Chipsets.org

Vulnerability

CVE-2020-11170

Component: AUDIO

Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Impact

Severity (Manufact.)

CRITICAL

Severity (NIST)

9.8

Severity (Android)

N/A

Chipsets

Devices

669

Affected Hardware

Name	Also known as	Manufacturer
MSM8227		Qualcomm
MSM8627		Qualcomm
MSM8230	Snapdragon 400	Qualcomm
MSM8630	Snapdragon 400	Qualcomm
MSM8930	Snapdragon 400	Qualcomm
MSM8960		Qualcomm
MSM8610	Snapdragon 200	Qualcomm
MSM8208	Snapdragon 208	Qualcomm
MSM8226	Snapdragon 400	Qualcomm
MSM8626	Snapdragon 400	Qualcomm

28 of 28 row(s) shown.

Rows per page

Page 1 of 3

Information reliability

The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.

Timeline

Introduced (est):

Jan 1, 2012

Reported:

Unknown

Advisory Published:

Feb 1, 2021

CVE Published:

Feb 22, 2021

Android Patch Level:

Feb 2021