CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
12.6%
Memory crash when accessing histogram type KPI input received due to lack of check of histogram definition before accessing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
Vendor | Product | Version | CPE |
---|---|---|---|
qualcomm | csrb31024_firmware | - | cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:* |
qualcomm | csrb31024 | - | cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:* |
qualcomm | pm3003a_firmware | - | cpe:2.3:o:qualcomm:pm3003a_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm3003a | - | cpe:2.3:h:qualcomm:pm3003a:-:*:*:*:*:*:*:* |
qualcomm | pm456_firmware | - | cpe:2.3:o:qualcomm:pm456_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm456 | - | cpe:2.3:h:qualcomm:pm456:-:*:*:*:*:*:*:* |
qualcomm | pm6150_firmware | - | cpe:2.3:o:qualcomm:pm6150_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm6150 | - | cpe:2.3:h:qualcomm:pm6150:-:*:*:*:*:*:*:* |
qualcomm | pm6150a_firmware | - | cpe:2.3:o:qualcomm:pm6150a_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm6150a | - | cpe:2.3:h:qualcomm:pm6150a:-:*:*:*:*:*:*:* |
[
{
"product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "CSRB31024, PM3003A, PM456, PM6150, PM6150A, PM6150L, PM6250, PM6350, PM7150A, PM7150L, PM7250, PM7250B, PM8008, PM8009, PM8150A, PM8150B, PM8150C, PM8150L, PM8250, PM855, PM855B, PM855L, PMI632, PMK8002, PMK8003, PMR525, PMR735A, PMR735B, PMX24, PMX55, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5516, QAT5522, QAT5533, QBT1500, QBT2000, QCA6390, QCA6391, QCA6421, QCA6426, QCA6431, QCA6436, QCA6564AU, QCA6574A, QCA6574AU, QCA6584AU, QCA6595AU, QCA6696, QCA8337, QDM2301, QDM2305, QDM2307, QDM2308, QDM2310, QDM3301, QDM5620, QDM5621, QDM5650, QDM5652, QDM5670, QDM5671, QDM5677, QDM5679, QET4100, QET4101, QET5100, QET6100, QET6110, QFS2530, QFS2580, QLN1021AQ, QLN1031, QLN1036AQ, QLN4640, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5580, QPA5581, QPA6560, QPA8673, QPA8675, QPA8686, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM4650, QPM5620, QPM5621, QPM5657, QPM5658, QPM5670, QPM5677, QPM5679, QPM6582, QPM6585, QPM8820, QPM8830, QPM8870, QPM8895, QSM7250, QTC800H, QTC801S, QTM5 ...[truncated*]"
}
]
}
]
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
12.6%