Vulnerability Description
A race condition can occur when using the fastrpc memory mapping API. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8053, MSM8909W, MSM8917, MSM8953, QCS605, QM215, SA415M, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM670, SDM710, SDM845, SDX24, SXR1130
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Apq8009 Firmware | - |
| Qualcomm | Apq8009 | - |
| Qualcomm | Apq8053 Firmware | - |
| Qualcomm | Apq8053 | - |
| Qualcomm | Msm8909W Firmware | - |
| Qualcomm | Msm8909W | - |
| Qualcomm | Msm8917 Firmware | - |
| Qualcomm | Msm8917 | - |
| Qualcomm | Msm8953 Firmware | - |
| Qualcomm | Msm8953 | - |
| Qualcomm | Qcs605 Firmware | - |
| Qualcomm | Qcs605 | - |
| Qualcomm | Qm215 Firmware | - |
| Qualcomm | Qm215 | - |
| Qualcomm | Sa415M Firmware | - |
| Qualcomm | Sa415M | - |
| Qualcomm | Sdm429 Firmware | - |
| Qualcomm | Sdm429 | - |
| Qualcomm | Sdm429W Firmware | - |
| Qualcomm | Sdm429W | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinPatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinPatchVendor Advisory
FAQ
What is CVE-2020-3680?
CVE-2020-3680 is a vulnerability with a CVSS score of 7.0 (HIGH). A race condition can occur when using the fastrpc memory mapping API. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearable...
How severe is CVE-2020-3680?
CVE-2020-3680 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-3680?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Apq8009 Firmware, Qualcomm Apq8009, Qualcomm Apq8053 Firmware, Qualcomm Apq8053, Qualcomm Msm8909W Firmware.