CVE-2020-11179

HIGH

Qualcomm PM8350 - Out-of-bounds Read and Arbitrary Write via Ring Buffer Pointer Overwrite

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-11179. PoCs published by sparrow-labz.

AI-analyzed exploit summary This repository contains a C-based proof-of-concept exploit for CVE-2020-11179, targeting a memory corruption vulnerability in Qualcomm Adreno GPU drivers. The exploit attempts to achieve arbitrary kernel read/write or privilege escalation via a race condition and GPU context manipulation.

Description

Arbitrary read and write to kernel addresses by temporarily overwriting ring buffer pointer and creating a race condition. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Exploits (1)

nomisec WORKING POC 5 stars

by sparrow-labz · poc

https://github.com/sparrow-labz/CVE-2020-11179-Adreno-Qualcomm-GPU

View Code ZIP pw:eip

This repository contains a C-based proof-of-concept exploit for CVE-2020-11179, targeting a memory corruption vulnerability in Qualcomm Adreno GPU drivers. The exploit attempts to achieve arbitrary kernel read/write or privilege escalation via a race condition and GPU context manipulation.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Complex

Reliability

Racy

Target: Qualcomm Adreno GPU driver (Android kernel)

No auth needed

Prerequisites: Physical or local access to a vulnerable Android device with Qualcomm Adreno GPU · Kernel debug symbols or offset calculations for target device

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1211 - Exploitation for Defense Evasion

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Broken Link x_refsource_confirm

https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Scores

CVSS v3 7.0

EPSS 0.0032

EPSS Percentile 23.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-125 CWE-787

Status published

Products (50)

qualcomm/apq8009

qualcomm/apq8009w

qualcomm/apq8017

qualcomm/apq8037

qualcomm/apq8053

qualcomm/apq8064au

qualcomm/apq8096au

qualcomm/aqt1000

qualcomm/ar8031

qualcomm/ar8035

... and 40 more

Published Jan 21, 2021

Tracked Since Feb 18, 2026