First published: Mon Nov 02 2020(Updated: )
u'Out of bound memory access while processing GATT data received due to lack of check of pdu data length and leads to remote code execution' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8053, QCA6390, QCA9379, QCN7605, SC8180X, SDX55
Credit: product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Qualcomm Apq8053 Firmware | ||
Qualcomm Apq8053 | ||
Qualcomm Qca6390 Firmware | ||
Qualcomm Qca6390 | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Qualcomm Sc8180x Firmware | ||
Qualcomm Sc8180x | ||
Qualcomm Sdx55 Firmware | ||
Qualcomm Sdx55 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-11153 is critical with a CVSS score of 9.8.
CVE-2020-11153 may lead to remote code execution in Snapdragon Auto.
No, Qualcomm Sc8180x is not vulnerable to CVE-2020-11153.
To fix CVE-2020-11153, apply the necessary firmware updates provided by Qualcomm or follow the recommendations in the security bulletin.
You can find more information about CVE-2020-11153 in the October 2020 security bulletin issued by Qualcomm.