Vulnerabilities > CVE-2020-3636 - Unspecified vulnerability in Qualcomm products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

qualcomm

NVD

Published: 2020-09-08

Updated: 2020-09-14

Summary

u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Kamorta Firmware - Qualcomm Qcs404 Firmware - Qualcomm Qcs610 Firmware - Qualcomm Rennell Firmware - Qualcomm Sc7180 Firmware - Qualcomm Sdx55 Firmware - Qualcomm Sm6150 Firmware - Qualcomm Sm7150 Firmware - Qualcomm Sm8250 Firmware - Qualcomm Sxr2130 Firmware -	10
Hardware	Qualcomm Qualcomm Kamorta - Qualcomm Qcs404 - Qualcomm Qcs610 - Qualcomm Rennell - Qualcomm Sc7180 - Qualcomm Sdx55 - Qualcomm Sm6150 - Qualcomm Sm7150 - Qualcomm Sm8250 - Qualcomm Sxr2130 -	10

Summary

Vulnerable Configurations

References