Vulnerability Description
Out of bound access due to usage of an out-of-range pointer offset in the camera driver. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Apq8053 | - |
| Qualcomm | Apq8096Au | - |
| Qualcomm | Aqt1000 | - |
| Qualcomm | Ar8031 | - |
| Qualcomm | Ar8035 | - |
| Qualcomm | Csra6620 | - |
| Qualcomm | Csra6640 | - |
| Qualcomm | Mdm9650 | - |
| Qualcomm | Pm215 | - |
| Qualcomm | Pm3003A | - |
| Qualcomm | Pm6125 | - |
| Qualcomm | Pm6150 | - |
| Qualcomm | Pm6150A | - |
| Qualcomm | Pm6150L | - |
| Qualcomm | Pm6350 | - |
| Qualcomm | Pm640A | - |
| Qualcomm | Pm640L | - |
| Qualcomm | Pm640P | - |
| Qualcomm | Pm660 | - |
| Qualcomm | Pm660L | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletBroken Link
- https://www.qualcomm.com/company/product-security/bulletins/december-2020-securiPatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletBroken Link
FAQ
What is CVE-2020-11149?
CVE-2020-11149 is a vulnerability with a CVSS score of 6.7 (MEDIUM). Out of bound access due to usage of an out-of-range pointer offset in the camera driver. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial...
How severe is CVE-2020-11149?
CVE-2020-11149 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-11149?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Apq8053, Qualcomm Apq8096Au, Qualcomm Aqt1000, Qualcomm Ar8031, Qualcomm Ar8035.