u'Lack of handling unexpected control messages while encryption was in progress can terminate the connection and thus leading to a DoS' in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, APQ8076, MDM9640, MDM9650, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, QCA6174A, QCA9886, QCM2150, QM215, SDM429, SDM439, SDM450, SDM632
Conclusion & alert: CVE-2020-11157 is rated Moderate Risk (41.5/100): CVSS High severity, with low exploitation likelihood (EPSS 0.41%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.16% | 0.41% | +0.25% |
| 2 | 2025-03-17 | 0.09% | 0.16% | +0.07% |
| 3 | 2023-03-07 | — | 0.09% | — |
Full EPSS history (7 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 7.5 | 3.1 | HIGH |
|
3.9 | 3.6 | [email protected] |
| 5.0 | 2.0 | MEDIUM |
|
10.0 | 2.9 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| qualcomm | apq8053_firmware | — | cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq8076_firmware | — | cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9640_firmware | — | cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9650_firmware | — | cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8905_firmware | — | cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8917_firmware | — | cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8937_firmware | — | cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8940_firmware | — | cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8953_firmware | — | cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6174a_firmware | — | cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca9886_firmware | — | cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm2150_firmware | — | cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qm215_firmware | — | cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm429_firmware | — | cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm439_firmware | — | cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm450_firmware | — | cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm632_firmware | — | cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin | Broken Link |