Race condition vulnerability in ioctl events leads to use after free in Snapdragon devices

Race condition vulnerability in ioctl events leads to use after free in Snapdragon devices

CVE-2020-11290 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Use after free condition in msm ioctl events due to race between the ioctl register and deregister events in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Learn more about our Industrial Pen Testing.