CVE-2020-3638

HIGH

Snapdragon Auto - Memory Corruption

Title source: llm

Description

u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

References (2)

Core 2

Core References

Broken Link x_refsource_confirm

https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin

Scores

CVSS v3 7.8

EPSS 0.0003

EPSS Percentile 9.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (16)

qualcomm/agatti_firmware

qualcomm/bitra_firmware

qualcomm/kamorta_firmware

qualcomm/qca6390_firmware

qualcomm/qcs404_firmware

qualcomm/qcs610_firmware

qualcomm/rennell_firmware

qualcomm/sa515m_firmware

qualcomm/sc7180_firmware

qualcomm/sc8180x_firmware

... and 6 more

Published Nov 02, 2020

Tracked Since Feb 18, 2026