CVE-2020-3652

Possible buffer over-read issue in windows x86 wlan driver function while processing beacon or request frame due to lack of check of length of variable received. in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:31

Type Values Removed Values Added
References () https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin - Vendor Advisory () https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin - Vendor Advisory

Information

Published : 2020-04-16 11:15

Updated : 2024-11-21 05:31


NVD link : CVE-2020-3652

Mitre link : CVE-2020-3652

CVE.ORG link : CVE-2020-3652


JSON object : View

Products Affected

qualcomm

  • sdm850_firmware
  • qca6390_firmware
  • sdm850
  • msm8998
  • msm8998_firmware
  • sc8180x_firmware
  • sc7180_firmware
  • sc8180x
  • sc7180
  • qca6390
CWE
CWE-20

Improper Input Validation

CWE-125

Out-of-bounds Read