CVE-2020-11123

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions APQ8009 through SDX55M

Description The issue concerns an information disclosure in the Gatekeeper TrustZone implementation. This vulnerability allows the throttling mechanism, designed to prevent brute force attempts at guessing a user's lock-screen password, to be bypassed by performing standard Gatekeeper operations.

Recommendations For Qualcomm Snapdragon versions APQ8009 through SDX55M, as a temporary workaround, consider restricting access to the Gatekeeper operations until a patch is available. Additionally, avoid using the lock-screen password feature in a manner that could be exploited by brute force attempts. At the moment, there is no information about a newer version that contains a fix for this vulnerability.