Attacker Value
Unknown
0
CVE-2020-11187
0
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-11187
(Last updated February 22, 2025) ▾
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
MITRE ATT&CK
Select the MITRE ATT&CK Tactics that apply to this CVE
Collection
Select any Techniques used:
Command and Control
Select any Techniques used:
Credential Access
Select any Techniques used:
Defense Evasion
Select any Techniques used:
Discovery
Select any Techniques used:
Execution
Select any Techniques used:
Exfiltration
Select any Techniques used:
Impact
Select any Techniques used:
Initial Access
Select any Techniques used:
Lateral Movement
Select any Techniques used:
Persistence
Select any Techniques used:
Privilege Escalation
Select any Techniques used:
Topic Tags
Select the tags that apply to this CVE (Assessment added tags are disabled and cannot be removed)
What makes this of high-value to an attacker?
What makes this of low-value to an attacker?
Description
Possible memory corruption in BSI module due to improper validation of parameter count in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
7.8 High
Impact Score:
5.9
Exploitability Score:
1.8
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
Low
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
High
Availability (A):
High
General Information
Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile AQT1000, CSRB31024, PM7150A, PM7150L, PM7250, PM7250B, PM8004, PM8008, PM855, PM855B, PM855L, PM855P, PMK8002, PMX24, PMX50, PMX55, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5522, QAT5533, QBT2000, QCA6391, QCA6564AU, QCA6574A, QCA6574AU, QCA6584AU, QCA6595AU, QCA6696, QCA8337, QDM2301, QDM2305, QDM3301, QDM5620, QDM5621, QDM5650, QDM5652, QDM5670, QDM5671, QDM5677, QDM5679, QET4101, QET5100, QET6110, QLN1021AQ, QLN1031, QLN1036AQ, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5580, QPA6560, QPA8673, QPA8686, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM5621, QPM5658, QPM5670, QPM5677, QPM5679, QPM6582, QPM6585, QPM8830, QPM8895, QTC801S, QTM525, QTM527, SA415M, SD765, SD765G, SD768G, SDR051, SDR052, SDR8150, SDR865, SDX50M, SDX55, SM7250P, SMB1355, SMB1390, SMR525, SMR526, WCD9341, WCD9380, WCD9385, WCN3991, WCN3998, WSA8810, WSA8815
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown
Vendors
Products
- aqt1000 firmware -,
- csrb31024 firmware -,
- pm7150a firmware -,
- pm7150l firmware -,
- pm7250 firmware -,
- pm7250b firmware -,
- pm8004 firmware -,
- pm8008 firmware -,
- pm855 firmware -,
- pm855b firmware -,
- pm855l firmware -,
- pm855p firmware -,
- pmk8002 firmware -,
- pmx24 firmware -,
- pmx50 firmware -,
- pmx55 firmware -,
- qat3516 firmware -,
- qat3518 firmware -,
- qat3519 firmware -,
- qat3555 firmware -,
- qat5515 firmware -,
- qat5522 firmware -,
- qat5533 firmware -,
- qbt2000 firmware -,
- qca6391 firmware -,
- qca6564au firmware -,
- qca6574a firmware -,
- qca6574au firmware -,
- qca6584au firmware -,
- qca6595au firmware -,
- qca6696 firmware -,
- qca8337 firmware -,
- qdm2301 firmware -,
- qdm2305 firmware -,
- qdm3301 firmware -,
- qdm5620 firmware -,
- qdm5621 firmware -,
- qdm5650 firmware -,
- qdm5652 firmware -,
- qdm5670 firmware -,
- qdm5671 firmware -,
- qdm5677 firmware -,
- qdm5679 firmware -,
- qet4101 firmware -,
- qet5100 firmware -,
- qet6110 firmware -,
- qln1021aq firmware -,
- qln1031 firmware -,
- qln1036aq firmware -,
- qln4642 firmware -,
- qln4650 firmware -,
- qln5020 firmware -,
- qln5030 firmware -,
- qln5040 firmware -,
- qpa2625 firmware -,
- qpa5580 firmware -,
- qpa6560 firmware -,
- qpa8673 firmware -,
- qpa8686 firmware -,
- qpa8801 firmware -,
- qpa8802 firmware -,
- qpa8803 firmware -,
- qpa8821 firmware -,
- qpa8842 firmware -,
- qpm5621 firmware -,
- qpm5658 firmware -,
- qpm5670 firmware -,
- qpm5677 firmware -,
- qpm5679 firmware -,
- qpm6582 firmware -,
- qpm6585 firmware -,
- qpm8830 firmware -,
- qpm8895 firmware -,
- qtc801s firmware -,
- qtm525 firmware -,
- qtm527 firmware -,
- sa415m firmware -,
- sd765 firmware -,
- sd765g firmware -,
- sd768g firmware -,
- sdr051 firmware -,
- sdr052 firmware -,
- sdr8150 firmware -,
- sdr865 firmware -,
- sdx50m firmware -,
- sdx55 firmware -,
- sm7250p firmware -,
- smb1355 firmware -,
- smb1390 firmware -,
- smr525 firmware -,
- smr526 firmware -,
- wcd9341 firmware -,
- wcd9380 firmware -,
- wcd9385 firmware -,
- wcn3991 firmware -,
- wcn3998 firmware -,
- wsa8810 firmware -,
- wsa8815 firmware -
Weaknesses
References
Additional Info
Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Rapid7
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
