CVE-2020-11166

9.1 CRITICAL

Denial of Service

📋 TL;DR

This vulnerability allows an attacker to cause an out-of-bounds read exception by sending specially crafted ROHC headers with excessive padding to affected Qualcomm Snapdragon devices. Successful exploitation could lead to denial of service or potential information disclosure. Affected products include Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, IoT, Mobile, Voice & Music, and Wearables platforms.

💻 Affected Systems

Products:

• Snapdragon Auto
• Snapdragon Compute
• Snapdragon Connectivity
• Snapdragon Consumer IOT
• Snapdragon Industrial IOT
• Snapdragon IoT
• Snapdragon Mobile
• Snapdragon Voice & Music
• Snapdragon Wearables

Versions: Multiple Snapdragon chipset versions prior to March 2021 security updates

Operating Systems: Android, Linux-based embedded systems

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability exists in ROHC (Robust Header Compression) implementation in Qualcomm firmware/drivers. Affects devices using vulnerable Snapdragon chipsets regardless of OS version if unpatched.

📦 What is this software?

Apq8009 Firmware by Qualcomm

View all CVEs affecting Apq8009 Firmware →

Apq8009w Firmware by Qualcomm

View all CVEs affecting Apq8009w Firmware →

Apq8017 Firmware by Qualcomm

View all CVEs affecting Apq8017 Firmware →

Apq8037 Firmware by Qualcomm

View all CVEs affecting Apq8037 Firmware →

Apq8053 Firmware by Qualcomm

View all CVEs affecting Apq8053 Firmware →

Apq8084 Firmware by Qualcomm

View all CVEs affecting Apq8084 Firmware →

Apq8096au Firmware by Qualcomm

View all CVEs affecting Apq8096au Firmware →

Aqt1000 Firmware by Qualcomm

View all CVEs affecting Aqt1000 Firmware →

Ar6003 Firmware by Qualcomm

View all CVEs affecting Ar6003 Firmware →

Ar8151 Firmware by Qualcomm

View all CVEs affecting Ar8151 Firmware →

Csr6030 Firmware by Qualcomm

View all CVEs affecting Csr6030 Firmware →

Csrb31024 Firmware by Qualcomm

View all CVEs affecting Csrb31024 Firmware →

Fsm10055 Firmware by Qualcomm

View all CVEs affecting Fsm10055 Firmware →

Mdm8207 Firmware by Qualcomm

View all CVEs affecting Mdm8207 Firmware →

Mdm8215 Firmware by Qualcomm

View all CVEs affecting Mdm8215 Firmware →

Mdm8215m Firmware by Qualcomm

View all CVEs affecting Mdm8215m Firmware →

Mdm8615m Firmware by Qualcomm

View all CVEs affecting Mdm8615m Firmware →

Mdm9150 Firmware by Qualcomm

View all CVEs affecting Mdm9150 Firmware →

Mdm9205 Firmware by Qualcomm

View all CVEs affecting Mdm9205 Firmware →

Mdm9206 Firmware by Qualcomm

View all CVEs affecting Mdm9206 Firmware →

Mdm9207 Firmware by Qualcomm

View all CVEs affecting Mdm9207 Firmware →

Mdm9215 Firmware by Qualcomm

View all CVEs affecting Mdm9215 Firmware →

Mdm9230 Firmware by Qualcomm

View all CVEs affecting Mdm9230 Firmware →

Mdm9250 Firmware by Qualcomm

View all CVEs affecting Mdm9250 Firmware →

Mdm9310 Firmware by Qualcomm

View all CVEs affecting Mdm9310 Firmware →

Mdm9330 Firmware by Qualcomm

View all CVEs affecting Mdm9330 Firmware →

Mdm9607 Firmware by Qualcomm

View all CVEs affecting Mdm9607 Firmware →

Mdm9615 Firmware by Qualcomm

View all CVEs affecting Mdm9615 Firmware →

Mdm9615m Firmware by Qualcomm

View all CVEs affecting Mdm9615m Firmware →

Mdm9625 Firmware by Qualcomm

View all CVEs affecting Mdm9625 Firmware →

Mdm9628 Firmware by Qualcomm

View all CVEs affecting Mdm9628 Firmware →

Mdm9630 Firmware by Qualcomm

View all CVEs affecting Mdm9630 Firmware →

Mdm9635m Firmware by Qualcomm

View all CVEs affecting Mdm9635m Firmware →

Mdm9640 Firmware by Qualcomm

View all CVEs affecting Mdm9640 Firmware →

Mdm9645 Firmware by Qualcomm

View all CVEs affecting Mdm9645 Firmware →

Mdm9650 Firmware by Qualcomm

View all CVEs affecting Mdm9650 Firmware →

Mdm9655 Firmware by Qualcomm

View all CVEs affecting Mdm9655 Firmware →

Msm8108 Firmware by Qualcomm

View all CVEs affecting Msm8108 Firmware →

Msm8208 Firmware by Qualcomm

View all CVEs affecting Msm8208 Firmware →

Msm8209 Firmware by Qualcomm

View all CVEs affecting Msm8209 Firmware →

Msm8608 Firmware by Qualcomm

View all CVEs affecting Msm8608 Firmware →

Msm8909w Firmware by Qualcomm

View all CVEs affecting Msm8909w Firmware →

Msm8917 Firmware by Qualcomm

View all CVEs affecting Msm8917 Firmware →

Msm8920 Firmware by Qualcomm

View all CVEs affecting Msm8920 Firmware →

Msm8937 Firmware by Qualcomm

View all CVEs affecting Msm8937 Firmware →

Msm8940 Firmware by Qualcomm

View all CVEs affecting Msm8940 Firmware →

Msm8953 Firmware by Qualcomm

View all CVEs affecting Msm8953 Firmware →

Msm8976 Firmware by Qualcomm

View all CVEs affecting Msm8976 Firmware →

Msm8976sg Firmware by Qualcomm

View all CVEs affecting Msm8976sg Firmware →

Msm8996au Firmware by Qualcomm

View all CVEs affecting Msm8996au Firmware →

Pm215 Firmware by Qualcomm

View all CVEs affecting Pm215 Firmware →

Pm3003a Firmware by Qualcomm

View all CVEs affecting Pm3003a Firmware →

Pm4125 Firmware by Qualcomm

View all CVEs affecting Pm4125 Firmware →

Pm4250 Firmware by Qualcomm

View all CVEs affecting Pm4250 Firmware →

Pm439 Firmware by Qualcomm

View all CVEs affecting Pm439 Firmware →

Pm456 Firmware by Qualcomm

View all CVEs affecting Pm456 Firmware →

Pm6125 Firmware by Qualcomm

View all CVEs affecting Pm6125 Firmware →

Pm6150 Firmware by Qualcomm

View all CVEs affecting Pm6150 Firmware →

Pm6150a Firmware by Qualcomm

View all CVEs affecting Pm6150a Firmware →

Pm6150l Firmware by Qualcomm

View all CVEs affecting Pm6150l Firmware →

Pm6250 Firmware by Qualcomm

View all CVEs affecting Pm6250 Firmware →

Pm640a Firmware by Qualcomm

View all CVEs affecting Pm640a Firmware →

Pm640l Firmware by Qualcomm

View all CVEs affecting Pm640l Firmware →

Pm640p Firmware by Qualcomm

View all CVEs affecting Pm640p Firmware →

Pm660 Firmware by Qualcomm

View all CVEs affecting Pm660 Firmware →

Pm660a Firmware by Qualcomm

View all CVEs affecting Pm660a Firmware →

Pm660l Firmware by Qualcomm

View all CVEs affecting Pm660l Firmware →

Pm670 Firmware by Qualcomm

View all CVEs affecting Pm670 Firmware →

Pm670l Firmware by Qualcomm

View all CVEs affecting Pm670l Firmware →

Pm7150a Firmware by Qualcomm

View all CVEs affecting Pm7150a Firmware →

Pm7150l Firmware by Qualcomm

View all CVEs affecting Pm7150l Firmware →

Pm7250 Firmware by Qualcomm

View all CVEs affecting Pm7250 Firmware →

Pm7250b Firmware by Qualcomm

View all CVEs affecting Pm7250b Firmware →

Pm8004 Firmware by Qualcomm

View all CVEs affecting Pm8004 Firmware →

Pm8005 Firmware by Qualcomm

View all CVEs affecting Pm8005 Firmware →

Pm8008 Firmware by Qualcomm

View all CVEs affecting Pm8008 Firmware →

Pm8009 Firmware by Qualcomm

View all CVEs affecting Pm8009 Firmware →

Pm8018 Firmware by Qualcomm

View all CVEs affecting Pm8018 Firmware →

Pm8019 Firmware by Qualcomm

View all CVEs affecting Pm8019 Firmware →

Pm8150 Firmware by Qualcomm

View all CVEs affecting Pm8150 Firmware →

Pm8150a Firmware by Qualcomm

View all CVEs affecting Pm8150a Firmware →

Pm8150b Firmware by Qualcomm

View all CVEs affecting Pm8150b Firmware →

Pm8150c Firmware by Qualcomm

View all CVEs affecting Pm8150c Firmware →

Pm8150l Firmware by Qualcomm

View all CVEs affecting Pm8150l Firmware →

Pm8250 Firmware by Qualcomm

View all CVEs affecting Pm8250 Firmware →

Pm855 Firmware by Qualcomm

View all CVEs affecting Pm855 Firmware →

Pm855a Firmware by Qualcomm

View all CVEs affecting Pm855a Firmware →

Pm855b Firmware by Qualcomm

View all CVEs affecting Pm855b Firmware →

Pm855l Firmware by Qualcomm

View all CVEs affecting Pm855l Firmware →

Pm855p Firmware by Qualcomm

View all CVEs affecting Pm855p Firmware →

Pm8909 Firmware by Qualcomm

View all CVEs affecting Pm8909 Firmware →

Pm8916 Firmware by Qualcomm

View all CVEs affecting Pm8916 Firmware →

Pm8937 Firmware by Qualcomm

View all CVEs affecting Pm8937 Firmware →

Pm8940 Firmware by Qualcomm

View all CVEs affecting Pm8940 Firmware →

Pm8952 Firmware by Qualcomm

View all CVEs affecting Pm8952 Firmware →

Pm8953 Firmware by Qualcomm

View all CVEs affecting Pm8953 Firmware →

Pm8956 Firmware by Qualcomm

View all CVEs affecting Pm8956 Firmware →

Pm8996 Firmware by Qualcomm

View all CVEs affecting Pm8996 Firmware →

Pm8998 Firmware by Qualcomm

View all CVEs affecting Pm8998 Firmware →

Pmc1000h Firmware by Qualcomm

View all CVEs affecting Pmc1000h Firmware →

Pmd9607 Firmware by Qualcomm

View all CVEs affecting Pmd9607 Firmware →

Pmd9635 Firmware by Qualcomm

View all CVEs affecting Pmd9635 Firmware →

Pmd9645 Firmware by Qualcomm

View all CVEs affecting Pmd9645 Firmware →

Pmd9655 Firmware by Qualcomm

View all CVEs affecting Pmd9655 Firmware →

Pmd9655au Firmware by Qualcomm

View all CVEs affecting Pmd9655au Firmware →

Pme605 Firmware by Qualcomm

View all CVEs affecting Pme605 Firmware →

Pmi632 Firmware by Qualcomm

View all CVEs affecting Pmi632 Firmware →

Pmi8937 Firmware by Qualcomm

View all CVEs affecting Pmi8937 Firmware →

Pmi8940 Firmware by Qualcomm

View all CVEs affecting Pmi8940 Firmware →

Pmi8952 Firmware by Qualcomm

View all CVEs affecting Pmi8952 Firmware →

Pmi8994 Firmware by Qualcomm

View all CVEs affecting Pmi8994 Firmware →

Pmi8996 Firmware by Qualcomm

View all CVEs affecting Pmi8996 Firmware →

Pmi8998 Firmware by Qualcomm

View all CVEs affecting Pmi8998 Firmware →

Pmk8001 Firmware by Qualcomm

View all CVEs affecting Pmk8001 Firmware →

Pmk8002 Firmware by Qualcomm

View all CVEs affecting Pmk8002 Firmware →

Pmm855au Firmware by Qualcomm

View all CVEs affecting Pmm855au Firmware →

Pmm8996au Firmware by Qualcomm

View all CVEs affecting Pmm8996au Firmware →

Pmr525 Firmware by Qualcomm

View all CVEs affecting Pmr525 Firmware →

Pmr735a Firmware by Qualcomm

View all CVEs affecting Pmr735a Firmware →

Pmw3100 Firmware by Qualcomm

View all CVEs affecting Pmw3100 Firmware →

Pmx20 Firmware by Qualcomm

View all CVEs affecting Pmx20 Firmware →

Pmx24 Firmware by Qualcomm

View all CVEs affecting Pmx24 Firmware →

Pmx50 Firmware by Qualcomm

View all CVEs affecting Pmx50 Firmware →

Pmx55 Firmware by Qualcomm

View all CVEs affecting Pmx55 Firmware →

Qat3514 Firmware by Qualcomm

View all CVEs affecting Qat3514 Firmware →

Qat3516 Firmware by Qualcomm

View all CVEs affecting Qat3516 Firmware →

Qat3518 Firmware by Qualcomm

View all CVEs affecting Qat3518 Firmware →

Qat3519 Firmware by Qualcomm

View all CVEs affecting Qat3519 Firmware →

Qat3522 Firmware by Qualcomm

View all CVEs affecting Qat3522 Firmware →

Qat3550 Firmware by Qualcomm

View all CVEs affecting Qat3550 Firmware →

Qat3555 Firmware by Qualcomm

View all CVEs affecting Qat3555 Firmware →

Qat5515 Firmware by Qualcomm

View all CVEs affecting Qat5515 Firmware →

Qat5516 Firmware by Qualcomm

View all CVEs affecting Qat5516 Firmware →

Qat5522 Firmware by Qualcomm

View all CVEs affecting Qat5522 Firmware →

Qat5533 Firmware by Qualcomm

View all CVEs affecting Qat5533 Firmware →

Qbt1000 Firmware by Qualcomm

View all CVEs affecting Qbt1000 Firmware →

Qbt1500 Firmware by Qualcomm

View all CVEs affecting Qbt1500 Firmware →

Qbt2000 Firmware by Qualcomm

View all CVEs affecting Qbt2000 Firmware →

Qca4004 Firmware by Qualcomm

View all CVEs affecting Qca4004 Firmware →

Qca4020 Firmware by Qualcomm

View all CVEs affecting Qca4020 Firmware →

Qca6174 Firmware by Qualcomm

View all CVEs affecting Qca6174 Firmware →

Qca6174a Firmware by Qualcomm

View all CVEs affecting Qca6174a Firmware →

Qca6310 Firmware by Qualcomm

View all CVEs affecting Qca6310 Firmware →

Qca6320 Firmware by Qualcomm

View all CVEs affecting Qca6320 Firmware →

Qca6335 Firmware by Qualcomm

View all CVEs affecting Qca6335 Firmware →

Qca6390 Firmware by Qualcomm

View all CVEs affecting Qca6390 Firmware →

Qca6391 Firmware by Qualcomm

View all CVEs affecting Qca6391 Firmware →

Qca6420 Firmware by Qualcomm

View all CVEs affecting Qca6420 Firmware →

Qca6421 Firmware by Qualcomm

View all CVEs affecting Qca6421 Firmware →

Qca6426 Firmware by Qualcomm

View all CVEs affecting Qca6426 Firmware →

Qca6430 Firmware by Qualcomm

View all CVEs affecting Qca6430 Firmware →

Qca6431 Firmware by Qualcomm

View all CVEs affecting Qca6431 Firmware →

Qca6436 Firmware by Qualcomm

View all CVEs affecting Qca6436 Firmware →

Qca6564a Firmware by Qualcomm

View all CVEs affecting Qca6564a Firmware →

Qca6564au Firmware by Qualcomm

View all CVEs affecting Qca6564au Firmware →

Qca6574 Firmware by Qualcomm

View all CVEs affecting Qca6574 Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6574au Firmware by Qualcomm

View all CVEs affecting Qca6574au Firmware →

Qca6584 Firmware by Qualcomm

View all CVEs affecting Qca6584 Firmware →

Qca6584au Firmware by Qualcomm

View all CVEs affecting Qca6584au Firmware →

Qca6595 Firmware by Qualcomm

View all CVEs affecting Qca6595 Firmware →

Qca6595au Firmware by Qualcomm

View all CVEs affecting Qca6595au Firmware →

Qca6694 Firmware by Qualcomm

View all CVEs affecting Qca6694 Firmware →

Qca6694au Firmware by Qualcomm

View all CVEs affecting Qca6694au Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Qca8337 Firmware by Qualcomm

View all CVEs affecting Qca8337 Firmware →

Qca9367 Firmware by Qualcomm

View all CVEs affecting Qca9367 Firmware →

Qca9377 Firmware by Qualcomm

View all CVEs affecting Qca9377 Firmware →

Qca9379 Firmware by Qualcomm

View all CVEs affecting Qca9379 Firmware →

Qcc1110 Firmware by Qualcomm

View all CVEs affecting Qcc1110 Firmware →

Qcm2290 Firmware by Qualcomm

View all CVEs affecting Qcm2290 Firmware →

Qcm4290 Firmware by Qualcomm

View all CVEs affecting Qcm4290 Firmware →

Qcm6125 Firmware by Qualcomm

View all CVEs affecting Qcm6125 Firmware →

Qcs2290 Firmware by Qualcomm

View all CVEs affecting Qcs2290 Firmware →

Qcs410 Firmware by Qualcomm

View all CVEs affecting Qcs410 Firmware →

Qcs4290 Firmware by Qualcomm

View all CVEs affecting Qcs4290 Firmware →

Qcs603 Firmware by Qualcomm

View all CVEs affecting Qcs603 Firmware →

Qcs605 Firmware by Qualcomm

View all CVEs affecting Qcs605 Firmware →

Qcs610 Firmware by Qualcomm

View all CVEs affecting Qcs610 Firmware →

Qcs6125 Firmware by Qualcomm

View all CVEs affecting Qcs6125 Firmware →

Qdm2301 Firmware by Qualcomm

View all CVEs affecting Qdm2301 Firmware →

Qdm2302 Firmware by Qualcomm

View all CVEs affecting Qdm2302 Firmware →

Qdm2305 Firmware by Qualcomm

View all CVEs affecting Qdm2305 Firmware →

Qdm2307 Firmware by Qualcomm

View all CVEs affecting Qdm2307 Firmware →

Qdm2308 Firmware by Qualcomm

View all CVEs affecting Qdm2308 Firmware →

Qdm2310 Firmware by Qualcomm

View all CVEs affecting Qdm2310 Firmware →

Qdm3301 Firmware by Qualcomm

View all CVEs affecting Qdm3301 Firmware →

Qdm5620 Firmware by Qualcomm

View all CVEs affecting Qdm5620 Firmware →

Qdm5621 Firmware by Qualcomm

View all CVEs affecting Qdm5621 Firmware →

Qdm5650 Firmware by Qualcomm

View all CVEs affecting Qdm5650 Firmware →

Qdm5652 Firmware by Qualcomm

View all CVEs affecting Qdm5652 Firmware →

Qdm5670 Firmware by Qualcomm

View all CVEs affecting Qdm5670 Firmware →

Qdm5671 Firmware by Qualcomm

View all CVEs affecting Qdm5671 Firmware →

Qdm5677 Firmware by Qualcomm

View all CVEs affecting Qdm5677 Firmware →

Qdm5679 Firmware by Qualcomm

View all CVEs affecting Qdm5679 Firmware →

Qet4100 Firmware by Qualcomm

View all CVEs affecting Qet4100 Firmware →

Qet4101 Firmware by Qualcomm

View all CVEs affecting Qet4101 Firmware →

Qet4200aq Firmware by Qualcomm

View all CVEs affecting Qet4200aq Firmware →

Qet5100 Firmware by Qualcomm

View all CVEs affecting Qet5100 Firmware →

Qet5100m Firmware by Qualcomm

View all CVEs affecting Qet5100m Firmware →

Qet6110 Firmware by Qualcomm

View all CVEs affecting Qet6110 Firmware →

Qfe1035 Firmware by Qualcomm

View all CVEs affecting Qfe1035 Firmware →

Qfe1040 Firmware by Qualcomm

View all CVEs affecting Qfe1040 Firmware →

Qfe1045 Firmware by Qualcomm

View all CVEs affecting Qfe1045 Firmware →

Qfe1100 Firmware by Qualcomm

View all CVEs affecting Qfe1100 Firmware →

Qfe2080fc Firmware by Qualcomm

View all CVEs affecting Qfe2080fc Firmware →

Qfe2081fc Firmware by Qualcomm

View all CVEs affecting Qfe2081fc Firmware →

Qfe2082fc Firmware by Qualcomm

View all CVEs affecting Qfe2082fc Firmware →

Qfe2101 Firmware by Qualcomm

View all CVEs affecting Qfe2101 Firmware →

Qfe2340 Firmware by Qualcomm

View all CVEs affecting Qfe2340 Firmware →

Qfe2520 Firmware by Qualcomm

View all CVEs affecting Qfe2520 Firmware →

Qfe2550 Firmware by Qualcomm

View all CVEs affecting Qfe2550 Firmware →

Qfe3100 Firmware by Qualcomm

View all CVEs affecting Qfe3100 Firmware →

Qfe3320 Firmware by Qualcomm

View all CVEs affecting Qfe3320 Firmware →

Qfe3335 Firmware by Qualcomm

View all CVEs affecting Qfe3335 Firmware →

Qfe3340 Firmware by Qualcomm

View all CVEs affecting Qfe3340 Firmware →

Qfe3345 Firmware by Qualcomm

View all CVEs affecting Qfe3345 Firmware →

Qfe3440fc Firmware by Qualcomm

View all CVEs affecting Qfe3440fc Firmware →

Qfe4301 Firmware by Qualcomm

View all CVEs affecting Qfe4301 Firmware →

Qfe4302 Firmware by Qualcomm

View all CVEs affecting Qfe4302 Firmware →

Qfe4303 Firmware by Qualcomm

View all CVEs affecting Qfe4303 Firmware →

Qfe4305 Firmware by Qualcomm

View all CVEs affecting Qfe4305 Firmware →

Qfe4308 Firmware by Qualcomm

View all CVEs affecting Qfe4308 Firmware →

Qfe4309 Firmware by Qualcomm

View all CVEs affecting Qfe4309 Firmware →

Qfe4320 Firmware by Qualcomm

View all CVEs affecting Qfe4320 Firmware →

Qfe4373fc Firmware by Qualcomm

View all CVEs affecting Qfe4373fc Firmware →

Qfe4455fc Firmware by Qualcomm

View all CVEs affecting Qfe4455fc Firmware →

Qfe4465fc Firmware by Qualcomm

View all CVEs affecting Qfe4465fc Firmware →

Qfs2530 Firmware by Qualcomm

View all CVEs affecting Qfs2530 Firmware →

Qfs2580 Firmware by Qualcomm

View all CVEs affecting Qfs2580 Firmware →

Qln1020 Firmware by Qualcomm

View all CVEs affecting Qln1020 Firmware →

Qln1021aq Firmware by Qualcomm

View all CVEs affecting Qln1021aq Firmware →

Qln1030 Firmware by Qualcomm

View all CVEs affecting Qln1030 Firmware →

Qln1031 Firmware by Qualcomm

View all CVEs affecting Qln1031 Firmware →

Qln1035bd Firmware by Qualcomm

View all CVEs affecting Qln1035bd Firmware →

Qln1036aq Firmware by Qualcomm

View all CVEs affecting Qln1036aq Firmware →

Qln4640 Firmware by Qualcomm

View all CVEs affecting Qln4640 Firmware →

Qln4642 Firmware by Qualcomm

View all CVEs affecting Qln4642 Firmware →

Qln4650 Firmware by Qualcomm

View all CVEs affecting Qln4650 Firmware →

Qln5020 Firmware by Qualcomm

View all CVEs affecting Qln5020 Firmware →

Qln5030 Firmware by Qualcomm

View all CVEs affecting Qln5030 Firmware →

Qln5040 Firmware by Qualcomm

View all CVEs affecting Qln5040 Firmware →

Qpa2625 Firmware by Qualcomm

View all CVEs affecting Qpa2625 Firmware →

Qpa4340 Firmware by Qualcomm

View all CVEs affecting Qpa4340 Firmware →

Qpa4360 Firmware by Qualcomm

View all CVEs affecting Qpa4360 Firmware →

Qpa4361 Firmware by Qualcomm

View all CVEs affecting Qpa4361 Firmware →

Qpa5373 Firmware by Qualcomm

View all CVEs affecting Qpa5373 Firmware →

Qpa5460 Firmware by Qualcomm

View all CVEs affecting Qpa5460 Firmware →

Qpa5580 Firmware by Qualcomm

View all CVEs affecting Qpa5580 Firmware →

Qpa6560 Firmware by Qualcomm

View all CVEs affecting Qpa6560 Firmware →

Qpa8673 Firmware by Qualcomm

View all CVEs affecting Qpa8673 Firmware →

Qpa8675 Firmware by Qualcomm

View all CVEs affecting Qpa8675 Firmware →

Qpa8686 Firmware by Qualcomm

View all CVEs affecting Qpa8686 Firmware →

Qpa8801 Firmware by Qualcomm

View all CVEs affecting Qpa8801 Firmware →

Qpa8802 Firmware by Qualcomm

View all CVEs affecting Qpa8802 Firmware →

Qpa8803 Firmware by Qualcomm

View all CVEs affecting Qpa8803 Firmware →

Qpa8821 Firmware by Qualcomm

View all CVEs affecting Qpa8821 Firmware →

Qpa8842 Firmware by Qualcomm

View all CVEs affecting Qpa8842 Firmware →

Qpm2630 Firmware by Qualcomm

View all CVEs affecting Qpm2630 Firmware →

Qpm5621 Firmware by Qualcomm

View all CVEs affecting Qpm5621 Firmware →

Qpm5658 Firmware by Qualcomm

View all CVEs affecting Qpm5658 Firmware →

Qpm5670 Firmware by Qualcomm

View all CVEs affecting Qpm5670 Firmware →

Qpm5677 Firmware by Qualcomm

View all CVEs affecting Qpm5677 Firmware →

Qpm5679 Firmware by Qualcomm

View all CVEs affecting Qpm5679 Firmware →

Qpm6582 Firmware by Qualcomm

View all CVEs affecting Qpm6582 Firmware →

Qpm6585 Firmware by Qualcomm

View all CVEs affecting Qpm6585 Firmware →

Qpm8820 Firmware by Qualcomm

View all CVEs affecting Qpm8820 Firmware →

Qpm8830 Firmware by Qualcomm

View all CVEs affecting Qpm8830 Firmware →

Qpm8870 Firmware by Qualcomm

View all CVEs affecting Qpm8870 Firmware →

Qpm8895 Firmware by Qualcomm

View all CVEs affecting Qpm8895 Firmware →

Qsw6310 Firmware by Qualcomm

View all CVEs affecting Qsw6310 Firmware →

Qsw8573 Firmware by Qualcomm

View all CVEs affecting Qsw8573 Firmware →

Qsw8574 Firmware by Qualcomm

View all CVEs affecting Qsw8574 Firmware →

Qtc410s Firmware by Qualcomm

View all CVEs affecting Qtc410s Firmware →

Qtc800h Firmware by Qualcomm

View all CVEs affecting Qtc800h Firmware →

Qtc800s Firmware by Qualcomm

View all CVEs affecting Qtc800s Firmware →

Qtc800t Firmware by Qualcomm

View all CVEs affecting Qtc800t Firmware →

Qtc801s Firmware by Qualcomm

View all CVEs affecting Qtc801s Firmware →

Qtm525 Firmware by Qualcomm

View all CVEs affecting Qtm525 Firmware →

Qtm527 Firmware by Qualcomm

View all CVEs affecting Qtm527 Firmware →

Qualcomm215 Firmware by Qualcomm

View all CVEs affecting Qualcomm215 Firmware →

Rgr7640au Firmware by Qualcomm

View all CVEs affecting Rgr7640au Firmware →

Rsw8577 Firmware by Qualcomm

View all CVEs affecting Rsw8577 Firmware →

Sa2150p Firmware by Qualcomm

View all CVEs affecting Sa2150p Firmware →

Sa415m Firmware by Qualcomm

View all CVEs affecting Sa415m Firmware →

Sa515m Firmware by Qualcomm

View all CVEs affecting Sa515m Firmware →

Sa8155 Firmware by Qualcomm

View all CVEs affecting Sa8155 Firmware →

Sa8155p Firmware by Qualcomm

View all CVEs affecting Sa8155p Firmware →

Sc8180x Firmware by Qualcomm

View all CVEs affecting Sc8180x Firmware →

Sd 455 Firmware by Qualcomm

View all CVEs affecting Sd 455 Firmware →

Sd 636 Firmware by Qualcomm

View all CVEs affecting Sd 636 Firmware →

Sd 675 Firmware by Qualcomm

View all CVEs affecting Sd 675 Firmware →

Sd 8c Firmware by Qualcomm

View all CVEs affecting Sd 8c Firmware →

Sd 8cx Firmware by Qualcomm

View all CVEs affecting Sd 8cx Firmware →

Sd205 Firmware by Qualcomm

View all CVEs affecting Sd205 Firmware →

Sd210 Firmware by Qualcomm

View all CVEs affecting Sd210 Firmware →

Sd429 Firmware by Qualcomm

View all CVEs affecting Sd429 Firmware →

Sd439 Firmware by Qualcomm

View all CVEs affecting Sd439 Firmware →

Sd450 Firmware by Qualcomm

View all CVEs affecting Sd450 Firmware →

Sd460 Firmware by Qualcomm

View all CVEs affecting Sd460 Firmware →

Sd632 Firmware by Qualcomm

View all CVEs affecting Sd632 Firmware →

Sd660 Firmware by Qualcomm

View all CVEs affecting Sd660 Firmware →

Sd662 Firmware by Qualcomm

View all CVEs affecting Sd662 Firmware →

Sd665 Firmware by Qualcomm

View all CVEs affecting Sd665 Firmware →

Sd670 Firmware by Qualcomm

View all CVEs affecting Sd670 Firmware →

Sd675 Firmware by Qualcomm

View all CVEs affecting Sd675 Firmware →

Sd678 Firmware by Qualcomm

View all CVEs affecting Sd678 Firmware →

Sd710 Firmware by Qualcomm

View all CVEs affecting Sd710 Firmware →

Sd712 Firmware by Qualcomm

View all CVEs affecting Sd712 Firmware →

Sd720g Firmware by Qualcomm

View all CVEs affecting Sd720g Firmware →

Sd730 Firmware by Qualcomm

View all CVEs affecting Sd730 Firmware →

Sd765 Firmware by Qualcomm

View all CVEs affecting Sd765 Firmware →

Sd765g Firmware by Qualcomm

View all CVEs affecting Sd765g Firmware →

Sd768g Firmware by Qualcomm

View all CVEs affecting Sd768g Firmware →

Sd820 Firmware by Qualcomm

View all CVEs affecting Sd820 Firmware →

Sd821 Firmware by Qualcomm

View all CVEs affecting Sd821 Firmware →

Sd835 Firmware by Qualcomm

View all CVEs affecting Sd835 Firmware →

Sd845 Firmware by Qualcomm

View all CVEs affecting Sd845 Firmware →

Sd850 Firmware by Qualcomm

View all CVEs affecting Sd850 Firmware →

Sd855 Firmware by Qualcomm

View all CVEs affecting Sd855 Firmware →

Sd865 5g Firmware by Qualcomm

View all CVEs affecting Sd865 5g Firmware →

Sd870 Firmware by Qualcomm

View all CVEs affecting Sd870 Firmware →

Sda429w Firmware by Qualcomm

View all CVEs affecting Sda429w Firmware →

Sdm429w Firmware by Qualcomm

View all CVEs affecting Sdm429w Firmware →

Sdm630 Firmware by Qualcomm

View all CVEs affecting Sdm630 Firmware →

Sdr051 Firmware by Qualcomm

View all CVEs affecting Sdr051 Firmware →

Sdr052 Firmware by Qualcomm

View all CVEs affecting Sdr052 Firmware →

Sdr105 Firmware by Qualcomm

View all CVEs affecting Sdr105 Firmware →

Sdr425 Firmware by Qualcomm

View all CVEs affecting Sdr425 Firmware →

Sdr660 Firmware by Qualcomm

View all CVEs affecting Sdr660 Firmware →

Sdr660g Firmware by Qualcomm

View all CVEs affecting Sdr660g Firmware →

Sdr675 Firmware by Qualcomm

View all CVEs affecting Sdr675 Firmware →

Sdr8150 Firmware by Qualcomm

View all CVEs affecting Sdr8150 Firmware →

Sdr8250 Firmware by Qualcomm

View all CVEs affecting Sdr8250 Firmware →

Sdr845 Firmware by Qualcomm

View all CVEs affecting Sdr845 Firmware →

Sdr865 Firmware by Qualcomm

View all CVEs affecting Sdr865 Firmware →

Sdw2500 Firmware by Qualcomm

View all CVEs affecting Sdw2500 Firmware →

Sdw3100 Firmware by Qualcomm

View all CVEs affecting Sdw3100 Firmware →

Sdx20 Firmware by Qualcomm

View all CVEs affecting Sdx20 Firmware →

Sdx24 Firmware by Qualcomm

View all CVEs affecting Sdx24 Firmware →

Sdx50m Firmware by Qualcomm

View all CVEs affecting Sdx50m Firmware →

Sdx55 Firmware by Qualcomm

View all CVEs affecting Sdx55 Firmware →

Sdx55 Firmware by Qualcomm

View all CVEs affecting Sdx55 Firmware →

Sdx55m Firmware by Qualcomm

View all CVEs affecting Sdx55m Firmware →

Sdxr1 Firmware by Qualcomm

View all CVEs affecting Sdxr1 Firmware →

Sdxr2 5g Firmware by Qualcomm

View all CVEs affecting Sdxr2 5g Firmware →

Sm4125 Firmware by Qualcomm

View all CVEs affecting Sm4125 Firmware →

Sm6250 Firmware by Qualcomm

View all CVEs affecting Sm6250 Firmware →

Sm6250p Firmware by Qualcomm

View all CVEs affecting Sm6250p Firmware →

Sm7250p Firmware by Qualcomm

View all CVEs affecting Sm7250p Firmware →

Smb1351 Firmware by Qualcomm

View all CVEs affecting Smb1351 Firmware →

Smb1354 Firmware by Qualcomm

View all CVEs affecting Smb1354 Firmware →

Smb1355 Firmware by Qualcomm

View all CVEs affecting Smb1355 Firmware →

Smb1357 Firmware by Qualcomm

View all CVEs affecting Smb1357 Firmware →

Smb1358 Firmware by Qualcomm

View all CVEs affecting Smb1358 Firmware →

Smb1360 Firmware by Qualcomm

View all CVEs affecting Smb1360 Firmware →

Smb1380 Firmware by Qualcomm

View all CVEs affecting Smb1380 Firmware →

Smb1381 Firmware by Qualcomm

View all CVEs affecting Smb1381 Firmware →

Smb1390 Firmware by Qualcomm

View all CVEs affecting Smb1390 Firmware →

Smb231 Firmware by Qualcomm

View all CVEs affecting Smb231 Firmware →

Smb2351 Firmware by Qualcomm

View all CVEs affecting Smb2351 Firmware →

Smb358 Firmware by Qualcomm

View all CVEs affecting Smb358 Firmware →

Smb358s Firmware by Qualcomm

View all CVEs affecting Smb358s Firmware →

Smr525 Firmware by Qualcomm

View all CVEs affecting Smr525 Firmware →

Smr526 Firmware by Qualcomm

View all CVEs affecting Smr526 Firmware →

Wcd9306 Firmware by Qualcomm

View all CVEs affecting Wcd9306 Firmware →

Wcd9326 Firmware by Qualcomm

View all CVEs affecting Wcd9326 Firmware →

Wcd9330 Firmware by Qualcomm

View all CVEs affecting Wcd9330 Firmware →

Wcd9335 Firmware by Qualcomm

View all CVEs affecting Wcd9335 Firmware →

Wcd9340 Firmware by Qualcomm

View all CVEs affecting Wcd9340 Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

Wcd9360 Firmware by Qualcomm

View all CVEs affecting Wcd9360 Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9371 Firmware by Qualcomm

View all CVEs affecting Wcd9371 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcn3610 Firmware by Qualcomm

View all CVEs affecting Wcn3610 Firmware →

Wcn3615 Firmware by Qualcomm

View all CVEs affecting Wcn3615 Firmware →

Wcn3620 Firmware by Qualcomm

View all CVEs affecting Wcn3620 Firmware →

Wcn3660 Firmware by Qualcomm

View all CVEs affecting Wcn3660 Firmware →

Wcn3660b Firmware by Qualcomm

View all CVEs affecting Wcn3660b Firmware →

Wcn3680 Firmware by Qualcomm

View all CVEs affecting Wcn3680 Firmware →

Wcn3680b Firmware by Qualcomm

View all CVEs affecting Wcn3680b Firmware →

Wcn3910 Firmware by Qualcomm

View all CVEs affecting Wcn3910 Firmware →

Wcn3950 Firmware by Qualcomm

View all CVEs affecting Wcn3950 Firmware →

Wcn3980 Firmware by Qualcomm

View all CVEs affecting Wcn3980 Firmware →

Wcn3988 Firmware by Qualcomm

View all CVEs affecting Wcn3988 Firmware →

Wcn3990 Firmware by Qualcomm

View all CVEs affecting Wcn3990 Firmware →

Wcn3991 Firmware by Qualcomm

View all CVEs affecting Wcn3991 Firmware →

Wcn3998 Firmware by Qualcomm

View all CVEs affecting Wcn3998 Firmware →

Wcn6850 Firmware by Qualcomm

View all CVEs affecting Wcn6850 Firmware →

Wfr1620 Firmware by Qualcomm

View all CVEs affecting Wfr1620 Firmware →

Wgr7640 Firmware by Qualcomm

View all CVEs affecting Wgr7640 Firmware →

Whs9410 Firmware by Qualcomm

View all CVEs affecting Whs9410 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wtr1605 Firmware by Qualcomm

View all CVEs affecting Wtr1605 Firmware →

Wtr1605l Firmware by Qualcomm

View all CVEs affecting Wtr1605l Firmware →

Wtr1625 Firmware by Qualcomm

View all CVEs affecting Wtr1625 Firmware →

Wtr2955 Firmware by Qualcomm

View all CVEs affecting Wtr2955 Firmware →

Wtr2965 Firmware by Qualcomm

View all CVEs affecting Wtr2965 Firmware →

Wtr3905 Firmware by Qualcomm

View all CVEs affecting Wtr3905 Firmware →

Wtr3925 Firmware by Qualcomm

View all CVEs affecting Wtr3925 Firmware →

Wtr3950 Firmware by Qualcomm

View all CVEs affecting Wtr3950 Firmware →

Wtr4605 Firmware by Qualcomm

View all CVEs affecting Wtr4605 Firmware →

Wtr4905 Firmware by Qualcomm

View all CVEs affecting Wtr4905 Firmware →

Wtr5975 Firmware by Qualcomm

View all CVEs affecting Wtr5975 Firmware →

Wtr6955 Firmware by Qualcomm

View all CVEs affecting Wtr6955 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data exfiltration, or persistent backdoor installation.

🟠

Likely Case

Denial of service causing device crashes or reboots, potentially with information disclosure through memory leaks.

🟢

If Mitigated

Limited impact with proper network segmentation and intrusion detection, potentially only causing temporary service disruption.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending specially crafted network packets to vulnerable devices. No public exploit code is known, but the vulnerability is remotely exploitable without authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: March 2021 security updates and later

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for available firmware updates. 2. Apply March 2021 or later security patches from device OEM. 3. For embedded systems, contact Qualcomm for updated drivers/firmware. 4. Reboot device after update.

🔧 Temporary Workarounds

Network filtering

linux

Block or filter ROHC traffic at network perimeter

Copy

iptables -A INPUT -p udp --dport 554 -j DROP # Example ROHC port

Disable ROHC if unused

linux

Disable Robust Header Compression feature if not required

Copy

echo 0 > /proc/sys/net/ipv4/rohc_enabled # Example path, varies by device

🧯 If You Can't Patch

• Segment affected devices in isolated network zones with strict firewall rules
• Implement network intrusion detection to monitor for anomalous ROHC traffic patterns

🔍 How to Verify

Check if Vulnerable:

Copy

Check device firmware version against Qualcomm's March 2021 security bulletin. For Android: Settings > About phone > Android security patch level (should be March 2021 or later).

Check Version:

Copy

For Android: adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Copy

Verify security patch level is March 2021 or later. Check with device manufacturer for specific firmware version that includes the fix.

📡 Detection & Monitoring

Log Indicators:

• Kernel panic logs
• System crash dumps
• Unexpected process termination related to network stack

Network Indicators:

• Unusually large ROHC packets
• Excessive padding in ROHC headers
• Traffic to ROHC ports (typically UDP 554)

SIEM Query:

Copy

source="network" AND (protocol="ROHC" OR port=554) AND packet_size>threshold

📊 Metadata

CVE ID: CVE-2020-11166

CVSS v3 Score: 9.1 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CWE: CWE-125

Published: March 17, 2021

Last Updated: November 21, 2024

🔗 References

• https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin Vendor Advisory
• https://www.qualcomm.com/company/product-security/bulletins/march-2021-bulletin Vendor Advisory

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-11166, you might also want to check these:

CVE-2021-41556 10.0

CVE-2021-41556 is a critical out-of-bounds read vulnerability in Squirrel scripting language that al...

Same vulnerability type (CWE-125)

CVE-2024-22004 10.0

This vulnerability allows attackers with privileged access on Linux non-secure operating systems to ...

Same vulnerability type (CWE-125)

CVE-2021-21777 10.0

CVE-2021-21777 is a critical out-of-bounds read vulnerability in the Ethernet/IP UDP handler of OpEN...

Same vulnerability type (CWE-125)