CVE-2020-3665 - Qualcomm Sdm439 Firmware, Qualcomm Mdm9640 Firmware and Qualcomm Qca6174a Firmware

Critical 7.8

A possible buffer overflow would occur while processing command from firmware due to the group_id obtained from the firmware being out of range in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9615, MDM9640, MDM9650, MSM8909W, MSM8996, MSM8996AU, QCA6174A, QCA9377, QCA9379, SDM439, SDM636, SDM660, SDX20, SDX24, SM8150

Affected software

Qualcomm Sdm439 Firmware

Qualcomm Mdm9640 Firmware

Qualcomm Qca6174a Firmware

Qualcomm Mdm9650 Firmware

Qualcomm Apq8009 Firmware

Qualcomm Msm8909w Firmware

Qualcomm Msm8996au Firmware

Qualcomm Sdm636 Firmware

Qualcomm Mdm9207c Firmware

Qualcomm Sdm660 Firmware

Qualcomm Mdm9607 Firmware

Qualcomm Sdx20 Firmware

Qualcomm Apq8096au Firmware

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9615 Firmware

Qualcomm Msm8996 Firmware

Qualcomm Qca9379 Firmware

Qualcomm Apq8053 Firmware

Qualcomm Sdx24 Firmware

Qualcomm Sm8150 Firmware

Qualcomm Qca9377 Firmware

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.