1. Home
  2. CVE Database
  3. CVE-2020-11203
HIGH · 7.1

CVE-2020-11203

Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Ind...

Vulnerability Description

Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CVSS Score

7.1

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
QualcommApq8009W Firmware-
QualcommApq8009W-
QualcommApq8064Au Firmware-
QualcommApq8064Au-
QualcommApq8096Au Firmware-
QualcommApq8096Au-
QualcommAqt1000 Firmware-
QualcommAqt1000-
QualcommMsm8909W Firmware-
QualcommMsm8909W-
QualcommMsm8996Au Firmware-
QualcommMsm8996Au-
QualcommPm215 Firmware-
QualcommPm215-
QualcommPm456 Firmware-
QualcommPm456-
QualcommPm6125 Firmware-
QualcommPm6125-
QualcommPm6150 Firmware-
QualcommPm6150-

Related Weaknesses (CWE)

CWE-787

References

FAQ

What is CVE-2020-11203?

CVE-2020-11203 is a vulnerability with a CVSS score of 7.1 (HIGH). Stack overflow may occur if GSM/WCDMA broadcast config size received from user is larger than variable length array in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Ind...

How severe is CVE-2020-11203?

CVE-2020-11203 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-11203?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Apq8009W Firmware, Qualcomm Apq8009W, Qualcomm Apq8064Au Firmware, Qualcomm Apq8064Au, Qualcomm Apq8096Au Firmware.