CVE-2020-11261

Qualcomm | Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesAdded 2021-12-01Remediation Deadline 2022-06-01

Qualcomm Multiple Chipsets Improper Input Validation Vulnerability

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-20

References

https://nvd.nist.gov/vuln/detail/CVE-2020-11261

Cybersecurity Alerts

CVE-2020-11261

Qualcomm Multiple Chipsets Improper Input Validation Vulnerability

Required Action

Weakness Classification

References