Vulnerability Description
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55, SM8150, SM8250, SXR2130
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Nicobar Firmware | - |
| Qualcomm | Nicobar | - |
| Qualcomm | Qcs405 Firmware | - |
| Qualcomm | Qcs405 | - |
| Qualcomm | Saipan Firmware | - |
| Qualcomm | Saipan | - |
| Qualcomm | Sc8180X Firmware | - |
| Qualcomm | Sc8180X | - |
| Qualcomm | Sdx55 Firmware | - |
| Qualcomm | Sdx55 | - |
| Qualcomm | Sm8150 Firmware | - |
| Qualcomm | Sm8150 | - |
| Qualcomm | Sm8250 Firmware | - |
| Qualcomm | Sm8250 | - |
| Qualcomm | Sxr2130 Firmware | - |
| Qualcomm | Sxr2130 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/september-2020-bullePatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/september-2020-bullePatchVendor Advisory
FAQ
What is CVE-2020-3674?
CVE-2020-3674 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mob...
How severe is CVE-2020-3674?
CVE-2020-3674 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-3674?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Nicobar Firmware, Qualcomm Nicobar, Qualcomm Qcs405 Firmware, Qualcomm Qcs405, Qualcomm Saipan Firmware.