Lucene search

[email protected]CVE-2021-35126

HistoryJun 14, 2022 - 10:15 a.m.

CVE-2021-35126

2022-06-1410:15:00

CWE-129

[email protected]

web.nvd.nist.gov

cve-2021-35126

memory corruption

dsp service

improper validation

input parameters

snapdragon auto

snapdragon compute

snapdragon connectivity

snapdragon industrial iot

snapdragon mobile

nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

CPENameOperatorVersion
qualcomm:qam8295p_firmwarequalcomm qam8295p firmwareeq-
qualcomm:qca6391_firmwarequalcomm qca6391 firmwareeq-
qualcomm:qca6696_firmwarequalcomm qca6696 firmwareeq-
qualcomm:qcm6490_firmwarequalcomm qcm6490 firmwareeq-
qualcomm:qcs6490_firmwarequalcomm qcs6490 firmwareeq-
qualcomm:sa8295p_firmwarequalcomm sa8295p firmwareeq-
qualcomm:sd_8_gen1_5g_firmwarequalcomm sd 8 gen1 5g firmwareeq-
qualcomm:sd_8cx_gen3_firmwarequalcomm sd 8cx gen3 firmwareeq-
qualcomm:sd778g_firmwarequalcomm sd778g firmwareeq-
qualcomm:sd780g_firmwarequalcomm sd780g firmwareeq-

CPE	Name	Operator	Version
qualcomm:qam8295p_firmware	qualcomm qam8295p firmware	eq	-
qualcomm:qca6391_firmware	qualcomm qca6391 firmware	eq	-
qualcomm:qca6696_firmware	qualcomm qca6696 firmware	eq	-
qualcomm:qcm6490_firmware	qualcomm qcm6490 firmware	eq	-
qualcomm:qcs6490_firmware	qualcomm qcs6490 firmware	eq	-
qualcomm:sa8295p_firmware	qualcomm sa8295p firmware	eq	-
qualcomm:sd_8_gen1_5g_firmware	qualcomm sd 8 gen1 5g firmware	eq	-
qualcomm:sd_8cx_gen3_firmware	qualcomm sd 8cx gen3 firmware	eq	-
qualcomm:sd778g_firmware	qualcomm sd778g firmware	eq	-
qualcomm:sd780g_firmware	qualcomm sd780g firmware	eq	-

Rows per page:

1-10 of 261

References

www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Social References

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

Related for CVE-2021-35126

prion1