CVE-2020-3678
Summary
| CVE | CVE-2020-3678 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-11-02 07:15:00 UTC |
| Updated | 2020-11-06 16:36:00 UTC |
| Description | u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130 |
Risk And Classification
Problem Types: CWE-120
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Qualcomm | Agatti | - | All | All | All |
| Hardware | Qualcomm | Agatti | - | All | All | All |
| Operating System | Qualcomm | Agatti Firmware | - | All | All | All |
| Operating System | Qualcomm | Agatti Firmware | - | All | All | All |
| Hardware | Qualcomm | Kamorta | - | All | All | All |
| Hardware | Qualcomm | Kamorta | - | All | All | All |
| Operating System | Qualcomm | Kamorta Firmware | - | All | All | All |
| Operating System | Qualcomm | Kamorta Firmware | - | All | All | All |
| Hardware | Qualcomm | Qcs404 | - | All | All | All |
| Hardware | Qualcomm | Qcs404 | - | All | All | All |
| Operating System | Qualcomm | Qcs404 Firmware | - | All | All | All |
| Operating System | Qualcomm | Qcs404 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qcs605 | - | All | All | All |
| Hardware | Qualcomm | Qcs605 | - | All | All | All |
| Operating System | Qualcomm | Qcs605 Firmware | - | All | All | All |
| Operating System | Qualcomm | Qcs605 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sda845 | - | All | All | All |
| Hardware | Qualcomm | Sda845 | - | All | All | All |
| Operating System | Qualcomm | Sda845 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sda845 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sdm670 | - | All | All | All |
| Hardware | Qualcomm | Sdm670 | - | All | All | All |
| Operating System | Qualcomm | Sdm670 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sdm670 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sdm710 | - | All | All | All |
| Hardware | Qualcomm | Sdm710 | - | All | All | All |
| Operating System | Qualcomm | Sdm710 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sdm710 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sdm845 | - | All | All | All |
| Hardware | Qualcomm | Sdm845 | - | All | All | All |
| Operating System | Qualcomm | Sdm845 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sdm845 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sxr1130 | - | All | All | All |
| Hardware | Qualcomm | Sxr1130 | - | All | All | All |
| Operating System | Qualcomm | Sxr1130 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sxr1130 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| October 2020 Security Bulletin | Qualcomm | MISC | www.qualcomm.com | Vendor Advisory |
| Page not found | CONFIRM | www.qualcomm.com | Broken Link |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.