← voltar
CVE-2020-35608

CVE-2020-35608

EPSS 4.0%
A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute a shellcode that uses the PACKET_MMAP functionality to trigger this vulnerability.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1134https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1134