1. CVE-Search
  2. CVE-2020-11172
ID CVE-2020-11172
Summary u'fscanf reads a string from a file and stores its contents on a statically allocated stack memory which leads to stack overflow' in Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ6018, IPQ8064, IPQ8074, QCA9531, QCA9980
References
Vulnerable Configurations
  • cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*
    cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*
  • cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*
    cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*
  • cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*
    cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*
  • cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*
    cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*
  • cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*
    cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*
  • cpe:2.3:o:qualcomm:qca9980_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:qualcomm:qca9980_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:qualcomm:qca9980:-:*:*:*:*:*:*:*
    cpe:2.3:h:qualcomm:qca9980:-:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 21-07-2021 - 11:39)
Impact:
Exploitability:
CWE CWE-787
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
confirm https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin
Last major update 21-07-2021 - 11:39
Published 02-11-2020 - 07:15
Last modified 21-07-2021 - 11:39
Back to Top