CVE-2020-11230

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon (affected versions not specified)

Description The issue concerns potential arbitrary memory corruption when the qseecom driver updates ion physical addresses in the buffer, exposing a physical address to user land. This affects various Snapdragon products, including Auto, Compute, Connectivity, Industrial IOT, and Mobile.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.