Vulnerability Description
Memory corruption due to lack of check of validation of pointer to buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking
CVSS Score
8.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Ar7420 Firmware | - |
| Qualcomm | Ar7420 | - |
| Qualcomm | Ar9580 Firmware | - |
| Qualcomm | Ar9580 | - |
| Qualcomm | Csr8811 Firmware | - |
| Qualcomm | Csr8811 | - |
| Qualcomm | Ipq4018 Firmware | - |
| Qualcomm | Ipq4018 | - |
| Qualcomm | Ipq4019 Firmware | - |
| Qualcomm | Ipq4019 | - |
| Qualcomm | Ipq4028 Firmware | - |
| Qualcomm | Ipq4028 | - |
| Qualcomm | Ipq4029 Firmware | - |
| Qualcomm | Ipq4029 | - |
| Qualcomm | Qca10901 Firmware | - |
| Qualcomm | Qca10901 | - |
| Qualcomm | Qca4024 Firmware | - |
| Qualcomm | Qca4024 | - |
| Qualcomm | Qca7500 Firmware | - |
| Qualcomm | Qca7500 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletiPatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletiPatchVendor Advisory
FAQ
What is CVE-2020-11256?
CVE-2020-11256 is a vulnerability with a CVSS score of 8.8 (HIGH). Memory corruption due to lack of check of validation of pointer to buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking
How severe is CVE-2020-11256?
CVE-2020-11256 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-11256?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Ar7420 Firmware, Qualcomm Ar7420, Qualcomm Ar9580 Firmware, Qualcomm Ar9580, Qualcomm Csr8811 Firmware.