CVE-2020-11284
Published: 07 May 2021
Summary
CVE-2020-11284 is a high-severity Improper Locking (CWE-667) vulnerability in Qualcomm Aqt1000 Firmware. Its CVSS base score is 8.4 (High).
Operationally, ranked at the 7.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2020-3638
Vulnerability details
Locked memory can be unlocked and modified by non secure boot loader through improper system call sequence making the memory region untrusted source of input for secure boot loader in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon…
more
Wired Infrastructure and Networking
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.