fkie_cve-2020-3684
Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
Summary
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*", matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*", matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*", matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*", matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*", matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*", matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*", matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*", matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*", matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*", matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*", matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*", matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*", matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*", matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*", matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*", matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*", matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*", matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*", matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*", matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*", matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*", matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*", matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*", matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*", matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*", matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*", matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*", matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*", matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*", matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*", matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*", matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*", matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*", matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*", matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*", matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*", matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*", matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*", matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*", matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*", matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*", matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*", matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*", matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*", matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*", matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130", }, { lang: "es", value: "QSEE lee la política de permisos de acceso para la partición SMEM TOC del contenido SMEM TOC poblado por XBL Loader y los aplica sin comprobación en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130", }, ], id: "CVE-2020-3684", lastModified: "2024-11-21T05:31:34.140", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-11-02T07:15:14.733", references: [ { source: "product-security@qualcomm.com", tags: [ "Broken Link", ], url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin", }, { source: "nvd@nist.gov", tags: [ "Vendor Advisory", ], url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin", }, ], sourceIdentifier: "product-security@qualcomm.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-Other", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.