CVE-2020-11268

Potential UE reset while decoding a crafted Sib1 or SIB1 that schedules unsupported SIBs and can lead to denial of service in Snapdragon Auto, Snapdragon Mobile

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:qualcomm:apq8009:-:::::::*
	cpe:2.3:h:qualcomm:apq8016:-:::::::*
	cpe:2.3:h:qualcomm:apq8074:-:::::::*
	cpe:2.3:h:qualcomm:apq8084:-:::::::*
	cpe:2.3:h:qualcomm:apq8094:-:::::::*
	cpe:2.3:h:qualcomm:ar6003:-:::::::*
	cpe:2.3:h:qualcomm:mdm8215:-:::::::*
	cpe:2.3:h:qualcomm:mdm8215m:-:::::::*
	cpe:2.3:h:qualcomm:mdm8615m:-:::::::*
	cpe:2.3:h:qualcomm:mdm9215:-:::::::*
	cpe:2.3:h:qualcomm:mdm9235m:-:::::::*
	cpe:2.3:h:qualcomm:mdm9310:-:::::::*
	cpe:2.3:h:qualcomm:mdm9609:-:::::::*
	cpe:2.3:h:qualcomm:mdm9615:-:::::::*
	cpe:2.3:h:qualcomm:mdm9615m:-:::::::*
	cpe:2.3:h:qualcomm:mdm9635m:-:::::::*
	cpe:2.3:h:qualcomm:mdm9640:-:::::::*
	cpe:2.3:h:qualcomm:mdm9645:-:::::::*
	cpe:2.3:h:qualcomm:msm8108:-:::::::*
	cpe:2.3:h:qualcomm:msm8208:-:::::::*
	cpe:2.3:h:qualcomm:msm8209:-:::::::*
	cpe:2.3:h:qualcomm:msm8216:-:::::::*
	cpe:2.3:h:qualcomm:msm8274:-:::::::*
	cpe:2.3:h:qualcomm:msm8608:-:::::::*
	cpe:2.3:h:qualcomm:msm8674:-:::::::*
	cpe:2.3:h:qualcomm:msm8916:-:::::::*
	cpe:2.3:h:qualcomm:msm8929:-:::::::*
	cpe:2.3:h:qualcomm:msm8939:-:::::::*
	cpe:2.3:h:qualcomm:msm8974:-:::::::*
	cpe:2.3:h:qualcomm:msm8974p:-:::::::*
	cpe:2.3:h:qualcomm:msm8994:-:::::::*
	cpe:2.3:h:qualcomm:pm8018:-:::::::*
	cpe:2.3:h:qualcomm:pm8841:-:::::::*
	cpe:2.3:h:qualcomm:pm8909:-:::::::*
	cpe:2.3:h:qualcomm:pm8916:-:::::::*
	cpe:2.3:h:qualcomm:pm8941:-:::::::*
	cpe:2.3:h:qualcomm:pm8994:-:::::::*
	cpe:2.3:h:qualcomm:pmd9635:-:::::::*
	cpe:2.3:h:qualcomm:pmd9645:-:::::::*
	cpe:2.3:h:qualcomm:pmi8994:-:::::::*
	cpe:2.3:h:qualcomm:qca1990:-:::::::*
	cpe:2.3:h:qualcomm:qca6174:-:::::::*
	cpe:2.3:h:qualcomm:qca6174a:-:::::::*
	cpe:2.3:h:qualcomm:qca6584:-:::::::*
	cpe:2.3:h:qualcomm:qfe1035:-:::::::*
	cpe:2.3:h:qualcomm:qfe1040:-:::::::*
	cpe:2.3:h:qualcomm:qfe1045:-:::::::*
	cpe:2.3:h:qualcomm:qfe1100:-:::::::*
	cpe:2.3:h:qualcomm:qfe1101:-:::::::*
	cpe:2.3:h:qualcomm:qfe1520:-:::::::*
	cpe:2.3:h:qualcomm:qfe1550:-:::::::*
	cpe:2.3:h:qualcomm:qfe2101:-:::::::*
	cpe:2.3:h:qualcomm:qfe2310:-:::::::*
	cpe:2.3:h:qualcomm:qfe2320:-:::::::*
	cpe:2.3:h:qualcomm:qfe2330:-:::::::*
	cpe:2.3:h:qualcomm:qfe2340:-:::::::*
	cpe:2.3:h:qualcomm:qfe2520:-:::::::*
	cpe:2.3:h:qualcomm:qfe2550:-:::::::*
	cpe:2.3:h:qualcomm:qfe2720:-:::::::*
	cpe:2.3:h:qualcomm:qfe3100:-:::::::*
	cpe:2.3:h:qualcomm:qfe3320:-:::::::*
	cpe:2.3:h:qualcomm:qfe3335:-:::::::*
	cpe:2.3:h:qualcomm:qfe3340:-:::::::*
	cpe:2.3:h:qualcomm:qfe3345:-:::::::*
cpe:2.3:h:qualcomm:sd210:-:::::::*
cpe:2.3:h:qualcomm:smb1360:-:::::::*
cpe:2.3:h:qualcomm:wcd9306:-:::::::*
cpe:2.3:h:qualcomm:wcd9330:-:::::::*
cpe:2.3:h:qualcomm:wcn3610:-:::::::*
cpe:2.3:h:qualcomm:wcn3620:-:::::::*
cpe:2.3:h:qualcomm:wcn3660:-:::::::*
cpe:2.3:h:qualcomm:wcn3660a:-:::::::*
cpe:2.3:h:qualcomm:wcn3660b:-:::::::*
cpe:2.3:h:qualcomm:wcn3680:-:::::::*
cpe:2.3:h:qualcomm:wcn3680b:-:::::::*
cpe:2.3:h:qualcomm:wfr1620:-:::::::*
cpe:2.3:h:qualcomm:wgr7640:-:::::::*
cpe:2.3:h:qualcomm:wtr1605:-:::::::*
cpe:2.3:h:qualcomm:wtr1605l:-:::::::*
cpe:2.3:h:qualcomm:wtr1625:-:::::::*
cpe:2.3:h:qualcomm:wtr1625l:-:::::::*
cpe:2.3:h:qualcomm:wtr2605:-:::::::*
cpe:2.3:h:qualcomm:wtr2955:-:::::::*
cpe:2.3:h:qualcomm:wtr3925:-:::::::*
cpe:2.3:h:qualcomm:wtr4605:-:::::::*
cpe:2.3:h:qualcomm:wtr4905:-:::::::*

History

14 May 2021, 16:19

Type	Values Removed	Values Added
References	~~(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin -~~	(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 5.0 v3 : 7.5
CWE		CWE-20
CPE		cpe:2.3:h:qualcomm:qfe3335:-:::::::* cpe:2.3:h:qualcomm:qfe2101:-:::::::* cpe:2.3:h:qualcomm:qfe3320:-:::::::* cpe:2.3:h:qualcomm:qca6174a:-:::::::* cpe:2.3:h:qualcomm:msm8674:-:::::::* cpe:2.3:h:qualcomm:qfe2320:-:::::::* cpe:2.3:h:qualcomm:smb1360:-:::::::* cpe:2.3:h:qualcomm:mdm9615m:-:::::::* cpe:2.3:h:qualcomm:wcn3680b:-:::::::* cpe:2.3:h:qualcomm:qfe1040:-:::::::* cpe:2.3:h:qualcomm:msm8108:-:::::::* cpe:2.3:h:qualcomm:mdm9609:-:::::::* cpe:2.3:h:qualcomm:mdm9215:-:::::::* cpe:2.3:h:qualcomm:qfe3100:-:::::::* cpe:2.3:h:qualcomm:qca6584:-:::::::* cpe:2.3:h:qualcomm:qfe1100:-:::::::* cpe:2.3:h:qualcomm:wtr3925:-:::::::* cpe:2.3:h:qualcomm:apq8084:-:::::::* cpe:2.3:h:qualcomm:qfe3345:-:::::::* cpe:2.3:h:qualcomm:mdm8215:-:::::::* cpe:2.3:h:qualcomm:qfe1101:-:::::::* cpe:2.3:h:qualcomm:pmd9645:-:::::::* cpe:2.3:h:qualcomm:wcn3660a:-:::::::* cpe:2.3:h:qualcomm:pm8994:-:::::::* cpe:2.3:h:qualcomm:pm8841:-:::::::* cpe:2.3:h:qualcomm:msm8974p:-:::::::* cpe:2.3:h:qualcomm:qfe2720:-:::::::* cpe:2.3:h:qualcomm:wcd9330:-:::::::* cpe:2.3:h:qualcomm:msm8974:-:::::::* cpe:2.3:h:qualcomm:msm8939:-:::::::* cpe:2.3:h:qualcomm:msm8274:-:::::::* cpe:2.3:h:qualcomm:msm8916:-:::::::* cpe:2.3:h:qualcomm:wtr2955:-:::::::* cpe:2.3:h:qualcomm:mdm9635m:-:::::::* cpe:2.3:h:qualcomm:apq8016:-:::::::* cpe:2.3:h:qualcomm:msm8994:-:::::::* cpe:2.3:h:qualcomm:mdm9615:-:::::::* cpe:2.3:h:qualcomm:wtr4605:-:::::::* cpe:2.3:h:qualcomm:mdm8615m:-:::::::* cpe:2.3:h:qualcomm:qca6174:-:::::::* cpe:2.3:h:qualcomm:msm8929:-:::::::* cpe:2.3:h:qualcomm:qfe1035:-:::::::* cpe:2.3:h:qualcomm:pmd9635:-:::::::* cpe:2.3:h:qualcomm:qfe3340:-:::::::* cpe:2.3:h:qualcomm:wcn3620:-:::::::* cpe:2.3:h:qualcomm:msm8208:-:::::::* cpe:2.3:h:qualcomm:mdm9645:-:::::::* cpe:2.3:h:qualcomm:pm8941:-:::::::* cpe:2.3:h:qualcomm:sd210:-:::::::* cpe:2.3:h:qualcomm:qfe2550:-:::::::* cpe:2.3:h:qualcomm:wcd9306:-:::::::* cpe:2.3:h:qualcomm:qfe1045:-:::::::* cpe:2.3:h:qualcomm:qfe1550:-:::::::* cpe:2.3:h:qualcomm:apq8009:-:::::::* cpe:2.3:h:qualcomm:msm8608:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:h:qualcomm:mdm8215m:-:::::::* cpe:2.3:h:qualcomm:wcn3610:-:::::::* cpe:2.3:h:qualcomm:apq8094:-:::::::* cpe:2.3:h:qualcomm:wtr1605l:-:::::::* cpe:2.3:h:qualcomm:wtr1625:-:::::::* cpe:2.3:h:qualcomm:wtr1625l:-:::::::* cpe:2.3:h:qualcomm:pm8916:-:::::::* cpe:2.3:h:qualcomm:wtr2605:-:::::::* cpe:2.3:h:qualcomm:qfe2340:-:::::::* cpe:2.3:h:qualcomm:qfe2330:-:::::::* cpe:2.3:h:qualcomm:apq8074:-:::::::* cpe:2.3:h:qualcomm:msm8209:-:::::::* cpe:2.3:h:qualcomm:wcn3680:-:::::::* cpe:2.3:h:qualcomm:wgr7640:-:::::::* cpe:2.3:h:qualcomm:qfe2520:-:::::::* cpe:2.3:h:qualcomm:wtr1605:-:::::::* cpe:2.3:h:qualcomm:wfr1620:-:::::::* cpe:2.3:h:qualcomm:mdm9235m:-:::::::* cpe:2.3:h:qualcomm:mdm9640:-:::::::* cpe:2.3:h:qualcomm:pm8909:-:::::::* cpe:2.3:h:qualcomm:mdm9310:-:::::::* cpe:2.3:h:qualcomm:wtr4905:-:::::::* cpe:2.3:h:qualcomm:qfe1520:-:::::::* cpe:2.3:h:qualcomm:pmi8994:-:::::::* cpe:2.3:h:qualcomm:qca1990:-:::::::* cpe:2.3:h:qualcomm:msm8216:-:::::::* cpe:2.3:h:qualcomm:wcn3660:-:::::::* cpe:2.3:h:qualcomm:pm8018:-:::::::* cpe:2.3:h:qualcomm:ar6003:-:::::::* cpe:2.3:h:qualcomm:qfe2310:-:::::::*

07 May 2021, 09:31

Type	Values Removed	Values Added

07 May 2021, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-05-07 09:15

Updated : 2023-12-10 13:55

NVD link : CVE-2020-11268

Mitre link : CVE-2020-11268

CVE.ORG link : CVE-2020-11268

JSON object : View

Products Affected

qualcomm

mdm9615m
qfe3340
apq8074
pmi8994
mdm9215
qfe3335
mdm9645
mdm8215m
wtr1605l
pm8916
mdm8615m
msm8274
pm8841
qfe1520
wtr1625
msm8974p
wfr1620
qfe1035
pm8994
wcn3610
msm8916
qfe2310
qfe2320
qca6584
qfe2550
mdm9609
pm8018
wcd9330
wcn3660
apq8009
pm8909
pmd9635
wcn3620
msm8929
qfe1100
wcn3660b
wtr4605
qfe1040
qfe1101
apq8094
mdm9615
ar6003
wcd9306
wtr4905
msm8939
wcn3660a
mdm9640
qfe3345
qfe1045
msm8216
msm8108
qca6174a
pmd9645
msm8674
apq8084
wcn3680b
qfe1550
msm8974
qfe2520
qfe2330
qfe3320
mdm8215
wgr7640
mdm9635m
wcn3680
wtr3925
msm8608
apq8016
msm8209
qca6174
sd210
mdm9235m
qca1990
qfe2340
qfe2101
qfe2720
smb1360
mdm9310
wtr1605
qfe3100
msm8208
wtr2605
wtr1625l
msm8994
pm8941
wtr2955

CWE

CWE-20

Improper Input Validation

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2020-11268

7.5^/10

5.0^/10

Attach tags to `CVE-2020-11268`