Description
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250
References (1)
Core 1
Core References
Broken Link, Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin
Scores
CVSS v3
9.8
EPSS
0.0037
EPSS Percentile
59.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-191
Status
published
Products (19)
qualcomm/ipq5018_firmware
qualcomm/ipq6018_firmware
qualcomm/ipq8074_firmware
qualcomm/kamorta_firmware
qualcomm/nicobar_firmware
qualcomm/qca6390_firmware
qualcomm/qcn7605_firmware
qualcomm/qcs404_firmware
qualcomm/qcs405_firmware
qualcomm/rennell_firmware
... and 9 more
Published
Sep 08, 2020
Tracked Since
Feb 18, 2026