CVE-2020-11291: Out-of-bounds Read
First published: Mon Jun 07 2021(Updated: )
Possible buffer overflow while updating ikev2 parameters for delete payloads received during informational exchange due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm apq8017 firmware | ||
| Qualcomm apq8017 | ||
| Qualcomm APQ8053 Firmware | ||
| Qualcomm APQ8053 Firmware | ||
| Qualcomm aqt1000 firmware | ||
| Qualcomm aqt1000 | ||
| Qualcomm csrb31024 firmware | ||
| Qualcomm csrb31024 | ||
| Qualcomm msm8917 firmware | ||
| Qualcomm msm8917 | ||
| qualcomm MSM8920 firmware | ||
| qualcomm MSM8920 | ||
| qualcomm MSM8940 firmware | ||
| qualcomm MSM8940 | ||
| Qualcomm msm8953 firmware | ||
| Qualcomm msm8953 | ||
| Qualcomm 8976 Firmware | ||
| Qualcomm 8976 | ||
| qualcomm msm8976sg firmware | ||
| Qualcomm 8976 | ||
| Qualcomm qca6174a firmware | ||
| Qualcomm qca6174a | ||
| Qualcomm qca6390 firmware | ||
| Qualcomm qca6390 | ||
| qualcomm qca6391 firmware | ||
| qualcomm qca6391 | ||
| Qualcomm qca6420 firmware | ||
| Qualcomm qca6420 | ||
| qualcomm qca6421 firmware | ||
| qualcomm qca6421 | ||
| qualcomm qca6426 firmware | ||
| qualcomm qca6426 | ||
| Qualcomm qca6430 firmware | ||
| Qualcomm qca6430 | ||
| qualcomm qca6431 firmware | ||
| qualcomm qca6431 | ||
| qualcomm qca6436 firmware | ||
| qualcomm qca6436 | ||
| qualcomm qca6564au firmware | ||
| qualcomm qca6564au | ||
| qualcomm qca6574a firmware | ||
| qualcomm qca6574a | ||
| qualcomm qca6574au firmware | ||
| qualcomm qca6574au | ||
| qualcomm QCA6584AU firmware | ||
| qualcomm QCA6584AU | ||
| qualcomm qca6595au firmware | ||
| qualcomm qca6595au | ||
| qualcomm qca6696 firmware | ||
| qualcomm qca6696 | ||
| Qualcomm qca9377 firmware | ||
| Qualcomm qca9377 | ||
| qualcomm qca9379 firmware | ||
| qualcomm qca9379 | ||
| Qualcomm qcm4290 firmware | ||
| Qualcomm qcm4290 | ||
| Qualcomm qcm6125 firmware | ||
| Qualcomm qcm6125 | ||
| qualcomm qcs410 firmware | ||
| qualcomm qcs410 | ||
| Qualcomm qcs4290 firmware | ||
| Qualcomm qcs4290 | ||
| qualcomm qcs610 firmware | ||
| qualcomm qcs610 | ||
| Qualcomm qcs6125 firmware | ||
| Qualcomm qcs6125 | ||
| Qualcomm sa415m firmware | ||
| Qualcomm sa415m | ||
| Qualcomm sa515m firmware | ||
| Qualcomm sa515m | ||
| Qualcomm sa8155 firmware | ||
| Qualcomm sa8155 | ||
| Qualcomm sa8155p firmware | ||
| Qualcomm sa8155p | ||
| qualcomm sc8180x\+sdx55 Firmware | ||
| qualcomm sc8180x\+sdx55 | ||
| qualcomm SD 675 firmware | ||
| qualcomm SD 675 | ||
| qualcomm sd 8c firmware | ||
| qualcomm sd 8c | ||
| qualcomm SD 8CX firmware | ||
| qualcomm SD 8CX | ||
| Qualcomm sd450 firmware | ||
| Qualcomm sd450 | ||
| Qualcomm SD 480 Firmware | ||
| Qualcomm Snapdragon 480 | ||
| Qualcomm sd665 firmware | ||
| Qualcomm sd665 | ||
| qualcomm sd670 firmware | ||
| qualcomm sd670 | ||
| qualcomm sd675 firmware | ||
| qualcomm sd675 | ||
| Qualcomm sd678 firmware | ||
| Qualcomm sd678 | ||
| qualcomm sd690 5g firmware | ||
| qualcomm sd690 5g | ||
| Qualcomm sd720g firmware | ||
| Qualcomm sd720g | ||
| Qualcomm sd730 firmware | ||
| Qualcomm Sd730 | ||
| Qualcomm sd750g firmware | ||
| Qualcomm sd750g | ||
| Qualcomm sd765 firmware | ||
| Qualcomm sd765 | ||
| Qualcomm sd765g firmware | ||
| Qualcomm sd765g | ||
| Qualcomm sd768g firmware | ||
| Qualcomm sd768g | ||
| Qualcomm sd845 firmware | ||
| Qualcomm sd845 | ||
| qualcomm sd855 firmware | ||
| qualcomm sd855 | ||
| qualcomm sd865 5g firmware | ||
| qualcomm sd865 5g | ||
| Qualcomm sd870 firmware | ||
| Qualcomm sd870 | ||
| qualcomm sd888 5g firmware | ||
| qualcomm sd888 5g | ||
| Qualcomm sdx24 firmware | ||
| Qualcomm sdx24 | ||
| Qualcomm sdx50m firmware | ||
| Qualcomm sdx50m | ||
| Qualcomm sdx55 firmware | ||
| Qualcomm sdx55 | ||
| Qualcomm sdx55m firmware | ||
| Qualcomm sdx55m | ||
| qualcomm sdxr2 5g firmware | ||
| qualcomm sdxr2 5g | ||
| Qualcomm sm6250 firmware | ||
| Qualcomm sm6250 | ||
| Qualcomm sm6250p firmware | ||
| Qualcomm sm6250p | ||
| qualcomm sm7250p firmware | ||
| qualcomm sm7250p | ||
| Qualcomm wcd9326 firmware | ||
| Qualcomm wcd9326 | ||
| Qualcomm wcd9335 firmware | ||
| qualcomm wcd9335 | ||
| qualcomm wcd9340 firmware | ||
| qualcomm wcd9340 | ||
| qualcomm wcd9341 firmware | ||
| qualcomm wcd9341 | ||
| Qualcomm wcd9360 firmware | ||
| Qualcomm wcd9360 | ||
| Qualcomm wcd9370 firmware | ||
| Qualcomm wcd9370 | ||
| Qualcomm wcd9371 firmware | ||
| Qualcomm wcd9371 | ||
| Qualcomm wcd9375 firmware | ||
| Qualcomm wcd9375 | ||
| qualcomm wcd9380 firmware | ||
| qualcomm wcd9380 | ||
| qualcomm wcd9385 firmware | ||
| qualcomm wcd9385 | ||
| Qualcomm wcn3615 firmware | ||
| Qualcomm wcn3615 | ||
| Qualcomm wcn3660b firmware | ||
| Qualcomm wcn3660b | ||
| Qualcomm wcn3680b firmware | ||
| Qualcomm wcn3680b | ||
| Qualcomm wcn3910 firmware | ||
| Qualcomm wcn3910 | ||
| Qualcomm WCN3950 Firmware | ||
| qualcomm wcn3950 | ||
| qualcomm wcn3980 firmware | ||
| Qualcomm Wcn3980 | ||
| qualcomm wcn3988 firmware | ||
| Qualcomm WCN3988 | ||
| qualcomm wcn3990 firmware | ||
| qualcomm wcn3990 | ||
| Qualcomm WCN3991 Firmware | ||
| Qualcomm WCN3991 Firmware | ||
| Qualcomm wcn3998 firmware | ||
| Qualcomm wcn3998 | ||
| Qualcomm WCN6850 Firmware | ||
| Qualcomm WCN6850 Firmware | ||
| Qualcomm WCN6851 Firmware | ||
| Qualcomm WCN6851 Firmware | ||
| Qualcomm wcn6855 firmware | ||
| qualcomm wcn6855 | ||
| Qualcomm wcn6856 firmware | ||
| qualcomm wcn6856 | ||
| qualcomm whs9410 firmware | ||
| qualcomm whs9410 | ||
| qualcomm wsa8810 firmware | ||
| qualcomm wsa8810 | ||
| qualcomm wsa8815 firmware | ||
| qualcomm wsa8815 | ||
| qualcomm wsa8830 firmware | ||
| qualcomm wsa8830 | ||
| qualcomm wsa8835 firmware | ||
| qualcomm wsa8835 | ||
| Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-11291?
The severity of CVE-2020-11291 is considered high, due to potential remote code execution risks.
How do I fix CVE-2020-11291?
To fix CVE-2020-11291, update the affected Qualcomm firmware to the latest version provided by the vendor.
Which devices are affected by CVE-2020-11291?
CVE-2020-11291 affects various Qualcomm devices including Snapdragon platforms such as APQ8017, APQ8053, and others listed in security bulletins.
What type of vulnerability is CVE-2020-11291?
CVE-2020-11291 is categorized as a buffer overflow vulnerability associated with IKEv2 parameters.
How can attackers exploit CVE-2020-11291?
Attackers can exploit CVE-2020-11291 remotely by sending specially crafted packets to trigger the buffer overflow.
- agent/type
- agent/first-publish-date
- agent/author
- agent/weakness
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/event
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/qualcomm apq8017 firmware
- canonical/qualcomm apq8017
- canonical/qualcomm apq8053 firmware
- canonical/qualcomm aqt1000 firmware
- canonical/qualcomm aqt1000
- canonical/qualcomm csrb31024 firmware
- canonical/qualcomm csrb31024
- canonical/qualcomm msm8917 firmware
- canonical/qualcomm msm8917
- canonical/qualcomm msm8920 firmware
- canonical/qualcomm msm8920
- canonical/qualcomm msm8940 firmware
- canonical/qualcomm msm8940
- canonical/qualcomm msm8953 firmware
- canonical/qualcomm msm8953
- canonical/qualcomm 8976 firmware
- canonical/qualcomm 8976
- canonical/qualcomm msm8976sg firmware
- canonical/qualcomm qca6174a firmware
- canonical/qualcomm qca6174a
- canonical/qualcomm qca6390 firmware
- canonical/qualcomm qca6390
- canonical/qualcomm qca6391 firmware
- canonical/qualcomm qca6391
- canonical/qualcomm qca6420 firmware
- canonical/qualcomm qca6420
- canonical/qualcomm qca6421 firmware
- canonical/qualcomm qca6421
- canonical/qualcomm qca6426 firmware
- canonical/qualcomm qca6426
- canonical/qualcomm qca6430 firmware
- canonical/qualcomm qca6430
- canonical/qualcomm qca6431 firmware
- canonical/qualcomm qca6431
- canonical/qualcomm qca6436 firmware
- canonical/qualcomm qca6436
- canonical/qualcomm qca6564au firmware
- canonical/qualcomm qca6564au
- canonical/qualcomm qca6574a firmware
- canonical/qualcomm qca6574a
- canonical/qualcomm qca6574au firmware
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6584au firmware
- canonical/qualcomm qca6584au
- canonical/qualcomm qca6595au firmware
- canonical/qualcomm qca6595au
- canonical/qualcomm qca6696 firmware
- canonical/qualcomm qca6696
- canonical/qualcomm qca9377 firmware
- canonical/qualcomm qca9377
- canonical/qualcomm qca9379 firmware
- canonical/qualcomm qca9379
- canonical/qualcomm qcm4290 firmware
- canonical/qualcomm qcm4290
- canonical/qualcomm qcm6125 firmware
- canonical/qualcomm qcm6125
- canonical/qualcomm qcs410 firmware
- canonical/qualcomm qcs410
- canonical/qualcomm qcs4290 firmware
- canonical/qualcomm qcs4290
- canonical/qualcomm qcs610 firmware
- canonical/qualcomm qcs610
- canonical/qualcomm qcs6125 firmware
- canonical/qualcomm qcs6125
- canonical/qualcomm sa415m firmware
- canonical/qualcomm sa415m
- canonical/qualcomm sa515m firmware
- canonical/qualcomm sa515m
- canonical/qualcomm sa8155 firmware
- canonical/qualcomm sa8155
- canonical/qualcomm sa8155p firmware
- canonical/qualcomm sa8155p
- canonical/qualcomm sc8180x\+sdx55 firmware
- canonical/qualcomm sc8180x\+sdx55
- canonical/qualcomm sd 675 firmware
- canonical/qualcomm sd 675
- canonical/qualcomm sd 8c firmware
- canonical/qualcomm sd 8c
- canonical/qualcomm sd 8cx firmware
- canonical/qualcomm sd 8cx
- canonical/qualcomm sd450 firmware
- canonical/qualcomm sd450
- canonical/qualcomm sd 480 firmware
- canonical/qualcomm snapdragon 480
- canonical/qualcomm sd665 firmware
- canonical/qualcomm sd665
- canonical/qualcomm sd670 firmware
- canonical/qualcomm sd670
- canonical/qualcomm sd675 firmware
- canonical/qualcomm sd675
- canonical/qualcomm sd678 firmware
- canonical/qualcomm sd678
- canonical/qualcomm sd690 5g firmware
- canonical/qualcomm sd690 5g
- canonical/qualcomm sd720g firmware
- canonical/qualcomm sd720g
- canonical/qualcomm sd730 firmware
- canonical/qualcomm sd730
- canonical/qualcomm sd750g firmware
- canonical/qualcomm sd750g
- canonical/qualcomm sd765 firmware
- canonical/qualcomm sd765
- canonical/qualcomm sd765g firmware
- canonical/qualcomm sd765g
- canonical/qualcomm sd768g firmware
- canonical/qualcomm sd768g
- canonical/qualcomm sd845 firmware
- canonical/qualcomm sd845
- canonical/qualcomm sd855 firmware
- canonical/qualcomm sd855
- canonical/qualcomm sd865 5g firmware
- canonical/qualcomm sd865 5g
- canonical/qualcomm sd870 firmware
- canonical/qualcomm sd870
- canonical/qualcomm sd888 5g firmware
- canonical/qualcomm sd888 5g
- canonical/qualcomm sdx24 firmware
- canonical/qualcomm sdx24
- canonical/qualcomm sdx50m firmware
- canonical/qualcomm sdx50m
- canonical/qualcomm sdx55 firmware
- canonical/qualcomm sdx55
- canonical/qualcomm sdx55m firmware
- canonical/qualcomm sdx55m
- canonical/qualcomm sdxr2 5g firmware
- canonical/qualcomm sdxr2 5g
- canonical/qualcomm sm6250 firmware
- canonical/qualcomm sm6250
- canonical/qualcomm sm6250p firmware
- canonical/qualcomm sm6250p
- canonical/qualcomm sm7250p firmware
- canonical/qualcomm sm7250p
- canonical/qualcomm wcd9326 firmware
- canonical/qualcomm wcd9326
- canonical/qualcomm wcd9335 firmware
- canonical/qualcomm wcd9335
- canonical/qualcomm wcd9340 firmware
- canonical/qualcomm wcd9340
- canonical/qualcomm wcd9341 firmware
- canonical/qualcomm wcd9341
- canonical/qualcomm wcd9360 firmware
- canonical/qualcomm wcd9360
- canonical/qualcomm wcd9370 firmware
- canonical/qualcomm wcd9370
- canonical/qualcomm wcd9371 firmware
- canonical/qualcomm wcd9371
- canonical/qualcomm wcd9375 firmware
- canonical/qualcomm wcd9375
- canonical/qualcomm wcd9380 firmware
- canonical/qualcomm wcd9380
- canonical/qualcomm wcd9385 firmware
- canonical/qualcomm wcd9385
- canonical/qualcomm wcn3615 firmware
- canonical/qualcomm wcn3615
- canonical/qualcomm wcn3660b firmware
- canonical/qualcomm wcn3660b
- canonical/qualcomm wcn3680b firmware
- canonical/qualcomm wcn3680b
- canonical/qualcomm wcn3910 firmware
- canonical/qualcomm wcn3910
- canonical/qualcomm wcn3950 firmware
- canonical/qualcomm wcn3950
- canonical/qualcomm wcn3980 firmware
- canonical/qualcomm wcn3980
- canonical/qualcomm wcn3988 firmware
- canonical/qualcomm wcn3988
- canonical/qualcomm wcn3990 firmware
- canonical/qualcomm wcn3990
- canonical/qualcomm wcn3991 firmware
- canonical/qualcomm wcn3998 firmware
- canonical/qualcomm wcn3998
- canonical/qualcomm wcn6850 firmware
- canonical/qualcomm wcn6851 firmware
- canonical/qualcomm wcn6855 firmware
- canonical/qualcomm wcn6855
- canonical/qualcomm wcn6856 firmware
- canonical/qualcomm wcn6856
- canonical/qualcomm whs9410 firmware
- canonical/qualcomm whs9410
- canonical/qualcomm wsa8810 firmware
- canonical/qualcomm wsa8810
- canonical/qualcomm wsa8815 firmware
- canonical/qualcomm wsa8815
- canonical/qualcomm wsa8830 firmware
- canonical/qualcomm wsa8830
- canonical/qualcomm wsa8835 firmware
- canonical/qualcomm wsa8835
- vendor/google
- canonical/android