CVE-2020-3692 - Qualcomm Agatti Firmware, Qualcomm Kamorta Firmware and Qualcomm Nicobar Firmware

November 2, 2020

Critical 9.8

u'Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input validation for parameters received from server' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in Agatti, Kamorta, Nicobar, QCM6125, QCS610, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Affected software

Qualcomm Agatti Firmware

Qualcomm Kamorta Firmware

Qualcomm Nicobar Firmware

Qualcomm Sa415m Firmware

Qualcomm Sdx55 Firmware

Qualcomm Sm6150 Firmware

Qualcomm Sc7180 Firmware

Qualcomm Sm7150 Firmware

Qualcomm Sxr2130 Firmware

Qualcomm Sm8150 Firmware

Qualcomm Qcs610 Firmware

Qualcomm Rennell Firmware

Qualcomm Qcm6125 Firmware

Qualcomm Sc8180x Firmware

Qualcomm Saipan Firmware

Qualcomm Sdx24 Firmware

Qualcomm Sm8250 Firmware

Reference links

https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin
https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin

CVE-2020-3692 - Qualcomm Agatti Firmware, Qualcomm Kamorta Firmware and Qualcomm Nicobar Firmware

Affected software

Reference links

Get alerted to vulnerabilities in your software