CVE-2020-11183

Summary

A process can potentially cause a buffer overflow in the display service allowing privilege escalation by executing code as that service in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesAPQ8009, APQ8009W, APQ8017, APQ8037, APQ8053, APQ8096AU, AR8151, MDM9206, MDM9250, MDM9650, MDM9655, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, PM215, PM439, PM660, PM660A, PM660L, PM8004, PM8005, PM855A, PM8909, PM8916, PM8937, PM8940, PM8953, PM8996, PM8998, PMD9607, PMD9655, PMI632, PMI8937, PMI8940, PMI8952, PMI8994, PMI8996, PMI8998, PMK8001, PMM855AU, PMM8996AU, PMX20, QAT3514, QAT3522, QAT3550, QBT1000, QBT1500, QCA6174A, QCA6310, QCA6320, QCA6564A, QCA6564AU, QCA6574A, QCA6574AU, QCA6595, QCA6595AU, QCA9367, QCA9377, QCA9379, QCC1110, QET4100, QET4101, QET4200AQ, QET5100, QFE2080FC, QFE2081FC, QFE2082FC, QFE2101, QFE2550, QFE3100, QFE3440FC, QFE4301, QFE4302, QFE4303, QFE4305, QFE4308, QFE4309, QFE4320, QFE4373FC, QFE4455FC, QFE4465FC, QLN1021AQ, QLN1030, QLN1031, QLN1035BD, QLN1036AQ, QPA4340, QPA4360, QPA5373, QPA5460, QSW8573, QTC800H, QTC800S, QTC800T, QTC801S, Qualcomm215, RGR7640AU, RSW8577, SD 636, SD439, SD450, SD660, SD710, SD712, SD820, SD821, SD835, SD ...[truncated*]affected

Weaknesses

  • Buffer Copy Without Checking Size of Input in Display

ADP Enrichment

CVE Program Container

Additional References

References