What is the severity of CVE-2020-3616?

CVE-2020-3616 has been classified with a severity level that indicates a significant risk of exploitation due to the buffer overflow vulnerabilities present.

How do I fix CVE-2020-3616?

To fix CVE-2020-3616, you should apply the latest firmware updates or patches provided by Qualcomm or your device manufacturer.

Which devices are affected by CVE-2020-3616?

CVE-2020-3616 affects various Qualcomm Snapdragon products including APQ8017, APQ8053, and several others across Snapdragon Auto and Consumer IoT platforms.

What type of vulnerability is CVE-2020-3616?

CVE-2020-3616 is a buffer overflow vulnerability resulting from improper memory handling in software.

Is CVE-2020-3616 actively being exploited?

As of now, there is no public information indicating that CVE-2020-3616 is actively being exploited in the wild.

Vulnerability/
CVE-2020-3616

high

7.8

CWE

120 119

4/5/2020

2/6/2020

26/8/2024

CVE-2020-3616: Buffer Overflow

First published: Mon May 04 2020(Updated: )

Buffer overflow in display function due to memory copy without checking length of size using strcpy function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8909W, MSM8917, MSM8953, MSM8996AU, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM845, SDX20, SM6150, SM7150, SM8150

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
Qualcomm APQ8017
Qualcomm APQ8017
qualcomm apq8053-ac firmware
Qualcomm APQ8053 Firmware
Qualcomm APQ8096AU Firmware
Qualcomm APQ8096AU Firmware
qualcomm APQ8098
Qualcomm 8098
Qualcomm MDM9206
Qualcomm MDM9206 firmware
qualcomm MDM9207C firmware
Qualcomm 9207 LTE Modem
Qualcomm MD9607 Firmware
Qualcomm MDM9607 firmware
Qualcomm MSM8909W
Qualcomm Snapdragon 8909
Qualcomm MSM8917
Qualcomm MSM8917 Firmware
Qualcomm 8953 Firmware
Qualcomm MSM8953 Firmware
qualcomm MSM8996AU firmware
Qualcomm MSM8996AU Firmware
Qualcomm ZZ QCS605 firmware
Qualcomm QCS605 Firmware
Qualcomm 215 Firmware
Qualcomm 215
Qualcomm SDA660
Qualcomm SDA660
Qualcomm SD845 Firmware
Qualcomm Snapdragon 845
Qualcomm SDM429W
Qualcomm SD429
qualcomm SDM439 firmware
Qualcomm SDM439 Firmware
Qualcomm SD 450 Firmware
Qualcomm Snapdragon 450
qualcomm SDM630 firmware
qualcomm SDM630
Qualcomm SDM632
Qualcomm SDM632
Qualcomm SD 636 Firmware
Qualcomm SDM636 Firmware
Qualcomm SD660 Firmware
Qualcomm Snapdragon 660
Qualcomm SDA/SDM845 Firmware
Qualcomm Snapdragon 845
Qualcomm SDX20 Firmware
Qualcomm SDX20 Firmware
qualcomm SM6150P firmware
Qualcomm SM6150P
qualcomm SM7150 firmware
qualcomm SM7150 firmware
Qualcomm SM8150P Firmware
Qualcomm SM8150 Fusion

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2020-3616?
CVE-2020-3616 has been classified with a severity level that indicates a significant risk of exploitation due to the buffer overflow vulnerabilities present.
How do I fix CVE-2020-3616?
To fix CVE-2020-3616, you should apply the latest firmware updates or patches provided by Qualcomm or your device manufacturer.
Which devices are affected by CVE-2020-3616?
CVE-2020-3616 affects various Qualcomm Snapdragon products including APQ8017, APQ8053, and several others across Snapdragon Auto and Consumer IoT platforms.
What type of vulnerability is CVE-2020-3616?
CVE-2020-3616 is a buffer overflow vulnerability resulting from improper memory handling in software.
Is CVE-2020-3616 actively being exploited?
As of now, there is no public information indicating that CVE-2020-3616 is actively being exploited in the wild.