CVE-2020-11185
First published: Mon Dec 07 2020(Updated: )
Out of bound issue in WLAN driver while processing vdev responses from firmware due to lack of validation of data received from firmware in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm Ar9380 | ||
| Qualcomm Csr8811 | ||
| Google Android | ||
| Qualcomm Ipq4019 | ||
| Qualcomm Ipq4028 | ||
| Google Android | ||
| Qualcomm Ipq6000 | ||
| Qualcomm Ipq6005 | ||
| Qualcomm Ipq6010 | ||
| Qualcomm Ipq6018 | ||
| Google Android | ||
| Qualcomm Ipq8064 | ||
| Qualcomm Ipq8065 | ||
| Qualcomm Ipq8068 | ||
| Qualcomm Ipq8070 | ||
| Qualcomm Ipq8070a | ||
| Qualcomm Ipq8071 | ||
| Qualcomm Ipq8071a | ||
| Qualcomm Ipq8072 | ||
| Qualcomm Ipq8072a | ||
| Qualcomm Ipq8074 | ||
| Qualcomm Ipq8074a | ||
| Qualcomm Ipq8076 | ||
| Qualcomm Ipq8076a | ||
| Qualcomm Ipq8078 | ||
| Qualcomm Ipq8078a | ||
| Qualcomm Ipq8173 | ||
| Qualcomm Ipq8174 | ||
| Qualcomm Pm3003a | ||
| Qualcomm Pm7350c | ||
| Google Android | ||
| Qualcomm Pm8009 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Pm8350bhs | ||
| Google Android | ||
| Qualcomm Pmk7350 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Pmm855au | ||
| Google Android | ||
| Qualcomm Pmr735a | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qca6390 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qca6574 | ||
| Google Android | ||
| Qualcomm Qca6574au | ||
| Qualcomm Qca6584au | ||
| Qualcomm Qca6595 | ||
| Google Android | ||
| Qualcomm Qca6696 | ||
| Qualcomm Qca7500 | ||
| Qualcomm Qca8072 | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qca9880 | ||
| Qualcomm Qca9886 | ||
| Qualcomm Qca9888 | ||
| Qualcomm Qca9889 | ||
| Google Android | ||
| Qualcomm Qca9980 | ||
| Google Android | ||
| Qualcomm Qca9985 | ||
| Qualcomm Qca9990 | ||
| Qualcomm Qca9992 | ||
| Qualcomm Qca9994 | ||
| Qualcomm Qcn5021 | ||
| Google Android | ||
| Qualcomm Qcn5024 | ||
| Google Android | ||
| Qualcomm Qcn5054 | ||
| Qualcomm Qcn5064 | ||
| Qualcomm Qcn5121 | ||
| Google Android | ||
| Qualcomm Qcn5124 | ||
| Qualcomm Qcn5152 | ||
| Qualcomm Qcn5154 | ||
| Qualcomm Qcn5164 | ||
| Qualcomm Qcn5550 | ||
| Google Android | ||
| Qualcomm Qcn7606 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qdm3301 | ||
| Qualcomm Qdm3302 | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qdm5579 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sa6145p | ||
| Qualcomm Sa6155p | ||
| Qualcomm Sa8150p | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sdx55 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Wcn3991 | ||
| Google Android | ||
| Qualcomm Wcn6740 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://source.codeaurora.org/quic/qsdk/platform/vendor/qcom-opensource/wlan/qca-wifi-host-cmn/commit/?id=227ff6c08ac997241a5a0513ad25f89072096d02
- https://source.android.com/docs/security/bulletin/2020-12-01 (Advisory)
- https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin
- https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/remedy
- agent/author
- agent/severity
- agent/description
- agent/softwarecombine
- agent/event
- agent/tags
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/qualcomm
- canonical/qualcomm ar9380
- canonical/qualcomm csr8811
- canonical/google android
- canonical/qualcomm ipq4019
- canonical/qualcomm ipq4028
- canonical/qualcomm ipq6000
- canonical/qualcomm ipq6005
- canonical/qualcomm ipq6010
- canonical/qualcomm ipq6018
- canonical/qualcomm ipq8064
- canonical/qualcomm ipq8065
- canonical/qualcomm ipq8068
- canonical/qualcomm ipq8070
- canonical/qualcomm ipq8070a
- canonical/qualcomm ipq8071
- canonical/qualcomm ipq8071a
- canonical/qualcomm ipq8072
- canonical/qualcomm ipq8072a
- canonical/qualcomm ipq8074
- canonical/qualcomm ipq8074a
- canonical/qualcomm ipq8076
- canonical/qualcomm ipq8076a
- canonical/qualcomm ipq8078
- canonical/qualcomm ipq8078a
- canonical/qualcomm ipq8173
- canonical/qualcomm ipq8174
- canonical/qualcomm pm3003a
- canonical/qualcomm pm7350c
- canonical/qualcomm pm8009
- canonical/qualcomm pm8350bhs
- canonical/qualcomm pmk7350
- canonical/qualcomm pmm855au
- canonical/qualcomm pmr735a
- canonical/qualcomm qca6390
- canonical/qualcomm qca6574
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6584au
- canonical/qualcomm qca6595
- canonical/qualcomm qca6696
- canonical/qualcomm qca7500
- canonical/qualcomm qca8072
- canonical/qualcomm qca9880
- canonical/qualcomm qca9886
- canonical/qualcomm qca9888
- canonical/qualcomm qca9889
- canonical/qualcomm qca9980
- canonical/qualcomm qca9985
- canonical/qualcomm qca9990
- canonical/qualcomm qca9992
- canonical/qualcomm qca9994
- canonical/qualcomm qcn5021
- canonical/qualcomm qcn5024
- canonical/qualcomm qcn5054
- canonical/qualcomm qcn5064
- canonical/qualcomm qcn5121
- canonical/qualcomm qcn5124
- canonical/qualcomm qcn5152
- canonical/qualcomm qcn5154
- canonical/qualcomm qcn5164
- canonical/qualcomm qcn5550
- canonical/qualcomm qcn7606
- canonical/qualcomm qdm3301
- canonical/qualcomm qdm3302
- canonical/qualcomm qdm5579
- canonical/qualcomm sa6145p
- canonical/qualcomm sa6155p
- canonical/qualcomm sa8150p
- canonical/qualcomm sdx55
- canonical/qualcomm wcn3991
- canonical/qualcomm wcn6740
- vendor/google