Vulnerability Name:

CVE-2020-11258 (CCN-203507)

Assigned:2020-03-31
Published:2021-01-04
Updated:2021-06-16
Summary:Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking
CVSS v3 Severity:8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
8.1 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2020-11258

Source: XF
Type: UNKNOWN
qualcomm-cve202011258-code-exec(203507)

Source: CCN
Type: Qualcomm Web site
January 2021 Security Bulletin

Source: CONFIRM
Type: Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin

Vulnerable Configuration:Configuration 1:
  • cpe:/o:qualcomm:ar7420_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ar7420:-:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/o:qualcomm:ar9580_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ar9580:-:*:*:*:*:*:*:*

  • Configuration 3:
  • cpe:/o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:csr8811:-:*:*:*:*:*:*:*

  • Configuration 4:
  • cpe:/o:qualcomm:ipq4018_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4018:-:*:*:*:*:*:*:*

  • Configuration 5:
  • cpe:/o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4019:-:*:*:*:*:*:*:*

  • Configuration 6:
  • cpe:/o:qualcomm:ipq4028_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4028:-:*:*:*:*:*:*:*

  • Configuration 7:
  • cpe:/o:qualcomm:ipq4029_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4029:-:*:*:*:*:*:*:*

  • Configuration 8:
  • cpe:/o:qualcomm:qca10901_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca10901:-:*:*:*:*:*:*:*

  • Configuration 9:
  • cpe:/o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca4024:-:*:*:*:*:*:*:*

  • Configuration 10:
  • cpe:/o:qualcomm:qca7500_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca7500:-:*:*:*:*:*:*:*

  • Configuration 11:
  • cpe:/o:qualcomm:qca7520_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca7520:-:*:*:*:*:*:*:*

  • Configuration 12:
  • cpe:/o:qualcomm:qca7550_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca7550:-:*:*:*:*:*:*:*

  • Configuration 13:
  • cpe:/o:qualcomm:qca8075_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca8075:-:*:*:*:*:*:*:*

  • Configuration 14:
  • cpe:/o:qualcomm:qca9880_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9880:-:*:*:*:*:*:*:*

  • Configuration 15:
  • cpe:/o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9886:-:*:*:*:*:*:*:*

  • Configuration 16:
  • cpe:/o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9888:-:*:*:*:*:*:*:*

  • Configuration 17:
  • cpe:/o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9889:-:*:*:*:*:*:*:*

  • Configuration 18:
  • cpe:/o:qualcomm:qca9898_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9898:-:*:*:*:*:*:*:*

  • Configuration 19:
  • cpe:/o:qualcomm:qca9984_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9984:-:*:*:*:*:*:*:*

  • Configuration 20:
  • cpe:/o:qualcomm:qca9992_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9992:-:*:*:*:*:*:*:*

  • Configuration 21:
  • cpe:/o:qualcomm:qca9994_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9994:-:*:*:*:*:*:*:*

  • Configuration 22:
  • cpe:/o:qualcomm:qcn3018_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qcn3018:-:*:*:*:*:*:*:*

  • Configuration 23:
  • cpe:/o:qualcomm:qfe1922_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qfe1922:-:*:*:*:*:*:*:*

  • Configuration 24:
  • cpe:/o:qualcomm:qfe1952_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qfe1952:-:*:*:*:*:*:*:*

  • Configuration 25:
  • cpe:/o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

  • Configuration 26:
  • cpe:/o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/o:qualcomm:snapdragon_wired_infrastructure_&_networking:-:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    qualcomm ar7420 firmware -
    qualcomm ar7420 -
    qualcomm ar9580 firmware -
    qualcomm ar9580 -
    qualcomm csr8811 firmware -
    qualcomm csr8811 -
    qualcomm ipq4018 firmware -
    qualcomm ipq4018 -
    qualcomm ipq4019 firmware -
    qualcomm ipq4019 -
    qualcomm ipq4028 firmware -
    qualcomm ipq4028 -
    qualcomm ipq4029 firmware -
    qualcomm ipq4029 -
    qualcomm qca10901 firmware -
    qualcomm qca10901 -
    qualcomm qca4024 firmware -
    qualcomm qca4024 -
    qualcomm qca7500 firmware -
    qualcomm qca7500 -
    qualcomm qca7520 firmware -
    qualcomm qca7520 -
    qualcomm qca7550 firmware -
    qualcomm qca7550 -
    qualcomm qca8075 firmware -
    qualcomm qca8075 -
    qualcomm qca9880 firmware -
    qualcomm qca9880 -
    qualcomm qca9886 firmware -
    qualcomm qca9886 -
    qualcomm qca9888 firmware -
    qualcomm qca9888 -
    qualcomm qca9889 firmware -
    qualcomm qca9889 -
    qualcomm qca9898 firmware -
    qualcomm qca9898 -
    qualcomm qca9984 firmware -
    qualcomm qca9984 -
    qualcomm qca9992 firmware -
    qualcomm qca9992 -
    qualcomm qca9994 firmware -
    qualcomm qca9994 -
    qualcomm qcn3018 firmware -
    qualcomm qcn3018 -
    qualcomm qfe1922 firmware -
    qualcomm qfe1922 -
    qualcomm qfe1952 firmware -
    qualcomm qfe1952 -
    qualcomm wcd9340 firmware -
    qualcomm wcd9340 -
    qualcomm wsa8810 firmware -
    qualcomm wsa8810 -
    qualcomm snapdragon wired infrastructure & networking -