CVE-2020-11209

Sažetak

Improper authorization in DSP process could allow unauthorized users to downgrade the library versions in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439

Reference

https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin
https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/
https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

22-12-2021 - 20:39

Objavljeno

12-11-2020 - 10:15