Description
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55, SM8150, SM8250, SXR2130
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin
Scores
CVSS v3
5.5
EPSS
0.0010
EPSS Percentile
26.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-125
Status
published
Products (8)
qualcomm/nicobar_firmware
qualcomm/qcs405_firmware
qualcomm/saipan_firmware
qualcomm/sc8180x_firmware
qualcomm/sdx55_firmware
qualcomm/sm8150_firmware
qualcomm/sm8250_firmware
qualcomm/sxr2130_firmware
Published
Sep 09, 2020
Tracked Since
Feb 18, 2026