Back to KEVs

CVE-2020-11261

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto,...

Basic Information

CVE State
PUBLISHED
Reserved Date
March 31, 2020
Published Date
June 09, 2021
Last Updated
January 29, 2025
Vendor
Qualcomm, Inc.
Product
Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Description
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

CVSS Scores

SSVC Information

Exploitation
active
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (added 2021-12-01 00:00:00 UTC) Source

References

https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin

Known Exploited Vulnerability Information

Source Added Date
CISA 2021-12-01 00:00:00 UTC