CVE-2020-3700 Information

Feb 14, 2021 cve

Description

Possible out of bounds read due to a missing bounds check and could lead to local information disclosure in the wifi driver with no additional execution privileges needed in Snapdragon Auto Snapdragon Compute Snapdragon Connectivity Snapdragon Consumer IOT Snapdragon Mobile Snapdragon Voice & Music Snapdragon Wearables Snapdragon Wired Infrastructure and Networking in APQ8053 APQ8096AU IPQ4019 IPQ8064 IPQ8074 MDM9607 MSM8909W MSM8996AU QCA6574AU QCA9531 QCA9558 QCA9980 SC8180X SDM439 SDX55 SM8150 SM8250 SXR2130

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Reference

https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin https://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

7.5

Share on: