CVEs-PoC/2020/CVE-2020-11181.md

### [CVE-2020-11181](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11181)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Untrusted%20Pointer%20Dereference%20Issue%20in%20ComputerVision&color=brighgreen)

### Description

Out of bound access issue while handling cvp process control command due to improper validation of buffer pointer received from HLOS in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin

#### Github
- https://github.com/TinyNiko/android_bulletin_notes