PT-2020-17602 · Qualcomm · Qcm2150+54
Published
2020-09-09
·
Updated
2020-09-14
·
CVE-2020-3634
CVSS v2.0
9.4
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Qualcomm Snapdragon Auto versions prior to the fixed version
Qualcomm Snapdragon Compute versions prior to the fixed version
Qualcomm Snapdragon Consumer IOT versions prior to the fixed version
Qualcomm Snapdragon Industrial IOT versions prior to the fixed version
Qualcomm Snapdragon Mobile versions prior to the fixed version
Qualcomm Snapdragon Wearables versions prior to the fixed version
APQ8053 version not specified
APQ8096AU version not specified
APQ8098 version not specified
Kamorta version not specified
MDM9150 version not specified
MDM9205 version not specified
MDM9206 version not specified
MDM9607 version not specified
MDM9625 version not specified
MDM9635M version not specified
MDM9640 version not specified
MDM9645 version not specified
MDM9650 version not specified
MDM9655 version not specified
MSM8905 version not specified
MSM8909W version not specified
MSM8917 version not specified
MSM8953 version not specified
MSM8996AU version not specified
MSM8998 version not specified
Nicobar version not specified
QCM2150 version not specified
QCS605 version not specified
QCS610 version not specified
QM215 version not specified
Rennell version not specified
SA415M version not specified
Saipan version not specified
SC7180 version not specified
SDA660 version not specified
SDA845 version not specified
SDM429 version not specified
SDM429W version not specified
SDM439 version not specified
SDM450 version not specified
SDM630 version not specified
SDM632 version not specified
SDM636 version not specified
SDM660 version not specified
SDM670 version not specified
SDM710 version not specified
SDM845 version not specified
SDM850 version not specified
SDX20 version not specified
SDX24 version not specified
SDX55 version not specified
SM6150 version not specified
SM7150 version not specified
SM8150 version not specified
SXR1130 version not specified
Description
The issue is related to multiple Read overflows due to improper length checks while decoding Generic NAS transport/EMM info. This affects various Qualcomm Snapdragon products.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Integer Underflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apq8053
Apq8096Au
Apq8098
Kamorta
Mdm9150
Mdm9205
Mdm9206
Mdm9607
Mdm9625
Mdm9635M
Mdm9640
Mdm9645
Mdm9650
Mdm9655
Msm8905
Msm8909W
Msm8917
Msm8953
Msm8996Au
Msm8998
Nicobar
Qcm2150
Qcs605
Qcs610
Qm215
Qualcomm Snapdragon Auto
Qualcomm Snapdragon Compute
Qualcomm Snapdragon Consumer Iot
Qualcomm Snapdragon Industrial Iot
Qualcomm Snapdragon Mobile
Qualcomm Snapdragon Wearables
Rennell
Sa415M
Sc7180
Sda660
Sda845
Sdm429
Sdm439
Sdm450
Sdm630
Sdm632
Sdm636
Sdm660
Sdm670
Sdm710
Sdm845
Sdm850
Sdx20
Sdx24
Sdx55
Sm6150
Sm7150
Sm8150
Sxr1130
Saipan