CVE-2020-11298

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon (affected versions not specified)

Description The issue allows non-secure clients to change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel while waiting for a response to a callback or listener request. This affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.