cvelist/2020/11xxx/CVE-2020-11210.json

{
   "CVE_data_meta": {
      "ASSIGNER": "product-security@qualcomm.com",
      "ID": "CVE-2020-11210",
      "STATE": "PUBLIC"
   },
   "affects": {
      "vendor": {
         "vendor_data": [
            {
               "product": {
                  "product_data": [
                     {
                        "product_name": "Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                        "version": {
                           "version_data": [
                              {
                                 "version_value": "AR8035, PM4125, PM4250, PM6125, PM6150A, PM6150L, PM6350, PM7250B, PM8008, PMD9655, PMI632, PMK8003, QAT3519, QAT3522, QAT3555, QAT5515, QAT5516, QCA6390, QCA9984, QCM2290, QCM4290, QCS2290, QCS405, QCS4290, QDM2301, QDM2302, QET4101, QET6105, QPA4360, QPA4361, QPA6560, QPA8673, QSW6310, QSW8573, QSW8574, QTC410S, QTM525, SD460, SD480, SD662, SD665, SDR425, SDR660, SDR735, SDR735G, SM4125, SMB1351, SMB1354, SMB1355, SMB1396, SMR526, WCD9370, WCD9375, WCD9385, WCN3910, WCN3950, WCN3980, WCN3988, WCN3991, WCN3998, WCN3999, WCN6850, WGR7640, WSA8810, WSA8815, WTR2965, WTR3925"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name": "Qualcomm, Inc."
            }
         ]
      }
   },
   "data_format": "MITRE",
   "data_type": "CVE",
   "data_version": "4.0",
   "description": {
      "description_data": [
         {
            "lang": "eng",
            "value": "Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking"
         }
      ]
   },
    "impact": {
        "cvss": {
            "baseScore": "9.3",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
        }
    },
   "problemtype": {
      "problemtype_data": [
         {
            "description": [
               {
                  "lang": "eng",
                  "value": "Improper Input Validation in Core"
               }
            ]
         }
      ]
   },
   "references": {
      "reference_data": [
         {
            "name": "https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin",
            "refsource": "CONFIRM",
            "url": "https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin"
         }
      ]
   }
}