CVE-2020-11277

Description

Possible race condition during async fastrpc session after sending RPC message due to the fastrpc ctx gets free during async session in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile

Affected Software
References

There are no affected software configurations available.

https://www.qualcomm.com/company/product-security/bulletins/february-2021-bulletin

Severity: High

CVE: CVE-2020-11277
Published: Feb 22, 2021
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 7.4
AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

CWE-362
CWE-416

CVE-2020-11277

Description

Details

CVSS v3

CVSS v2

CWEs