CVE-2020-35608

by Fred · 22/12/2020

A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute a shellcode that uses the PACKET_MMAP functionality to trigger this vulnerability.

Date published : 2020-12-22

https://talosintelligence.com/vulnerability_reports/TALOS-2020-1134

https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1134

CVE-2020-35608

Similar

Recent Posts

Categories

CVE-2020-35608

Share this:

Similar

Recent Posts

Categories

Tags