← back
CVE-2020-11284

CVE-2020-11284

CVSS 8.4 HIGHEPSS 0.2%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.4EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
07 May 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Locked memory can be unlocked and modified by non secure boot loader through improper system call sequence making the memory region untrusted source of input for secure boot loader in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H