PT-2020-17360 · Microsoft · Azure Sphere

Claudio Bozzato

Published

2020-12-22

Updated

2020-12-23

CVE-2020-35608

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Azure Sphere version 20.07

Description A code execution issue exists in the signed code execution functionality. A specially crafted AF PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute shellcode that uses the PACKET MMAP functionality to trigger this issue.

Recommendations For Microsoft Azure Sphere version 20.07, consider disabling the use of AF PACKET sockets until a patch is available. As a temporary workaround, restrict access to the PACKET MMAP functionality to minimize the risk of exploitation.

Exploit

Fix

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74

Related Identifiers

CVE-2020-35608

Affected Products

Azure Sphere

PT-2020-17360 · Microsoft · Azure Sphere

CVE-2020-35608

Weakness Enumeration

Related Identifiers

Affected Products

References · 4