CVE-2020-11189

  • Last update: Apr 13, 2023

Description

Buffer over-read can happen while parsing received SDP values due to lack of NULL termination check on SDP in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

There are no affected software configurations available.

Details

    • Severity: Critical
  • CVE: CVE-2020-11189
  • Published: Mar 17, 2021
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v3

  • Severity: Critical
  • Score: 9.1
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CVSS v2

  • Severity: Medium
  • Score: 6.4
  • AV:N/AC:L/Au:N/C:P/I:N/A:P

CWEs