1. Home
  2. CVE Database
  3. CVE-2020-11117
CRITICAL · 9.8

CVE-2020-11117

u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, ...

Vulnerability Description

u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ6018, IPQ8064, IPQ8074, QCA4531, QCA9531, QCA9980

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommIpq4019 Firmware-
QualcommIpq4019-
QualcommIpq6018 Firmware-
QualcommIpq6018-
QualcommIpq8064 Firmware-
QualcommIpq8064-
QualcommIpq8074 Firmware-
QualcommIpq8074-
QualcommQca4531 Firmware-
QualcommQca4531-
QualcommQca9531 Firmware-
QualcommQca9531-
QualcommQca9980 Firmware-
QualcommQca9980-

Related Weaknesses (CWE)

CWE-77

References

FAQ

What is CVE-2020-11117?

CVE-2020-11117 is a vulnerability with a CVSS score of 9.8 (CRITICAL). u'In the lbd service, an external user can issue a specially crafted debug command to overwrite arbitrary files with arbitrary content resulting in remote code execution.' in Snapdragon Connectivity, ...

How severe is CVE-2020-11117?

CVE-2020-11117 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-11117?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Ipq4019 Firmware, Qualcomm Ipq4019, Qualcomm Ipq6018 Firmware, Qualcomm Ipq6018, Qualcomm Ipq8064 Firmware.