Skip to main content

Improper Restriction of Power Consumption


Severity High
Score 7.5/10


An issue was discovered on Samsung mobile devices with Q(10.0) and R(11.0) (Qualcomm SM8250 chipsets) software. They allows attackers to cause a denial of service (unlock failure) by triggering a power-shortage incident that causes a false-positive attack detection. The Samsung ID is SVE-2020-19678 (December 2020).

  • LOW
  • NONE
  • NONE
  • NONE
  • NONE
  • HIGH

CWE-920 - Improper Restriction of Power Consumption

The software operates in an environment in which power is a limited resource that cannot be automatically replenished, but the software does not properly restrict the amount of power that its operation consumes.


Advisory Timeline

  • Published