Details of VAR-202102-0111

ID

VAR-202102-0111

CVE

CVE-2020-11203

TITLE

plural Qualcomm Out-of-bounds write vulnerabilities in the product

Trust: 0.8

sources: JVNDB: JVNDB-2020-016177

DESCRIPTION

Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables. plural Qualcomm The product contains a vulnerability related to out-of-bounds writing.Information is obtained and denial of service (DoS) It may be put into a state

Trust: 1.62

sources: NVD: CVE-2020-11203 // JVNDB: JVNDB-2020-016177

AFFECTED PRODUCTS

vendor:	qualcomm	model:	qca6564	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn6850	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm8005	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmx55	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qdm2301	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat3518	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmw3100	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat3555	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd675	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6391	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8096au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3998	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qsw8573	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8009w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8810	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd429	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm6250	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9375	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	smb231	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm640p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	smr526	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmm8155au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmk8002	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm855b	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8909w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat3522	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qpa4360	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr675	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm640l	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr865	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6595	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3615	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn6851	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wtr2955	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qtc800h	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8815	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6696	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm640a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs605	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	aqt1000	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm6150a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qet5100	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3991	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm429w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca8337	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm855l	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qsw8574	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	rgr7640au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat5516	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3620	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qtc410s	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9340	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm855	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx50m	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wtr5975	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmr735a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm6150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9341	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm670	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qtc801s	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9326	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6564a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm8916	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr052	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3990	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3980	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm670l	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm8009	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr051	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmi8998	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9370	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3680	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm6125	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat5515	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qpa4361	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm8008	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6145p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	smb1355	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wtr2965	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qtm527	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmi632	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd855	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	smb1390	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qdm2302	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3660b	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda429w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3610	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm215	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6564au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm8004	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmm855au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat3550	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6420	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qat3519	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9380	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qsw6310	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmm8195au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qpa5460	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qtm525	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qualcomm215	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8155	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmm6155au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6595au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8195p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd665	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3950	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wgr7640	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm456	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm6150l	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm6250	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wtr4905	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx55m	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr660g	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm830	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdw3100	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qet4101	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3988	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qtc800s	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd730	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn6750	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd720g	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qbt1500	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdr8150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wtr3925	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	smb1381	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx55	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8064au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm8998	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pm855p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6430	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qpa6560	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	pmx50	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qbt2000	scope:	eq	version:	-	Trust: 1.0
vendor:	クアルコム	model:	apq8096au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	pm6125	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	msm8909w	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	apq8064au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	apq8009w	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	aqt1000	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	pm215	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	pm456	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	msm8996au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	pm6150	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2020-016177 // NVD: CVE-2020-11203

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2020-11203
value:	HIGH
Trust: 1.0
NVD:	CVE-2020-11203
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-202102-040
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2020-11203
severity:	LOW
baseScore:	3.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

nvd@nist.gov:	CVE-2020-11203
baseSeverity:	HIGH
baseScore:	7.1
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.2
version:	3.1
Trust: 1.0
NVD:	CVE-2020-11203
baseSeverity:	HIGH
baseScore:	7.1
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2020-016177 // CNNVD: CNNVD-202102-040 // NVD: CVE-2020-11203

PROBLEMTYPE DATA

problemtype:	CWE-787	Trust: 1.0
problemtype:	Out-of-bounds writing (CWE-787) [NVD Evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2020-016177 // NVD: CVE-2020-11203

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202102-040

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202102-040

PATCH

title:	February 2021 Security Bulletin	url:	https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin	Trust: 0.8
title:	Qualcomm RIL Buffer error vulnerability fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=143128	Trust: 0.6

sources: JVNDB: JVNDB-2020-016177 // CNNVD: CNNVD-202102-040

EXTERNAL IDS

db:	NVD	id:	CVE-2020-11203	Trust: 2.4
db:	JVNDB	id:	JVNDB-2020-016177	Trust: 0.8
db:	CNNVD	id:	CNNVD-202102-040	Trust: 0.6

sources: JVNDB: JVNDB-2020-016177 // CNNVD: CNNVD-202102-040 // NVD: CVE-2020-11203

REFERENCES

url:	https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2020-11203	Trust: 1.4
url:	https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-february-2021-34454	Trust: 0.6

sources: JVNDB: JVNDB-2020-016177 // CNNVD: CNNVD-202102-040 // NVD: CVE-2020-11203

SOURCES

db:	JVNDB	id:	JVNDB-2020-016177
db:	CNNVD	id:	CNNVD-202102-040
db:	NVD	id:	CVE-2020-11203

LAST UPDATE DATE

2024-08-14T14:56:05.097000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2020-016177	date:	2021-11-11T09:04:00
db:	CNNVD	id:	CNNVD-202102-040	date:	2021-03-02T00:00:00
db:	NVD	id:	CVE-2020-11203	date:	2021-03-01T16:01:31.900

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2020-016177	date:	2021-11-11T00:00:00
db:	CNNVD	id:	CNNVD-202102-040	date:	2021-02-01T00:00:00
db:	NVD	id:	CVE-2020-11203	date:	2021-02-22T07:15:13.970