CVE-2020-3679
MEDIUMSnapdragon Auto Snapdragon Compute Snapdragon Consumer IOT Snapdrag...
Title source: llmDescription
u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin
Scores
CVSS v3
5.5
EPSS
0.0025
EPSS Percentile
48.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (17)
qualcomm/bitra_firmware
qualcomm/kamorta_firmware
qualcomm/nicobar_firmware
qualcomm/qcs404_firmware
qualcomm/qcs610_firmware
qualcomm/rennell_firmware
qualcomm/sa6155p_firmware
qualcomm/sa8155p_firmware
qualcomm/saipan_firmware
qualcomm/sc7180_firmware
... and 7 more
Published
Sep 09, 2020
Tracked Since
Feb 18, 2026