Lucene search

[email protected]CVE-2021-30342

HistoryJun 14, 2022 - 10:15 a.m.

CVE-2021-30342

2022-06-1410:15:00

CWE-367

[email protected]

web.nvd.nist.gov

115

cve-2021-30342

integrity check

race condition

pdcp

rrc

snapdragon auto

snapdragon compute

snapdragon consumer iot

snapdragon industrial iot

snapdragon voice & music

snapdragon wearables

nvd

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

46.8%

JSON

Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

CPENameOperatorVersion
qualcomm:apq8009w_firmwarequalcomm apq8009w firmwareeq-
qualcomm:apq8017_firmwarequalcomm apq8017 firmwareeq-
qualcomm:apq8096au_firmwarequalcomm apq8096au firmwareeq-
qualcomm:aqt1000_firmwarequalcomm aqt1000 firmwareeq-
qualcomm:csrb31024_firmwarequalcomm csrb31024 firmwareeq-
qualcomm:fsm10055_firmwarequalcomm fsm10055 firmwareeq-
qualcomm:fsm10056_firmwarequalcomm fsm10056 firmwareeq-
qualcomm:mdm8207_firmwarequalcomm mdm8207 firmwareeq-
qualcomm:mdm9150_firmwarequalcomm mdm9150 firmwareeq-
qualcomm:mdm9205_firmwarequalcomm mdm9205 firmwareeq-

CPE	Name	Operator	Version
qualcomm:apq8009w_firmware	qualcomm apq8009w firmware	eq	-
qualcomm:apq8017_firmware	qualcomm apq8017 firmware	eq	-
qualcomm:apq8096au_firmware	qualcomm apq8096au firmware	eq	-
qualcomm:aqt1000_firmware	qualcomm aqt1000 firmware	eq	-
qualcomm:csrb31024_firmware	qualcomm csrb31024 firmware	eq	-
qualcomm:fsm10055_firmware	qualcomm fsm10055 firmware	eq	-
qualcomm:fsm10056_firmware	qualcomm fsm10056 firmware	eq	-
qualcomm:mdm8207_firmware	qualcomm mdm8207 firmware	eq	-
qualcomm:mdm9150_firmware	qualcomm mdm9150 firmware	eq	-
qualcomm:mdm9205_firmware	qualcomm mdm9205 firmware	eq	-

Rows per page:

1-10 of 951

References

www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Social References

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

46.8%

JSON

Related for CVE-2021-30342

prion1