CVE-2020-11237

Q: What is the severity of CVE-2020-11237?

CVE-2020-11237 has a CVSS score of 8.4 (HIGH). CVE-2020-11237 is a memory corruption vulnerability in Qualcomm Snapdragon chipsets where lack of validation of histogram definition data before accessing it can cause system crashes. This affects automotive, compute, connectivity, and mobile devices using vulnerable Snapdragon components. Attackers could potentially exploit this to cause denial of service or execute arbitrary code.

8.4 HIGH

Denial of Service

📋 TL;DR

CVE-2020-11237 is a memory corruption vulnerability in Qualcomm Snapdragon chipsets where lack of validation of histogram definition data before accessing it can cause system crashes. This affects automotive, compute, connectivity, and mobile devices using vulnerable Snapdragon components. Attackers could potentially exploit this to cause denial of service or execute arbitrary code.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Mobile

Versions: Specific chipset versions not detailed in bulletin; affected by certain firmware versions

Operating Systems: Android, Linux-based automotive/embedded systems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with vulnerable Qualcomm chipset firmware; exact models depend on OEM implementation

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation

🟠

Likely Case

Denial of service through system crashes or reboots, potentially disrupting device functionality

🟢

If Mitigated

Limited impact with proper input validation and memory protections in place

🌐 Internet-Facing: MEDIUM - Requires specific input to vulnerable components, but could be triggered remotely in some configurations

🏢 Internal Only: MEDIUM - Could be exploited through malicious apps or compromised internal systems

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires sending specially crafted input to vulnerable histogram processing components

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm April 2021 security bulletin for specific chipset firmware updates

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for security updates 2. Apply Qualcomm-provided firmware patches 3. Update device operating system 4. Reboot device after patching

🔧 Temporary Workarounds

Input validation enhancement

all

Implement additional input validation for histogram data processing

Not applicable - requires code changes

Memory protection

linux

Enable ASLR and other memory protection mechanisms

echo 2 > /proc/sys/kernel/randomize_va_space

🧯 If You Can't Patch

Isolate affected devices from untrusted networks
Implement strict application whitelisting to prevent malicious apps

🔍 How to Verify

Check if Vulnerable:

Check device chipset version and firmware against Qualcomm security bulletin

Check Version:

cat /proc/cpuinfo | grep -i qualcomm

Verify Fix Applied:

Verify firmware version has been updated to patched version from manufacturer

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
Unexpected process crashes
Memory access violation errors

Network Indicators:

Unusual histogram data requests to vulnerable services

SIEM Query:

source="kernel" AND ("panic" OR "segfault" OR "access violation") AND process="*histogram*"

📊 Metadata

CVE ID: CVE-2020-11237

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-20

Published: April 7, 2021

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Csrb31024 Firmware by Qualcomm

Pm3003a Firmware by Qualcomm

Pm456 Firmware by Qualcomm

Pm6150 Firmware by Qualcomm

Pm6150a Firmware by Qualcomm

Pm6150l Firmware by Qualcomm

Pm6250 Firmware by Qualcomm

Pm6350 Firmware by Qualcomm

Pm7150a Firmware by Qualcomm

Pm7150l Firmware by Qualcomm

Pm7250 Firmware by Qualcomm

Pm7250b Firmware by Qualcomm

Pm8008 Firmware by Qualcomm

Pm8009 Firmware by Qualcomm

Pm8150a Firmware by Qualcomm

Pm8150b Firmware by Qualcomm

Pm8150c Firmware by Qualcomm

Pm8150l Firmware by Qualcomm

Pm8250 Firmware by Qualcomm

Pm855 Firmware by Qualcomm

Pm855b Firmware by Qualcomm

Pm855l Firmware by Qualcomm

Pmi632 Firmware by Qualcomm

Pmk8002 Firmware by Qualcomm

Pmk8003 Firmware by Qualcomm

Pmr525 Firmware by Qualcomm

Pmr735a Firmware by Qualcomm

Pmr735b Firmware by Qualcomm

Pmx24 Firmware by Qualcomm

Pmx55 Firmware by Qualcomm

Qat3516 Firmware by Qualcomm

Qat3518 Firmware by Qualcomm

Qat3519 Firmware by Qualcomm

Qat3555 Firmware by Qualcomm

Qat5515 Firmware by Qualcomm

Qat5516 Firmware by Qualcomm

Qat5522 Firmware by Qualcomm

Qat5533 Firmware by Qualcomm

Qbt1500 Firmware by Qualcomm

Qbt2000 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6421 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6431 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qdm2301 Firmware by Qualcomm

Qdm2305 Firmware by Qualcomm

Qdm2307 Firmware by Qualcomm

Qdm2308 Firmware by Qualcomm

Qdm2310 Firmware by Qualcomm

Qdm3301 Firmware by Qualcomm

Qdm5620 Firmware by Qualcomm

Qdm5621 Firmware by Qualcomm

Qdm5650 Firmware by Qualcomm

Qdm5652 Firmware by Qualcomm

Qdm5670 Firmware by Qualcomm

Qdm5671 Firmware by Qualcomm

Qdm5677 Firmware by Qualcomm

Qdm5679 Firmware by Qualcomm

Qet4100 Firmware by Qualcomm

Qet4101 Firmware by Qualcomm

Qet5100 Firmware by Qualcomm

Qet6100 Firmware by Qualcomm

Qet6110 Firmware by Qualcomm

Qfs2530 Firmware by Qualcomm

Qfs2580 Firmware by Qualcomm

Qln1021aq Firmware by Qualcomm

Qln1031 Firmware by Qualcomm

Qln1036aq Firmware by Qualcomm