What is the severity of CVE-2020-11184?

CVE-2020-11184 has a critical severity rating due to its potential for remote code execution through a buffer overflow.

How do I fix CVE-2020-11184?

To fix CVE-2020-11184, update the firmware of affected Qualcomm devices to the latest version provided by the manufacturer.

What devices are affected by CVE-2020-11184?

CVE-2020-11184 affects various Qualcomm chipsets, including QCM4290, QCS4290, QM215, SM8250 and many others.

What type of vulnerability is CVE-2020-11184?

CVE-2020-11184 is classified as a buffer overflow vulnerability in the media processing component.

Can CVE-2020-11184 be exploited remotely?

Yes, CVE-2020-11184 can potentially be exploited remotely via specially crafted MP4 files.

Vulnerability/
CVE-2020-11184

critical

CWE

119 190

2/11/2020

12/11/2020

4/8/2024

CVE-2020-11184: Buffer Overflow

First published: Mon Nov 02 2020(Updated: )

u'Possible buffer overflow will occur in video while parsing mp4 clip with crafted esds atom size.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile in QCM4290, QCS4290, QM215, QSM8350, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6250, SM6350, SM7125, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR2130, SXR2130P

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
Qualcomm QCM4290
Qualcomm QCM4290 Firmware
Qualcomm QCS4290 Firmware
Qualcomm QCS4290 Firmware
Qualcomm 215 Firmware
Qualcomm 215
Qualcomm SM8350 Firmware
Qualcomm QSM8350 Firmware
Qualcomm SA6145P Firmware
Qualcomm SA6145P Firmware
Qualcomm SA6155
Qualcomm SA6155 Firmware
Qualcomm SA6155
Qualcomm SA6155P
Qualcomm SA8155P Firmware
Qualcomm SA8155 Firmware
Qualcomm SA8155
Qualcomm SA8155P Firmware
Qualcomm SDX55M Firmware
Qualcomm SDX55 Firmware
Qualcomm SDX55M Firmware
Qualcomm SDX55M Firmware
qualcomm sm4250-aa firmware
Qualcomm SM4250 Firmware
qualcomm SM4250P firmware
Qualcomm SA4250P
Qualcomm SM6115
Qualcomm SM6115 Firmware
qualcomm SM6115P
qualcomm SM6115P firmware
Qualcomm SM6125
Qualcomm SM6125 Firmware
Qualcomm SM6250P Firmware
Qualcomm SM6250 Firmware
qualcomm sm6350 firmware
qualcomm sm6350 firmware
Qualcomm SM7125
Qualcomm SM7125 Firmware
Qualcomm SM7225
Qualcomm SM7225
Qualcomm QSM7250 Firmware
Qualcomm QSM7250
Qualcomm SM7250 Firmware
Qualcomm SM7250
Qualcomm SM8150P Firmware
Qualcomm SM8150 Fusion
Qualcomm SM8150 Firmware
Qualcomm SA8150P
Qualcomm SM8250
Qualcomm qsm8250
Qualcomm QSM8350 Firmware
Qualcomm SM8350-AC
qualcomm SM8350P firmware
Qualcomm SM8350
qualcomm SXR2130P firmware
Qualcomm SXR2130
qualcomm SXR2130 firmware
Qualcomm SXR2130

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2020-11184?
CVE-2020-11184 has a critical severity rating due to its potential for remote code execution through a buffer overflow.
How do I fix CVE-2020-11184?
To fix CVE-2020-11184, update the firmware of affected Qualcomm devices to the latest version provided by the manufacturer.
What devices are affected by CVE-2020-11184?
CVE-2020-11184 affects various Qualcomm chipsets, including QCM4290, QCS4290, QM215, SM8250 and many others.
What type of vulnerability is CVE-2020-11184?
CVE-2020-11184 is classified as a buffer overflow vulnerability in the media processing component.
Can CVE-2020-11184 be exploited remotely?
Yes, CVE-2020-11184 can potentially be exploited remotely via specially crafted MP4 files.