cbcvebase.
CVE-2020-11261
published 2021-06-09

CVE-2020-11261: Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute…

PriorityP180high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-06-01
Exploited in the wild
EPSS
1.77%
75.4th percentile
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Affected

1 ranges
VendorProductVersion rangeFixed in
googleandroid

Detection & IOCsextracted from sources · hover to see the quote

  • CVE-2020-11261 affects the Qualcomm Display component on Android devices; patch reference is Android Security Bulletin 2021-01-01 with internal reference A-161373974 / QC-CR#2742124
  • CVE-2020-11261 is a memory corruption vulnerability triggered when a user application requests memory allocation of a huge size; detection should focus on anomalous large memory allocation requests from user-space to the Qualcomm graphics/display driver
  • CVE-2020-11261 has been confirmed as actively exploited in the wild against Android devices using Qualcomm chips; prioritize detection and patching on such devices
  • CISA has added CVE-2020-11261 to its Known Exploited Vulnerabilities catalog, classifying it as an Improper Input Validation vulnerability; organizations should apply vendor updates per the required action
  • ·Affected platforms span a wide range of Qualcomm Snapdragon product lines; scope of exposure is broad across mobile, wearable, IoT, and automotive segments

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vulncheck7.8HIGH
cisa7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.