CVE-2020-3652
Published Apr 16, 2020
Last updated 3 years ago
Overview
- Description
- Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850
- Source
- product-security@qualcomm.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.1
- Impact score
- 5.2
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 9.4
- Impact score
- 9.2
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-125
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4796F9BD-61B3-45ED-B5E3-B061887285E2"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "96FBD6DF-F174-4690-AA3D-1E8974E3627F"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "792A18B7-E775-4AF4-A8C4-D434400317B0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B5170B38-0976-49BB-A916-5BE44C567218"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "30A45C1A-C921-42B5-9237-367245023B45"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "56C9D979-F214-4CD4-8CF9-43BC804BB179"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3ADE826-C55D-4731-80B9-164FEA290FAC"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]