CVEs-PoC/2020/CVE-2020-11205.md

### [CVE-2020-11205](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11205)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Compute%2C%20Snapdragon%20Mobile&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Integer%20Overflow%20or%20Wraparound%20issues%20in%20Bluetooth%20SOC&color=brighgreen)

### Description

u'Possible integer overflow to heap overflow while processing command due to lack of check of packet length received' in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile in QSM8350, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155P, SA8195P, SDX55M, SM8250, SM8350, SM8350P, SXR2130, SXR2130P

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin

#### Github
- https://github.com/TinyNiko/android_bulletin_notes