1. Home
  2. CVE Database
  3. CVE-2020-3642
HIGH · 7.8

CVE-2020-3642

Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon Mobile in...

Vulnerability Description

Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon Mobile in Kamorta, QCS605, Rennell, Saipan, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommKamorta Firmware-
QualcommKamorta-
QualcommQcs605 Firmware-
QualcommQcs605-
QualcommRennell Firmware-
QualcommRennell-
QualcommSaipan Firmware-
QualcommSaipan-
QualcommSdm670 Firmware-
QualcommSdm670-
QualcommSdm710 Firmware-
QualcommSdm710-
QualcommSdm845 Firmware-
QualcommSdm845-
QualcommSm6150 Firmware-
QualcommSm6150-
QualcommSm7150 Firmware-
QualcommSm7150-
QualcommSm8150 Firmware-
QualcommSm8150-

Related Weaknesses (CWE)

CWE-416

References

FAQ

What is CVE-2020-3642?

CVE-2020-3642 is a vulnerability with a CVSS score of 7.8 (HIGH). Use after free issue in camera applications when used randomly over multiple operations due to pointer not set to NULL after free/destroy of the object in Snapdragon Consumer IOT, Snapdragon Mobile in...

How severe is CVE-2020-3642?

CVE-2020-3642 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-3642?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Kamorta Firmware, Qualcomm Kamorta, Qualcomm Qcs605 Firmware, Qualcomm Qcs605, Qualcomm Rennell Firmware.