CVE-2020-11273
HIGHQualcomm PMx Firmware - Null Pointer Dereference in Histogram KPI Teardown
Title source: llmDescription
Histogram type KPI was teardown with the assumption of the existence of histogram binning info and will lead to null pointer access when histogram binning info is missing due to lack of null check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin
Scores
CVSS v3
7.5
EPSS
0.0025
EPSS Percentile
47.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (50)
qualcomm/csrb31024_firmware
qualcomm/pm3003a_firmware
qualcomm/pm6150a_firmware
qualcomm/pm6150l_firmware
qualcomm/pm6350_firmware
qualcomm/pm7150a_firmware
qualcomm/pm7150l_firmware
qualcomm/pm7250_firmware
qualcomm/pm7250b_firmware
qualcomm/pm8005_firmware
... and 40 more
Published
May 07, 2021
Tracked Since
Feb 18, 2026