Unvalidated Prefix Size Leads to Out of Bound Write Vulnerability in Snapdragon Platforms

Unvalidated Prefix Size Leads to Out of Bound Write Vulnerability in Snapdragon Platforms

CVE-2020-11294 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Out of bound write in logger due to prefix size is not validated while prepended to logging string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Learn more about our Industrial Pen Testing.