Nicobar Firmware
CVE-2020-3674
MEDIUM
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55, SM8150, SM8250, SXR2130
AnalysisAI
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.
Technical ContextAI
This vulnerability is classified as Out-of-bounds Read (CWE-125), which allows attackers to read data from memory outside the intended buffer boundaries. Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55, SM8150, SM8250, SXR2130 Affected products include: Qualcomm Nicobar Firmware, Qualcomm Qcs405 Firmware, Qualcomm Saipan Firmware, Qualcomm Sc8180X Firmware, Qualcomm Sdx55 Firmware.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Validate array indices and buffer lengths. Use memory-safe languages. Enable AddressSanitizer during testing.
More in Nicobar Firmware
View allu'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode r
u'Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input valid
u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check
u'Buffer overflow occurs while processing SIP message packet due to lack of check of index validation before copying int
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute'
u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Sna
u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while par
u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in
Possible out of bound access while processing assoc response from host due to improper length check before copying into
Out of bound write while QoS DSCP mapping due to improper input validation for data received from association response f
Possible buffer overflow while parsing mp4 clip with corrupted sample atoms due to improper validation of index in Snapd
Use-after-free issue could occur due to dangling pointer when generating a frame buffer in OpenGL ES in Snapdragon Compu
Same weakness CWE-125 – Out-of-bounds Read
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today