CVE-2020-11201

Qualcomm DSP (Video) • Qualcomm chipsets - QCM6125, QCS410, QCS603, QCS605, QCS610, QCS6125, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDA640, SDA845, SDM640, SDM830, SDM845, SDX50M, SDX55, SDX55M, SM6125, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM8150, SM8150P • Untrusted Pointer Dereference
Reported on 15-Mar-20 by Slava Makkaveev
CPR-ID: 2173
Upload Date: 06-May-21

Information

Arbitrary access to DSP memory due to improper check in loaded library for data received from CPU side.

References:
https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/
https://www.qualcomm.com/company/product-security/bulletins/november-2020-security-bulletin

Share this: