CVE-2020-3610

HIGH

Snapdragon Auto Snapdragon Compute Snapdragon Consumer Electronics ...

Title source: llm

Description

Possibility of double free of the drawobj that is added to the drawqueue array of the context during IOCTL commands as there is no refcount taken for this object in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, APQ8098, MSM8909W, MSM8917, MSM8953, MSM8996AU, Nicobar, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

References (1)

[Patch, Vendor Advisory] https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin

Scores

CVSS v3 7.8

EPSS 0.0004

EPSS Percentile 12.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-415

Status published

Affected Products (37)

qualcomm/apq8009_firmware

qualcomm/apq8053_firmware

qualcomm/apq8096au_firmware

qualcomm/apq8098_firmware

qualcomm/msm8909w_firmware

qualcomm/msm8917_firmware

qualcomm/msm8953_firmware

qualcomm/msm8996au_firmware

qualcomm/nicobar_firmware

qualcomm/qcs405_firmware

qualcomm/qcs605_firmware

qualcomm/qm215_firmware

qualcomm/rennell_firmware

qualcomm/sa415m_firmware

qualcomm/saipan_firmware

... and 22 more

Timeline

Published Jun 02, 2020

Tracked Since Feb 18, 2026