CVE-2020-3679

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions (affected versions not specified)

Description The issue concerns a part of the code in QTEE that remains mapped at a known address, including code segments, even after Address Space Layout Randomization is enabled. This affects various Snapdragon products, including Auto, Compute, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wired Infrastructure and Networking, across several chip models such as Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, and SXR2130.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.