Chipsets.org

Vulnerability

CVE-2020-11195

Component: TRUST

Location: OS

Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Impact

Severity (Manufact.)

HIGH

Severity (NIST)

7.8

Severity (Android)

N/A

Chipsets

Devices

475

Affected Hardware

Name	Also known as	Manufacturer
MSM8208	Snapdragon 208	Qualcomm
MSM8916	Snapdragon 410	Qualcomm
SM4350	Snapdragon 480	Qualcomm
SM6150	Snapdragon 675	Qualcomm
SM8350	Snapdragon 888	Qualcomm
SC8180	Snapdragon 8c	Qualcomm
SC8180X	Snapdragon 8cx	Qualcomm
MSM8996AU	Snapdragon 820A	Qualcomm
APQ8016	Snapdragon 410	Qualcomm

9 of 9 row(s) shown.

Rows per page

Page 1 of 1

Information reliability

The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.

Timeline

Introduced (est):

Jan 1, 2014

Reported:

Apr 30, 2020

Advisory Published:

Feb 1, 2021

CVE Published:

Feb 22, 2021

Android Patch Level:

Mar 2021