Vulnerabilities > CVE-2020-11172 - Out-of-bounds Write vulnerability in Qualcomm products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

qualcomm

CWE-787

NVD

Published: 2020-11-02

Updated: 2021-07-21

Summary

u'fscanf reads a string from a file and stores its contents on a statically allocated stack memory which leads to stack overflow' in Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ6018, IPQ8064, IPQ8074, QCA9531, QCA9980

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Ipq4019 Firmware - Qualcomm Ipq6018 Firmware - Qualcomm Ipq8064 Firmware - Qualcomm Ipq8074 Firmware - Qualcomm Qca9531 Firmware - Qualcomm Qca9980 Firmware -	6
Hardware	Qualcomm Qualcomm Ipq4019 - Qualcomm Ipq6018 - Qualcomm Ipq8064 - Qualcomm Ipq8074 - Qualcomm Qca9531 - Qualcomm Qca9980 -	6

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References