CVE-2020-11209
First published: Thu Nov 12 2020(Updated: )
Improper authorization in DSP process could allow unauthorized users to downgrade the library versions in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm Sd820 Firmware | ||
| Qualcomm Sd820 | ||
| Qualcomm Sd821 Firmware | ||
| Qualcomm Sd821 | ||
| Qualcomm Qcs603 Firmware | ||
| Qualcomm Qcs603 | ||
| Qualcomm Qcs605 Firmware | ||
| Qualcomm Qcs605 | ||
| Qualcomm Sda855 Firmware | ||
| Google Android | ||
| Qualcomm Sa6155p Firmware | ||
| Qualcomm Sa6155p | ||
| Qualcomm Sa6145p Firmware | ||
| Qualcomm Sa6145p | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sd 675 Firmware | ||
| Qualcomm Sd 675 | ||
| Google Android | ||
| Qualcomm Sd660 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sd439 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-11209?
CVE-2020-11209 is classified as a high severity vulnerability due to its potential for unauthorized access and library version downgrades.
How do I fix CVE-2020-11209?
To fix CVE-2020-11209, ensure that your firmware is updated to the latest version provided by Qualcomm that addresses this vulnerability.
What devices are affected by CVE-2020-11209?
CVE-2020-11209 affects several Qualcomm hardware platforms, including SD820, SD821, SD855, and various QCS and SA series chips.
What type of vulnerability is CVE-2020-11209?
CVE-2020-11209 is categorized as an improper authorization vulnerability.
How can CVE-2020-11209 be exploited?
CVE-2020-11209 can be exploited by unauthorized users to downgrade library versions, potentially affecting the functionality and security of the devices.
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/event
- agent/source
- vendor/qualcomm
- canonical/qualcomm sd820 firmware
- canonical/qualcomm sd820
- canonical/qualcomm sd821 firmware
- canonical/qualcomm sd821
- canonical/qualcomm qcs603 firmware
- canonical/qualcomm qcs603
- canonical/qualcomm qcs605 firmware
- canonical/qualcomm qcs605
- canonical/qualcomm sda855 firmware
- canonical/google android
- canonical/qualcomm sa6155p firmware
- canonical/qualcomm sa6155p
- canonical/qualcomm sa6145p firmware
- canonical/qualcomm sa6145p
- canonical/qualcomm sd 675 firmware
- canonical/qualcomm sd 675
- canonical/qualcomm sd660
- canonical/qualcomm sd439