Vulnerability: Out of Bound Write in TZ Command Handler in Multiple Snapdragon Platforms

Vulnerability: Out of Bound Write in TZ Command Handler in Multiple Snapdragon Platforms

CVE-2020-11289 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Learn more about our Industrial Pen Testing.