Vulnerabilities > CVE-2020-11309 - Use After Free vulnerability in Qualcomm products

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
qualcomm
CWE-416

Summary

Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Vulnerable Configurations

Part Description Count
OS
Qualcomm
401
Hardware
Qualcomm
401

Common Weakness Enumeration (CWE)