What is the severity of CVE-2020-11209?

CVE-2020-11209 is classified as a high severity vulnerability due to its potential for unauthorized access and library version downgrades.

How do I fix CVE-2020-11209?

To fix CVE-2020-11209, ensure that your firmware is updated to the latest version provided by Qualcomm that addresses this vulnerability.

What devices are affected by CVE-2020-11209?

CVE-2020-11209 affects several Qualcomm hardware platforms, including SD820, SD821, SD855, and various QCS and SA series chips.

What type of vulnerability is CVE-2020-11209?

CVE-2020-11209 is categorized as an improper authorization vulnerability.

How can CVE-2020-11209 be exploited?

CVE-2020-11209 can be exploited by unauthorized users to downgrade library versions, potentially affecting the functionality and security of the devices.

Vulnerability/
CVE-2020-11209

medium

5.5

CWE

863

12/11/2020

4/8/2024

CVE-2020-11209

First published: Thu Nov 12 2020(Updated: )

Improper authorization in DSP process could allow unauthorized users to downgrade the library versions in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Qualcomm SD 820 Firmware
Qualcomm Snapdragon 820
Qualcomm SD821 Firmware
Qualcomm SD821 Firmware
Qualcomm QCS603
Qualcomm QCS603 Firmware
Qualcomm QCS605
Qualcomm QCS605 Firmware
Qualcomm SDA855 Firmware
Qualcomm SDA855 Firmware
Qualcomm SA6155
Qualcomm SA6155P
Qualcomm SA6145P Firmware
Qualcomm SA6145P Firmware
Qualcomm SA6155
Qualcomm SA6155 Firmware
Qualcomm Snapdragon 855
Qualcomm Snapdragon 855
Qualcomm SD 675 Firmware
Qualcomm Snapdragon 675
Qualcomm Snapdragon 660 Firmware
Qualcomm Snapdragon 660
Qualcomm SD429
Qualcomm SD429 Firmware
Qualcomm SDM439 Firmware
Qualcomm Snapdragon 439

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2020-11209?
CVE-2020-11209 is classified as a high severity vulnerability due to its potential for unauthorized access and library version downgrades.
How do I fix CVE-2020-11209?
To fix CVE-2020-11209, ensure that your firmware is updated to the latest version provided by Qualcomm that addresses this vulnerability.
What devices are affected by CVE-2020-11209?
CVE-2020-11209 affects several Qualcomm hardware platforms, including SD820, SD821, SD855, and various QCS and SA series chips.
What type of vulnerability is CVE-2020-11209?
CVE-2020-11209 is categorized as an improper authorization vulnerability.
How can CVE-2020-11209 be exploited?
CVE-2020-11209 can be exploited by unauthorized users to downgrade library versions, potentially affecting the functionality and security of the devices.

agent/type
agent/references
agent/weakness
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/qualcomm
canonical/qualcomm sd 820 firmware
canonical/qualcomm snapdragon 820
canonical/qualcomm sd821 firmware
canonical/qualcomm qcs603
canonical/qualcomm qcs603 firmware
canonical/qualcomm qcs605
canonical/qualcomm qcs605 firmware
canonical/qualcomm sda855 firmware
canonical/qualcomm sa6155
canonical/qualcomm sa6155p
canonical/qualcomm sa6145p firmware
canonical/qualcomm sa6155 firmware
canonical/qualcomm snapdragon 855
canonical/qualcomm sd 675 firmware
canonical/qualcomm snapdragon 675
canonical/qualcomm snapdragon 660 firmware
canonical/qualcomm snapdragon 660
canonical/qualcomm sd429
canonical/qualcomm sd429 firmware
canonical/qualcomm sdm439 firmware
canonical/qualcomm snapdragon 439