Vulnetix
Try Vulnetix Request Demo
CVE-2020-11193 PUBLISHED CVSS 9.800000190734863 CRITICAL

u'Buffer over read can happen while parsing mkv clip due to improper typecasting of data returned from atomsize' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8009W, APQ8017, APQ8037, APQ8053, APQ8064AU, APQ8096, APQ8096AU, APQ8096SG, APQ8098, MDM9206, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS405, QCS410, QCS4290, QCS603, QCS605, QCS610, QCS6125, QM215, QSM8350, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDA429W, SDA640, SDA660, SDA670, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM455, SDM630, SDM632, SDM636, SDM640, SDM660, SDM670, SDM710, SDM830, SDM845, SDW2500, SDX20, SDX20M, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR1120, SXR1130, SXR2130, SXR2130P, WCD9330

EPSS 0.40% · 60.2th percentile

Risk Scores

CVSS v3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.40%
60.2th percentile

Affected Products

VendorProductVersions
qualcommmsm8909w_firmware
qualcommsa6155p_firmware
qualcommsa6155_firmware
qualcommsm6115p_firmware
qualcommmsm8905_firmware
qualcommapq8098_firmware
qualcommsdm636_firmware
qualcommsa6145p_firmware
qualcommsm6125_firmware
qualcommwcd9330_firmware
qualcommapq8037_firmware
qualcommsm8350p_firmware
qualcommsdm429w_firmware
qualcommsda640_firmware
qualcommsa8155p_firmware
qualcommsm4125_firmware
qualcommqcm6125_firmware
qualcommapq8064au_firmware
qualcommsda845_firmware
qualcommsdm455_firmware

…and 73 more

Timeline

References

Open in Interactive Console →