← back
CVE-2020-11294

CVE-2020-11294

CVSS 5.9 MEDIUMEPSS 0.1%
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.9EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
07 May 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Out of bound write in logger due to prefix size is not validated while prepended to logging string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L