1. Home
  2. CVE Database
  3. CVE-2020-3617
HIGH · 7.1

CVE-2020-3617

u'Buffer over-read Issue in Q6 testbus framework due to diag packet length is not completely validated before accessing the field and leads to Information disclosure.' in Snapdragon Compute, Snapdrago...

Vulnerability Description

u'Buffer over-read Issue in Q6 testbus framework due to diag packet length is not completely validated before accessing the field and leads to Information disclosure.' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in Kamorta, Nicobar, QCS605, QCS610, Rennell, SC7180, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SM6150, SM7150, SM8150, SXR1130

CVSS Score

7.1

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
QualcommKamorta Firmware-
QualcommKamorta-
QualcommNicobar Firmware-
QualcommNicobar-
QualcommQcs605 Firmware-
QualcommQcs605-
QualcommQcs610 Firmware-
QualcommQcs610-
QualcommRennell Firmware-
QualcommRennell-
QualcommSc7180 Firmware-
QualcommSc7180-
QualcommSda660 Firmware-
QualcommSda660-
QualcommSdm630 Firmware-
QualcommSdm630-
QualcommSdm636 Firmware-
QualcommSdm636-
QualcommSdm660 Firmware-
QualcommSdm660-

Related Weaknesses (CWE)

CWE-20CWE-125

References

FAQ

What is CVE-2020-3617?

CVE-2020-3617 is a vulnerability with a CVSS score of 7.1 (HIGH). u'Buffer over-read Issue in Q6 testbus framework due to diag packet length is not completely validated before accessing the field and leads to Information disclosure.' in Snapdragon Compute, Snapdrago...

How severe is CVE-2020-3617?

CVE-2020-3617 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-3617?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Kamorta Firmware, Qualcomm Kamorta, Qualcomm Nicobar Firmware, Qualcomm Nicobar, Qualcomm Qcs605 Firmware.