High severity7.8NVD Advisory· Published Dec 22, 2020· Updated Jun 17, 2026
CVE-2020-35608
CVE-2020-35608
Description
A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute a shellcode that uses the PACKET_MMAP functionality to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Microsoft/Azure Spheredescription
- Range: 20.07
Patches
Vulnerability mechanics
References
2- talosintelligence.com/vulnerability_reports/TALOS-2020-1134nvdExploitThird Party Advisory
- www.talosintelligence.com/vulnerability_reports/TALOS-2020-1134nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.