Firmware Assertion Vulnerability in WLAN Firmware with FILS IE in Snapdragon Compute, Connectivity, Consumer Electronics, Consumer IoT, Industrial IoT, Mobile, Voice & Music, Wired Infrastructure, and Networking

Firmware Assertion Vulnerability in WLAN Firmware with FILS IE in Snapdragon Compute, Connectivity, Consumer Electronics, Consumer IoT, Industrial IoT, Mobile, Voice & Music, Wired Infrastructure, and Networking

CVE-2020-3645 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Firmware will hit assert in WLAN firmware If encrypted data length in FILS IE of reassoc response is more than 528 bytes in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130

Learn more about our Industrial Pen Testing.