CVE-2020-27486

Name of the Vulnerable Software and Affected Versions Garmin Forerunner 235 versions prior to 8.20

Description The issue is related to a buffer overflow in the ConnectIQ TVM component. To exploit this, an attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter trusts the string length provided in the data section of the PRG file, allocates memory for the string, and then copies the string into the TVM object using a function similar to strcpy(). This can lead to overwriting heap data if the copy exceeds the allocated string length. A successful exploit allows a ConnectIQ app store application to escape its restricted environment and perform unauthorized activities.

Recommendations For Garmin Forerunner 235 versions prior to 8.20, update to version 8.20 or later to resolve the issue. As a temporary workaround, consider restricting the installation of ConnectIQ applications from untrusted sources to minimize the risk of exploitation.