Strix
26.1K

CVE-2020-11210

HIGHCVSS 8.8/10EPSS 0.19%

Last modified

CVE-2020-11210 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking. EPSS estimates a 0.19% chance of exploitation in the next 30 days.

Description

Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

Metrics

CVSS 3.1
8.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

EPSS Probability
0.19%

8.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
QualcommAr8035 FirmwareAll versions
QualcommPm4125 FirmwareAll versions
QualcommPm4250 FirmwareAll versions
QualcommPm6125 FirmwareAll versions
QualcommPm6150a FirmwareAll versions
QualcommPm6150l FirmwareAll versions
QualcommPm6350 FirmwareAll versions
QualcommPm7250b FirmwareAll versions
QualcommPm8008 FirmwareAll versions
QualcommPmd9655 FirmwareAll versions
QualcommPmi632 FirmwareAll versions
QualcommPmk8003 FirmwareAll versions
QualcommQat3519 FirmwareAll versions
QualcommQat3522 FirmwareAll versions
QualcommQat3555 FirmwareAll versions
QualcommQat5515 FirmwareAll versions
QualcommQat5516 FirmwareAll versions
QualcommQca6390 FirmwareAll versions
QualcommQca9984 FirmwareAll versions
QualcommQcm2290 FirmwareAll versions
QualcommQcm4290 FirmwareAll versions
QualcommQcs2290 FirmwareAll versions
QualcommQcs405 FirmwareAll versions
QualcommQcs4290 FirmwareAll versions
QualcommQdm2301 FirmwareAll versions
QualcommQdm2302 FirmwareAll versions
QualcommQet4101 FirmwareAll versions
QualcommQet6105 FirmwareAll versions
QualcommQpa4360 FirmwareAll versions
QualcommQpa4361 FirmwareAll versions
QualcommQpa6560 FirmwareAll versions
QualcommQpa8673 FirmwareAll versions
QualcommQsw6310 FirmwareAll versions
QualcommQsw8573 FirmwareAll versions
QualcommQsw8574 FirmwareAll versions
QualcommQtc410s FirmwareAll versions
QualcommQtm525 FirmwareAll versions
QualcommSd460 FirmwareAll versions
QualcommSd480 FirmwareAll versions
QualcommSd662 FirmwareAll versions
QualcommSd665 FirmwareAll versions
QualcommSdr425 FirmwareAll versions
QualcommSdr660 FirmwareAll versions
QualcommSdr735 FirmwareAll versions
QualcommSdr735g FirmwareAll versions
QualcommSm4125 FirmwareAll versions
QualcommSmb1351 FirmwareAll versions
QualcommSmb1354 FirmwareAll versions
QualcommSmb1355 FirmwareAll versions
QualcommSmb1396 FirmwareAll versions

Showing 50 of 67 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2020-11210?
Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
How severe is CVE-2020-11210?
CVE-2020-11210 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 0.19% probability of exploitation in the next 30 days.
How do I fix CVE-2020-11210?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-11210?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST