CVE-2020-10367

MEDIUM

Cypress/Broadcom Wireless Combo - Memory Corruption

Title source: llm

Certain Cypress (and Broadcom) Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack.

Core 4

Core References

Various Sources

Various Sources

Issue Tracking

Patch

CVSS v3 5.5

EPSS 0.0008

EPSS Percentile 23.6%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-203

Status published

Published Nov 10, 2024

Tracked Since Feb 18, 2026