CVE-2020-3625

Summary

When making query to DSP capabilities, Stack out of bounds occurs due to wrong buffer length configured for DSP attributes in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in SM8250, SXR2130

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon MobileSM8250, SXR2130affected

Weaknesses

  • Buffer Copy Without Checking Size of Input in DSP Services

ADP Enrichment

CVE Program Container

Additional References

References