CVE-2020-3632
HIGHSnapdragon Compute/Snapdragon Mobile - Memory Overflow
Title source: llmDescription
u'Incorrect validation of ring context fetched from host memory can lead to memory overflow' in Snapdragon Compute, Snapdragon Mobile in QSM8350, SC7180, SDX55, SDX55M, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR2130, SXR2130P
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin
Scores
CVSS v3
7.8
EPSS
0.0003
EPSS Percentile
9.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-129
Status
published
Products (19)
qualcomm/qsm8350_firmware
qualcomm/sc7180_firmware
qualcomm/sdx55_firmware
qualcomm/sdx55m_firmware
qualcomm/sm6150_firmware
qualcomm/sm6250_firmware
qualcomm/sm6250p_firmware
qualcomm/sm7125_firmware
qualcomm/sm7150_firmware
qualcomm/sm7150p_firmware
... and 9 more
Published
Nov 12, 2020
Tracked Since
Feb 18, 2026