CVE-2020-11279

  • Last update: Apr 13, 2023

Description

Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

There are no affected software configurations available.

Details

    • Severity: Critical
  • CVE: CVE-2020-11279
  • Published: May 7, 2021
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v3

  • Severity: Critical
  • Score: 9.8
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs