CVE-2020-11117

Summary

u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ6018, IPQ8064, IPQ8074, QCA4531, QCA9531, QCA9980

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastructure and NetworkingIPQ4019, IPQ6018, IPQ8064, IPQ8074, QCA4531, QCA9531, QCA9980affected

Weaknesses

  • Command Injection Vulnerability in lbd service

ADP Enrichment

CVE Program Container

Additional References

References