CVE-2020-3674
First published: Wed Sep 09 2020(Updated: )
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55, SM8150, SM8250, SXR2130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Qualcomm Nicobar | ||
| Qualcomm Qcs405 Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sc8180x Firmware | ||
| Qualcomm Sc8180x | ||
| Qualcomm Sdx55 Firmware | ||
| Qualcomm Sdx55 | ||
| Qualcomm Sm8150 Firmware | ||
| Qualcomm Sm8150 | ||
| Qualcomm Sm8250 Firmware | ||
| Qualcomm SM8250 | ||
| Qualcomm Sxr2130 Firmware | ||
| Qualcomm Sxr2130 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-3674?
CVE-2020-3674 is a vulnerability in Qualcomm Snapdragon devices that allows information to leak into userspace due to improper transfer of data from kernel to userspace.
Which software is affected by CVE-2020-3674?
Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55, SM8150, SM8250, and Sxr2130 are affected by CVE-2020-3674.
What is the severity of CVE-2020-3674?
The severity of CVE-2020-3674 is medium with a CVSS score of 5.5.
How can the vulnerability CVE-2020-3674 be exploited?
The vulnerability CVE-2020-3674 can be exploited by an attacker to obtain sensitive information from the kernel and transfer it to userspace.
Where can I find more information about CVE-2020-3674?
You can find more information about CVE-2020-3674 on the Qualcomm Product Security Bulletins website: https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin.
- collector/nvd-index
- vendor/qualcomm
- product/nicobar firmware
- canonical/google android
- product/nicobar
- canonical/qualcomm nicobar
- product/qcs405 firmware
- canonical/qualcomm qcs405 firmware
- product/qcs405
- product/saipan firmware
- product/saipan
- product/sc8180x firmware
- canonical/qualcomm sc8180x firmware
- product/sc8180x
- canonical/qualcomm sc8180x
- product/sdx55 firmware
- canonical/qualcomm sdx55 firmware
- product/sdx55
- canonical/qualcomm sdx55
- product/sm8150 firmware
- canonical/qualcomm sm8150 firmware
- product/sm8150
- canonical/qualcomm sm8150
- product/sm8250 firmware
- canonical/qualcomm sm8250 firmware
- product/sm8250
- canonical/qualcomm sm8250
- product/sxr2130 firmware
- canonical/qualcomm sxr2130 firmware
- product/sxr2130
- canonical/qualcomm sxr2130