PT-2021-9285 · Qualcomm · Snapdragon Mobile+2

Published

2021-02-22

Updated

2021-07-21

CVE-2020-11277

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile (affected versions not specified)

Description A potential issue exists due to a possible race condition during an async fastrpc session. This occurs after sending an RPC message, as the fastrpc context may be freed during the async session.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

CVE-2020-11277

Affected Products

Snapdragon Compute

Snapdragon Industrial Iot

Snapdragon Mobile

PT-2021-9285 · Qualcomm · Snapdragon Mobile+2

CVE-2020-11277

Weakness Enumeration

Related Identifiers

Affected Products

References · 2