What is CVE-2020-11256?

CVE-2020-11256 is a vulnerability that causes memory corruption due to a lack of check of validation of a pointer to a buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking.

Which software is affected by CVE-2020-11256?

Qualcomm Ar7420 Firmware, Qualcomm Ar9580 Firmware, Qualcomm Csr8811 Firmware, Qualcomm Ipq4019 Firmware, Qualcomm Ipq4028 Firmware, Qualcomm Qca10901 Firmware, Qualcomm Qca4024 Firmware, Qualcomm Qca7500 Firmware, Qualcomm Qca7520 Firmware, Qualcomm Qca7550 Firmware, Qualcomm Qca9880 Firmware, Qualcomm Qca9886 Firmware, Qualcomm Qca9888 Firmware, Qualcomm Qca9889 Firmware, Qualcomm Qca9992 Firmware, Qualcomm Qca9994 Firmware, Qualcomm Qcn3018 Firmware, Qualcomm Qfe1922 Firmware, Qualcomm Qfe1952 Firmware, Qualcomm Wcd9340 Firmware, Qualcomm Wsa8810 Firmware are affected by CVE-2020-11256.

What is the severity of CVE-2020-11256?

The severity of CVE-2020-11256 is high with a CVSS score of 8.8.

How can I fix CVE-2020-11256?

To fix CVE-2020-11256, it is recommended to apply the necessary security patches provided by Qualcomm.

Where can I find more information about CVE-2020-11256?

You can find more information about CVE-2020-11256 on the official Qualcomm website at https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin.

Vulnerability/
CVE-2020-11256

high

8.8

CWE

119

9/6/2021

4/8/2024

CVE-2020-11256: Buffer Overflow

First published: Wed Jun 09 2021(Updated: )

Memory corruption due to lack of check of validation of pointer to buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Qualcomm Ar7420 Firmware
Qualcomm Ar7420
Qualcomm Ar9580 Firmware
Google Android
Qualcomm Csr8811 Firmware
Qualcomm Csr8811
Google Android
Google Android
Qualcomm Ipq4019 Firmware
Qualcomm Ipq4019
Google Android
Qualcomm Ipq4028
Qualcomm Ipq4029 Firmware
Google Android
Google Android
Qualcomm Qca10901
Qualcomm Qca4024 Firmware
Google Android
Qualcomm Qca7500 Firmware
Qualcomm Qca7500
Qualcomm Qca7520 Firmware
Qualcomm Qca7520
Qualcomm Qca7550 Firmware
Qualcomm Qca7550
Google Android
Google Android
Qualcomm Qca9880 Firmware
Qualcomm Qca9880
Qualcomm Qca9886 Firmware
Qualcomm Qca9886
Qualcomm Qca9888 Firmware
Qualcomm Qca9888
Qualcomm Qca9889 Firmware
Qualcomm Qca9889
Google Android
Google Android
Google Android
Google Android
Qualcomm Qca9992 Firmware
Qualcomm Qca9992
Qualcomm Qca9994 Firmware
Qualcomm Qca9994
Qualcomm Qcn3018 Firmware
Qualcomm Qcn3018
Qualcomm Qfe1922 Firmware
Qualcomm Qfe1922
Qualcomm Qfe1952 Firmware
Qualcomm Qfe1952
Google Android
Google Android
Google Android
Google Android

Remedy

https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin

Never miss a vulnerability like this again

Reference Links

https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin

Frequently Asked Questions

What is CVE-2020-11256?
CVE-2020-11256 is a vulnerability that causes memory corruption due to a lack of check of validation of a pointer to a buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking.
Which software is affected by CVE-2020-11256?
Qualcomm Ar7420 Firmware, Qualcomm Ar9580 Firmware, Qualcomm Csr8811 Firmware, Qualcomm Ipq4019 Firmware, Qualcomm Ipq4028 Firmware, Qualcomm Qca10901 Firmware, Qualcomm Qca4024 Firmware, Qualcomm Qca7500 Firmware, Qualcomm Qca7520 Firmware, Qualcomm Qca7550 Firmware, Qualcomm Qca9880 Firmware, Qualcomm Qca9886 Firmware, Qualcomm Qca9888 Firmware, Qualcomm Qca9889 Firmware, Qualcomm Qca9992 Firmware, Qualcomm Qca9994 Firmware, Qualcomm Qcn3018 Firmware, Qualcomm Qfe1922 Firmware, Qualcomm Qfe1952 Firmware, Qualcomm Wcd9340 Firmware, Qualcomm Wsa8810 Firmware are affected by CVE-2020-11256.
What is the severity of CVE-2020-11256?
The severity of CVE-2020-11256 is high with a CVSS score of 8.8.
How can I fix CVE-2020-11256?
To fix CVE-2020-11256, it is recommended to apply the necessary security patches provided by Qualcomm.
Where can I find more information about CVE-2020-11256?
You can find more information about CVE-2020-11256 on the official Qualcomm website at https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin.