CVE-2020-11159

high-risk

Published 2021-06-09

Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Do I need to act?

0.24% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.1/10 Critical

NETWORK / LOW complexity

Affected Products (20)

Pmx20 Firmware

Pmx24 Firmware

Pmx50 Firmware

Pmx55 Firmware

Qat3514 Firmware

Qat3516 Firmware

Qat3518 Firmware

Qat3519 Firmware

Qat3522 Firmware

Qat3550 Firmware

Qat3555 Firmware

Qat5515 Firmware

Qat5516 Firmware

Qat5522 Firmware

Qat5533 Firmware

Qat5568 Firmware

Qbt1000 Firmware

Qbt1500 Firmware

Qbt2000 Firmware

Qca0000 Firmware

Affected Vendors

Qualcomm

References (2)

Vendor Advisory https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulleti...

/ 100

high-risk

Severity 31/34 · Critical

Exploitability 1/34 · Minimal

Exposure 33/34 · Critical