Unrated severityNVD Advisory· Published Nov 12, 2020· Updated Aug 4, 2024
CVE-2020-11201
CVE-2020-11201
Description
Arbitrary access to DSP memory due to improper check in loaded library for data received from CPU side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in QCM6125, QCS410, QCS603, QCS605, QCS610, QCS6125, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDA640, SDA845, SDM640, SDM830, SDM845, SDX50M, SDX55, SDX55M, SM6125, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM8150, SM8150P
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Qualcomm, Inc./Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobilev5Range: QCM6125, QCS410, QCS603, QCS605, QCS610, QCS6125, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDA640, SDA845, SDM640, SDM830, SDM845, SDX50M, SDX55, SDX55M, SM6125, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM8150, SM8150P
Patches
Vulnerability mechanics
References
3- blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/mitrex_refsource_MISC
- research.checkpoint.com/2021/pwn2own-qualcomm-dsp/mitrex_refsource_MISC
- www.qualcomm.com/company/product-security/bulletins/november-2020-bulletinmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.