Description
Buffer over-read while parsing RPS due to lack of check of input validation on values received from user side. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
References (2)
Core 2
Core References
Broken Link x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin
Scores
CVSS v3
7.5
EPSS
0.0034
EPSS Percentile
56.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-125
CWE-20
Status
published
Products (50)
qualcomm/apq8053
qualcomm/apq8064au
qualcomm/apq8096au
qualcomm/aqt1000
qualcomm/ar8151
qualcomm/mdm9640
qualcomm/mdm9650
qualcomm/msm8953
qualcomm/msm8996au
qualcomm/pm3003a
... and 40 more
Published
Jan 21, 2021
Tracked Since
Feb 18, 2026