← back
CVE-2020-11209

CVE-2020-11209

EPSS 1.6%
Improper authorization in DSP process could allow unauthorized users to downgrade the library versions in SD820, SD821, SD820, QCS603, QCS605, SDA855, SA6155P, SA6145P, SA6155, SA6155P, SD855, SD 675, SD660, SD429, SD439
Affected products
Qualcomm, Inc. · Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin