CVE-2020-11261
Qualcomm Multiple Chipsets Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
1.8%
p76
KEV
YES
Dec 1, 2021
Exploit Today
73
0-100
Published: — · Last modified: —
Product
Qualcomm / Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Vulnerability
Qualcomm Multiple Chipsets Improper Input Validation Vulnerability
Added to KEV
Dec 1, 2021
Remediate by
Jun 1, 2022
Known ransomware use
No
Summary description
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-11261
No related CVEs by CWE or product.