exploitDog

CVE-2020-3681

Опубликовано: 31 июл. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Authenticated and encrypted payload MMEs can be forged and remotely sent to any HPAV2 system using a jailbreak key recoverable from code.

Ссылки

https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin
Broken Link
https://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin#_cve-2020-3681
Third Party Advisory
https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:qualcomm:-:-:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00353

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-327

Связанные уязвимости

GHSA-xr9p-wqhw-3w78

github

больше 3 лет назад

Authenticated and encrypted payload MMEs can be forged and remotely sent to any HPAV2 system using a jailbreak key recoverable from code.

EPSS

Процентиль: 57%

0.00353

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-327