CVE-2020-11156

HIGH

Qualcomm Bluetooth Firmware - Out-of-bounds Read in L2cap Packet Length Handling

Title source: llm
STIX 2.1

Description

u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250

Scores

CVSS v3 8.1
EPSS 0.0042
EPSS Percentile 33.6%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Details

CWE
CWE-125 CWE-20
Status published
Products (8)
qualcomm/qca6390_firmware
qualcomm/qcn7605_firmware
qualcomm/qcs404_firmware
qualcomm/sa415m_firmware
qualcomm/sa515m_firmware
qualcomm/sc8180x_firmware
qualcomm/sdx55_firmware
qualcomm/sm8250_firmware
Published Nov 02, 2020
Tracked Since Feb 18, 2026