpa8802scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:pm8150bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9375scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9380scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm5650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qdm2308scope:eqversion: -

Trust: 1.0

vendor:クアルコムmodel:msm8917scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:pm6150ascope: - version: -

Trust: 0.8

vendor:クアルコムmodel:pm3003ascope: - version: -

Trust: 0.8

vendor:クアルコムmodel:pm6125scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:pm215scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:pm6150scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:pm439scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:apq8017scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:msm8953scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:apq8053scope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2020-015617 // NVD: CVE-2020-11148

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-11148
value: MEDIUM

Trust: 1.0

NVD: CVE-2020-11148
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202012-504
value: MEDIUM

Trust: 0.6

VULMON: CVE-2020-11148
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2020-11148
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

nvd@nist.gov: CVE-2020-11148
baseSeverity: MEDIUM
baseScore: 6.7
vectorString: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: CVE-2020-11148
baseSeverity: MEDIUM
baseScore: 6.7
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULMON: CVE-2020-11148 // JVNDB: JVNDB-2020-015617 // CNNVD: CNNVD-202012-504 // NVD: CVE-2020-11148

PROBLEMTYPE DATA

problemtype:CWE-416

Trust: 1.0

problemtype:Use of freed memory (CWE-416) [NVD Evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2020-015617 // NVD: CVE-2020-11148

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202012-504

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-202012-504

PATCH

title:December 2020 Security Bulletinurl:https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Trust: 0.8

title:Google Android Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=136344

Trust: 0.6

sources: JVNDB: JVNDB-2020-015617 // CNNVD: CNNVD-202012-504

EXTERNAL IDS

db:NVDid:CVE-2020-11148

Trust: 2.5

db:JVNDBid:JVNDB-2020-015617

Trust: 0.8

db:CNNVDid:CNNVD-202012-504

Trust: 0.6

db:VULMONid:CVE-2020-11148

Trust: 0.1

sources: VULMON: CVE-2020-11148 // JVNDB: JVNDB-2020-015617 // CNNVD: CNNVD-202012-504 // NVD: CVE-2020-11148

REFERENCES

url:https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin

Trust: 1.7

url:https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2020-11148

Trust: 1.4

url:https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-december-2020-34050

Trust: 0.6

url:https://cwe.mitre.org/data/definitions/416.html

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

sources: VULMON: CVE-2020-11148 // JVNDB: JVNDB-2020-015617 // CNNVD: CNNVD-202012-504 // NVD: CVE-2020-11148

SOURCES

db:VULMONid:CVE-2020-11148
db:JVNDBid:JVNDB-2020-015617
db:CNNVDid:CNNVD-202012-504
db:NVDid:CVE-2020-11148

LAST UPDATE DATE

2024-08-14T13:43:43.985000+00:00


SOURCES UPDATE DATE

db:VULMONid:CVE-2020-11148date:2021-01-29T00:00:00
db:JVNDBid:JVNDB-2020-015617date:2021-10-06T08:57:00
db:CNNVDid:CNNVD-202012-504date:2021-07-09T00:00:00
db:NVDid:CVE-2020-11148date:2021-01-29T19:18:54.403

SOURCES RELEASE DATE

db:VULMONid:CVE-2020-11148date:2021-01-21T00:00:00
db:JVNDBid:JVNDB-2020-015617date:2021-10-06T00:00:00
db:CNNVDid:CNNVD-202012-504date:2020-12-08T00:00:00
db:NVDid:CVE-2020-11148date:2021-01-21T10:15:13.683