high
7.2
CWE
119
Advisory Published
Updated

CVE-2020-11150: Buffer Overflow

First published: Thu Jan 21 2021(Updated: )

Out of bound memory access in camera driver due to improper validation on data coming from UMD which is used for offset manipulation of pointer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Credit: product-security@qualcomm.com

Affected SoftwareAffected VersionHow to fix
Qualcomm AQT1000 Firmware
Qualcomm AR8031 Firmware
Qualcomm AR8035 Firmware
Qualcomm CSRA6620
Qualcomm csra6640 firmware
Qualcomm PM215 Firmware
Qualcomm pm3003a firmware
Qualcomm PM6125
Qualcomm PM6150 Firmware
Qualcomm PM6150
Qualcomm PM6150
Qualcomm pm6350 firmware
Qualcomm pm640a firmware
Qualcomm PM640L Firmware
Qualcomm PM640P Firmware
Qualcomm pm660 firmware
Qualcomm PM660L Firmware
Qualcomm pm670 firmware
Qualcomm PM670A
Qualcomm PM670L Firmware
Qualcomm Pm7150a Firmware
Qualcomm pm7150l firmware
Qualcomm PM7250 Firmware
Qualcomm PM7250B Firmware
Qualcomm PM7350C Firmware
Qualcomm PM8005 Firmware
Qualcomm PM8008 Firmware
Qualcomm PM8009
Qualcomm PM8150B
Qualcomm PM8150A Firmware
Qualcomm PM8150B Firmware
Qualcomm PM8150C Firmware
Qualcomm PM8150L
Qualcomm PM8250 Firmware
Qualcomm PM8350 Firmware
Qualcomm PM8350B Firmware
Qualcomm PM8350BH Firmware
Qualcomm PM8350BHS
Qualcomm PM8350C Firmware
Qualcomm PM855P
Qualcomm PM855B
Qualcomm pm855l firmware
Qualcomm PM855P
Qualcomm Snapdragon 8909
Qualcomm PM8916 Firmware
Qualcomm PMC1000H Firmware
Qualcomm PMD9655
Qualcomm PME605 Firmware
Qualcomm PMI632 Firmware
Qualcomm pmk7350 firmware
Qualcomm PMK8002 Firmware
Qualcomm pmk8003 firmware
Qualcomm pmk8350 firmware
Qualcomm PMM6155AU Firmware
Qualcomm PMM8155AU Firmware
Qualcomm PMM8195AU firmware
Qualcomm PM855 Firmware
Qualcomm PMR525 Firmware
Qualcomm pmr735a firmware
Qualcomm PMR735B
Qualcomm PMX24
Qualcomm PMX55
Qualcomm qat3514 firmware
Qualcomm qat3516 firmware
Qualcomm QAT 3518
Qualcomm QAT3519 Firmware
Qualcomm QAT3522 firmware
Qualcomm QAT3550 Firmware
Qualcomm QAT 3555 Firmware
Qualcomm QAT 5515 Firmware
Qualcomm QAT5516 Firmware
Qualcomm QAT 5522
Qualcomm qat5533 firmware
Qualcomm qat5568 firmware
Qualcomm qbt1500 firmware
Qualcomm QBT2000
Qualcomm QCA-4020-1-217MSP
Qualcomm QCA6174A Firmware
Qualcomm QCA6175A Firmware
Qualcomm QCA6390 Firmware
Qualcomm QCA6391 Firmware
Qualcomm QCA6420 Firmware
Qualcomm QCA6421 Firmware
Qualcomm QCA6426 Firmware
Qualcomm QCA6430 firmware
Qualcomm QCA6431
Qualcomm QCA6436 Firmware
Qualcomm QCA6564 Firmware
Qualcomm QCA6564A Firmware
Qualcomm QCA6564A
Qualcomm QCA6574 Firmware
qualcomm qca6574a firmware
Qualcomm QCA6574AU
Qualcomm QCA6584AU firmware
Qualcomm QCA6595AU Firmware
Qualcomm QCA6595AU Firmware
Qualcomm QCA6696 Firmware
Qualcomm QCA8337 Firmware
Qualcomm QCA9377 Firmware
Qualcomm QCA9379
Qualcomm QCM4290 Firmware
Qualcomm QCS405 Firmware
Qualcomm QCS4290 Firmware
Qualcomm QCS603 Firmware
Qualcomm QCS605 Firmware
Qualcomm QDM2301 Firmware
Qualcomm qdm2302 firmware
Qualcomm QDM2305 Firmware
Qualcomm QDM2307
Qualcomm QDM2308 Firmware
Qualcomm QDM2310
Qualcomm QDM3301 Firmware
Qualcomm qdm3302 firmware
Qualcomm qdm4643 firmware
Qualcomm qdm4650 firmware
Qualcomm QDM5579
Qualcomm qdm5620 firmware
Qualcomm QDM5621
Qualcomm QDM5650
Qualcomm QDM5652
Qualcomm qdm5670 firmware
Qualcomm qdm5671 firmware
Qualcomm qdm5677 firmware
Qualcomm qdm5679 firmware
Qualcomm QET4101 Firmware
Qualcomm QET4200AQ Firmware
Qualcomm QET5100 Firmware
Qualcomm QET5100M Firmware
Qualcomm QET6100 Firmware
Qualcomm QET6110 Firmware
Qualcomm QFS2530
Qualcomm QFS2580
Qualcomm QFS2608
Qualcomm QFS2630 Firmware
Qualcomm QLN1021AQ
Qualcomm QLN1031 Firmware
Qualcomm qln1036aq firmware
Qualcomm QLN4642 Firmware
Qualcomm QLN4650
Qualcomm QLN5020 Firmware
Qualcomm QLN5030 Firmware
Qualcomm QLN5040 Firmware
Qualcomm qpa2625 firmware
Qualcomm QPA4360 Firmware
Qualcomm qpa4361 firmware
Qualcomm qpa5461 firmware
Qualcomm QPA5580 Firmware
Qualcomm QPA5581
Qualcomm qpa6560 firmware
Qualcomm qpa8673 firmware
Qualcomm QPA8686 Firmware
Qualcomm qpa8801 firmware
Qualcomm QPA8802
Qualcomm qpa8803 firmware
Qualcomm QPA8821 Firmware
Qualcomm qpa8842 firmware
Qualcomm qpm4621 firmware
Qualcomm QPM4630
Qualcomm QPM4640
Qualcomm QPM4641 Firmware
Qualcomm QPM4650 Firmware
Qualcomm QPM5541
Qualcomm QPM5577 firmware
Qualcomm QPM5579 Firmware
Qualcomm QPM5621 Firmware
Qualcomm QPM5641 Firmware
Qualcomm qpm5658 firmware
Qualcomm QPM5670
Qualcomm QPM5677 Firmware
Qualcomm QPM5679
Qualcomm qpm5870 firmware
Qualcomm QPM5875 Firmware
Qualcomm QPM6325 Firmware
Qualcomm qpm6375 firmware
Qualcomm qpm6582 firmware
Qualcomm QPM6585 Firmware
Qualcomm QPM6621
Qualcomm QPM6670 Firmware
Qualcomm QPM8820
Qualcomm QPM8830 Firmware
Qualcomm QPM8870 Firmware
Qualcomm QPM8895 Firmware
Qualcomm SM7250
Qualcomm QSW6310 Firmware
Qualcomm QSW8573 Firmware
Qualcomm QSW8574 Firmware
Qualcomm QTC410S Firmware
Qualcomm QTC800H Firmware
Qualcomm QTC801S Firmware
Qualcomm QTM525 Firmware
Qualcomm QTM527 Firmware
Qualcomm 215 Firmware
Qualcomm SA6145P Firmware
Qualcomm SA6155 Firmware
Qualcomm SA6155P
Qualcomm SA8150P Firmware
Qualcomm SA8155 Firmware
Qualcomm SA8155P Firmware
Qualcomm SA8195P Firmware
Qualcomm Snapdragon 205
Qualcomm SD210 Firmware
Qualcomm SD460 Firmware
Qualcomm SD662 Firmware
Qualcomm Snapdragon 665
Qualcomm Snapdragon 675
Qualcomm Snapdragon 690 5G
Qualcomm Snapdragon 750G
Qualcomm Snapdragon 765
Qualcomm Snapdragon 765G
Qualcomm SD768G Firmware
Qualcomm Snapdragon 855
Qualcomm Snapdragon 865 5G
Qualcomm Snapdragon 888 5G
Qualcomm SD 8C Firmware
Qualcomm Snapdragon 8cx
Qualcomm SDA429W Firmware
qualcomm SDM429W firmware
Qualcomm SDR425 Firmware
Qualcomm SDR660
Qualcomm SDR660G Firmware
Qualcomm SDR735G Firmware
Qualcomm SDR735G Firmware
Qualcomm SDR8150 Firmware
Qualcomm SDR8250 firmware
Qualcomm SDR865
Qualcomm SDX24
Qualcomm SDX55 Firmware
Qualcomm SDX55M Firmware
Qualcomm SDXR1 Firmware
Qualcomm SDXR25G Firmware
Qualcomm SM7250
Qualcomm SM7350 Firmware
Qualcomm SMB1351 Firmware
Qualcomm SMB1354 Firmware
Qualcomm SMB1355 Firmware
Qualcomm SMB1381 Firmware
Qualcomm SMB1390 Firmware
Qualcomm SMB1394 Firmware
Qualcomm SMB1395 Firmware
Qualcomm SMB1396 Firmware
Qualcomm SMB1398
Qualcomm SMB2351 Firmware
Qualcomm SMR525 Firmware
Qualcomm SMR526
Qualcomm SMR545 Firmware
Qualcomm SMR546
Qualcomm WCD9326 Firmware
Qualcomm WCD9335 Firmware
Qualcomm WCD9340 Firmware
Qualcomm WCD9341 Firmware
Qualcomm WCD9370 Firmware
Qualcomm WCD9375 Firmware
Qualcomm WCD9380 Firmware
Qualcomm WCD9385 Firmware
Qualcomm WCN3610 Firmware
Qualcomm WCN3615 Firmware
Qualcomm WCN3620 Firmware
Qualcomm WCN3660B Firmware
Qualcomm WCN3680B Firmware
Qualcomm WCN3680B Firmware
Qualcomm WCN3950 Firmware
Qualcomm WCN3980
Qualcomm WCN3988 Firmware
Qualcomm WCN3990
Qualcomm WCN3991 Firmware
Qualcomm wcn3998 firmware
Qualcomm WCN3999 Firmware
Qualcomm WCN6740 Firmware
Qualcomm WCN6750 Firmware
Qualcomm WCN6850 Firmware
Qualcomm WCN6851 Firmware
Qualcomm WCN6856 Firmware
Qualcomm WGR7640 Firmware
Qualcomm WSA8810 Firmware
Qualcomm WSA8815 Firmware
Qualcomm WSA8830
Qualcomm WSA8835 Firmware
Qualcomm WTR2965
Qualcomm WTR3925L
Qualcomm WTR4905 Firmware

Remedy

https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2020-11150?

    CVE-2020-11150 has a high severity rating due to the possibility of out-of-bounds memory access in the camera driver.

  • How do I fix CVE-2020-11150?

    To fix CVE-2020-11150, update the affected Qualcomm device to the latest security patches provided by Qualcomm.

  • What impact does CVE-2020-11150 have on affected devices?

    CVE-2020-11150 may allow an attacker to manipulate memory leading to potential crashes or unauthorized access.

  • Which Qualcomm devices are affected by CVE-2020-11150?

    CVE-2020-11150 affects a wide range of Qualcomm devices, including models in Snapdragon Auto, Compute, and Mobile categories.

  • Is CVE-2020-11150 a remote exploit vulnerability?

    CVE-2020-11150 is considered a local exploit vulnerability that requires the attacker to have access to the affected device.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203