Denial of Service Vulnerability in Snapdragon Auto, Compute, Connectivity, and Mobile due to RRC Connection Establishment Flaw

CVE-2020-11243 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

RRC sends a connection establishment success to NAS even though connection setup validation returns failure and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

Learn more about our Mobile App Penetration Testing.