CVE-2020-11261

unknown KEV

Published 2021-12-01 · Modified 2021-12-01

CVSS v3

—

CVSS v2

—

VIR risk

1.5

Description

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CISA KEV

Vendor: Qualcomm
Product: Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Due date: 2022-06-01

Predictions

Exploit likelihood

99%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — https://nvd.nist.gov/vuln/detail/CVE-2020-11261

Exploits

References

https://nvd.nist.gov/vuln/detail/CVE-2020-11261

Verify integrity in audit chain (admin only). AS-IS.