CVE-2020-3625
Summary
| CVE | CVE-2020-3625 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-06-02 15:15:00 UTC |
| Updated | 2020-06-03 19:41:00 UTC |
| Description | When making query to DSP capabilities, Stack out of bounds occurs due to wrong buffer length configured for DSP attributes in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in SM8250, SXR2130 |
Risk And Classification
Problem Types: CWE-120
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Qualcomm | Sm8250 | - | All | All | All |
| Hardware | Qualcomm | Sm8250 | - | All | All | All |
| Operating System | Qualcomm | Sm8250 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sm8250 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sxr2130 | - | All | All | All |
| Hardware | Qualcomm | Sxr2130 | - | All | All | All |
| Operating System | Qualcomm | Sxr2130 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sxr2130 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| May 2020 Security Bulletin | Qualcomm | CONFIRM | www.qualcomm.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.