VDB
CNVD-2020-20203
CNVD-2020-20203
PUBLISHED
Qualcomm MDM9206等都是美国高通(Qualcomm)公司的产品。MDM9206是一款中央处理器(CPU)产品。SDX24是一款调制解调器。APQ8017是一款中央处理器(CPU)产品。 多款Qualcomm产品中的Multi-Mode Call Processor存在缓冲区溢出漏洞,该漏洞源于在解码Service Reject/RAU Reject/PTMSI Realloc cmd时,程序未能进行正确的长度检查,攻击者可借助特制的请求利用该漏洞获取敏感信息或造成拒绝服务。
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm MDM9635M | ||
| Qualcomm SDM636 | ||
| Qualcomm SDX20 | ||
| Qualcomm APQ8096AU | ||
| Qualcomm SDX55 | ||
| Qualcomm APQ8017 | ||
| Qualcomm SM6150 | ||
| Qualcomm MDM9615 | ||
| Qualcomm MSM8953 | ||
| Qualcomm MDM9205 | ||
| Qualcomm MDM9640 | ||
| Qualcomm APQ8053 | ||
| Qualcomm MDM9625 | ||
| Qualcomm SDM850 | ||
| Qualcomm MSM8939 | ||
| Qualcomm SDM429W | ||
| Qualcomm APQ8096 | ||
| Qualcomm MDM9150 | ||
| Qualcomm QCS605 | ||
| Qualcomm MDM9206 |
…and 35 more
Timeline
- Mar 4, 2020 CVE ID Reserved
- Mar 30, 2020 CVE Published