EUVD-2019-11961

Malware in sbrugna...

EUVD-2020-3532

Malware in sbrugna...

CVE-2020-11178

Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

CVE-2020-11178

Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

Code injection

Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

CVE-2020-11178

CVE-2020-11178 affects Qualcomm Snapdragon automotive/IoT platforms (Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, Mobile, Voice & Music, Wired Infrastructure & Networking). The issue arises when trusted apps overwrite CPZ memory because the TrustZone (TZ) logic only check...

CVE-2019-2319

CVE-2019-2319 affects Qualcomm Snapdragon platforms (Auto, Compute, Connectivity, IoT, Mobile, etc.) where the HLOS may corrupt CPZ page table memory for S1 managed VMs. Root cause is memory corruption in the CPZ page table handling. The CVSSv3.1 vector (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) yield...

CVE-2018-11931

CVE-2018-11931 is listed in the Qualcomm closed-source components section of the 2019 Android security bulletin. The vulnerability is described as improper access to HLOS when transferring memory to CPZ in multiple Snapdragon/SOC families (e.g., MDM/SD series and Snapdragon channels). The CVSS da...