CVEs-PoC/2020/CVE-2020-3646.md

### [CVE-2020-3646](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3646)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Compute%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Voice%20%26%20Music%2C%20Snapdragon%20Wearables&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20Video&color=brighgreen)

### Description

u'Buffer overflow seen as the destination buffer size is lesser than the source buffer size in video application' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Bitra, MSM8909W, QCM2150, QCS405, QCS605, Saipan, SC8180X, SDA845, SDM429W, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin

#### Github
- https://github.com/404notf0und/CVE-Flow