CVE-2020-11246

HIGH

Qualcomm Apq8017 Firmware - Double Free

Title source: rule

Description

A double free condition can occur when the device moves to suspend mode during secure playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

References (1)

[Vendor Advisory] https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin

Scores

CVSS v3 8.4

EPSS 0.0003

EPSS Percentile 9.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-415

Status published

Affected Products (50)

qualcomm/apq8017_firmware

qualcomm/apq8037_firmware

qualcomm/apq8053_firmware

qualcomm/aqt1000_firmware

qualcomm/msm8917_firmware

qualcomm/msm8920_firmware

qualcomm/msm8937_firmware

qualcomm/msm8940_firmware

qualcomm/msm8953_firmware

qualcomm/pm215_firmware

qualcomm/pm3003a_firmware

qualcomm/pm4125_firmware

qualcomm/pm439_firmware

qualcomm/pm456_firmware

qualcomm/pm6125_firmware

... and 35 more

Timeline

Published Apr 07, 2021

Tracked Since Feb 18, 2026