{"containers":{"cna":{"affected":[{"product":"Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables","vendor":"Qualcomm, Inc.","versions":[{"status":"affected","version":"APQ8009, APQ8009W, APQ8017, APQ8053, APQ8064AU, APQ8076, APQ8096AU, AR8151, CSR6030, MDM9206, MDM9230, MDM9250, MDM9330, MDM9607, MDM9626, MDM9628, MDM9630, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8937, MSM8996AU, PM660, PM660A, PM660L, PM8004, PM8005, PM8909, PM8916, PM8937, PM8952, PM8953, PM8956, PM8996, PM8998, PMD9607, PMD9635, PMD9645, PMD9655, PMI8937, PMI8952, PMI8994, PMI8996, PMI8998, PMK8001, PMM8996AU, PMX20, QAT3514, QAT3522, QAT3550, QBT1000, QBT1500, QCA6174, QCA6174A, QCA6310, QCA6320, QCA6564A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584, QCA6584AU, QCA9367, QCA9377, QET4100, QET4101, QET4200AQ, QFE1035, QFE1040, QFE1045, QFE2340, QFE2550, QFE3100, QFE3320, QFE3335, QFE3345, QLN1021AQ, QLN1030, QLN1031, QLN1036AQ, QPA4340, QPA4360, QPA5460, QSW8573, QTC800H, QTC800S, QTC800T, RGR7640AU, RSW8577, SD 636, SD205, SD210, SD660, SD820, SD821, SD835, SDM630, SDR660, SDW2500, SDW3100, SDX20, SDX20M, SMB1350, SMB1351, SMB1357, SMB1358, SMB1360, SMB1380, SMB231, SMB358S, WCD9306,  ...[truncated*]"}]}],"descriptions":[{"lang":"en","value":"An Untrusted Pointer Dereference can occur while doing USB control transfers, if multiple requests of different standard request categories like device, interface & endpoint are made together. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables"}],"problemTypes":[{"descriptions":[{"description":"Untrusted Pointer Dereference in Wired Connectivity","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2021-02-22T06:26:05.000Z","orgId":"2cfc7d3e-20d3-47ac-8db7-1b7285aff15f","shortName":"qualcomm"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin"}],"x_ConverterErrors":{"version_name":{"error":"version_name too long. Use array of versions to record more than one version.","message":"Truncated!"}},"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"product-security@qualcomm.com","ID":"CVE-2020-11286","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables","version":{"version_data":[{"version_value":"APQ8009, APQ8009W, APQ8017, APQ8053, APQ8064AU, APQ8076, APQ8096AU, AR8151, CSR6030, MDM9206, MDM9230, MDM9250, MDM9330, MDM9607, MDM9626, MDM9628, MDM9630, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8937, MSM8996AU, PM660, PM660A, PM660L, PM8004, PM8005, PM8909, PM8916, PM8937, PM8952, PM8953, PM8956, PM8996, PM8998, PMD9607, PMD9635, PMD9645, PMD9655, PMI8937, PMI8952, PMI8994, PMI8996, PMI8998, PMK8001, PMM8996AU, PMX20, QAT3514, QAT3522, QAT3550, QBT1000, QBT1500, QCA6174, QCA6174A, QCA6310, QCA6320, QCA6564A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584, QCA6584AU, QCA9367, QCA9377, QET4100, QET4101, QET4200AQ, QFE1035, QFE1040, QFE1045, QFE2340, QFE2550, QFE3100, QFE3320, QFE3335, QFE3345, QLN1021AQ, QLN1030, QLN1031, QLN1036AQ, QPA4340, QPA4360, QPA5460, QSW8573, QTC800H, QTC800S, QTC800T, RGR7640AU, RSW8577, SD 636, SD205, SD210, SD660, SD820, SD821, SD835, SDM630, SDR660, SDW2500, SDW3100, SDX20, SDX20M, SMB1350, SMB1351, SMB1357, SMB1358, SMB1360, SMB1380, SMB231, SMB358S, WCD9306, WCD9326, WCD9330, WCD9335, WCD9340, WCD9341, WCN3610, WCN3615, WCN3620, WCN3660B, WCN3680B, WCN3980, WCN3990, WGR7640, WSA8810, WSA8815, WTR2955, WTR2965, WTR3905, WTR3925, WTR3950, WTR4905, WTR5975"}]}}]},"vendor_name":"Qualcomm, Inc."}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An Untrusted Pointer Dereference can occur while doing USB control transfers, if multiple requests of different standard request categories like device, interface & endpoint are made together. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables"}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Untrusted Pointer Dereference in Wired Connectivity"}]}]},"references":{"reference_data":[{"name":"https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin","refsource":"CONFIRM","url":"https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T11:28:13.808Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin"}]}]},"cveMetadata":{"assignerOrgId":"2cfc7d3e-20d3-47ac-8db7-1b7285aff15f","assignerShortName":"qualcomm","cveId":"CVE-2020-11286","datePublished":"2021-02-22T06:26:05.000Z","dateReserved":"2020-03-31T00:00:00.000Z","dateUpdated":"2024-08-04T11:28:13.808Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}