CVE-2020-27483

Name of the Vulnerable Software and Affected Versions Garmin Forerunner 235 versions prior to 8.20

Description The issue is related to an array index error in the ConnectIQ TVM component. To exploit this, an attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter trusts the offset provided for the stack value duplication instruction, DUP, which is unchecked, allowing memory prior to the start of the execution stack to be read and treated as a TVM object. This could lead to the leak of runtime information, such as heap handles or pointers for TVM context variables, and potentially allow for remote code execution by forging a TVM object on the stack.

Recommendations For Garmin Forerunner 235 versions prior to 8.20, update to version 8.20 or later to resolve the issue. As a temporary workaround, consider restricting the installation of ConnectIQ applications from untrusted sources to minimize the risk of exploitation.