CVE-2020-3636
First published: Mon Aug 03 2020(Updated: )
u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Google Android | ||
| Qualcomm Qcs404 Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Rennell Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sdx55 Firmware | ||
| Qualcomm Sdx55 | ||
| Google Android | ||
| Qualcomm Sm6150 | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sm8250 Firmware | ||
| Qualcomm SM8250 | ||
| Qualcomm Sxr2130 Firmware | ||
| Qualcomm Sxr2130 | ||
| Google Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin
- https://source.android.com/docs/security/bulletin/2020-08-01/#asterisk
- https://source.android.com/docs/security/bulletin/2020-08-01 (Advisory)
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-3636.
What is the severity of CVE-2020-3636?
The severity of CVE-2020-3636 is high with a severity value of 7.8.
Which software is affected by CVE-2020-3636?
The software affected by CVE-2020-3636 includes Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM61.
How can I fix CVE-2020-3636?
To fix CVE-2020-3636, it is recommended to apply the necessary patches and updates provided by Qualcomm and Google.
Where can I find more information about CVE-2020-3636?
More information about CVE-2020-3636 can be found on the Qualcomm and Android security bulletins for August 2020.
- collector/nvd-index
- collector/android-source
- agent/author
- agent/description
- agent/severity
- agent/references
- agent/tags
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/qualcomm
- canonical/google android
- canonical/qualcomm qcs404 firmware
- canonical/qualcomm rennell firmware
- canonical/qualcomm sdx55 firmware
- canonical/qualcomm sdx55
- canonical/qualcomm sm6150
- canonical/qualcomm sm8250 firmware
- canonical/qualcomm sm8250
- canonical/qualcomm sxr2130 firmware
- canonical/qualcomm sxr2130
- vendor/google