COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2020-11261

CVE-2020-11261

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-12-01
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-11261
⌖ exploited in the wild shame 50/100 exploited-in-wild

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Players implicated

Qualcomm · vendorSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables · product

Description

Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.