Lucene search

[email protected]CVE-2021-35129

HistoryJun 14, 2022 - 10:15 a.m.

CVE-2021-35129

2022-06-1410:15:00

CWE-120

[email protected]

web.nvd.nist.gov

memory corruption

bt controller

improper length check

snapdragon compute

snapdragon connectivity

snapdragon consumer electronics connectivity

snapdragon industrial iot

snapdragon mobile

snapdragon wired infrastructure

networking

cve-2021-35129

nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

CPENameOperatorVersion
qualcomm:ar8035_firmwarequalcomm ar8035 firmwareeq-
qualcomm:ipq5010_firmwarequalcomm ipq5010 firmwareeq-
qualcomm:ipq5018_firmwarequalcomm ipq5018 firmwareeq-
qualcomm:ipq5028_firmwarequalcomm ipq5028 firmwareeq-
qualcomm:qca2062_firmwarequalcomm qca2062 firmwareeq-
qualcomm:qca2064_firmwarequalcomm qca2064 firmwareeq-
qualcomm:qca2065_firmwarequalcomm qca2065 firmwareeq-
qualcomm:qca2066_firmwarequalcomm qca2066 firmwareeq-
qualcomm:qca6391_firmwarequalcomm qca6391 firmwareeq-
qualcomm:qca8081_firmwarequalcomm qca8081 firmwareeq-

CPE	Name	Operator	Version
qualcomm:ar8035_firmware	qualcomm ar8035 firmware	eq	-
qualcomm:ipq5010_firmware	qualcomm ipq5010 firmware	eq	-
qualcomm:ipq5018_firmware	qualcomm ipq5018 firmware	eq	-
qualcomm:ipq5028_firmware	qualcomm ipq5028 firmware	eq	-
qualcomm:qca2062_firmware	qualcomm qca2062 firmware	eq	-
qualcomm:qca2064_firmware	qualcomm qca2064 firmware	eq	-
qualcomm:qca2065_firmware	qualcomm qca2065 firmware	eq	-
qualcomm:qca2066_firmware	qualcomm qca2066 firmware	eq	-
qualcomm:qca6391_firmware	qualcomm qca6391 firmware	eq	-
qualcomm:qca8081_firmware	qualcomm qca8081 firmware	eq	-

Rows per page:

1-10 of 451

References

www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Social References

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

Related for CVE-2021-35129

prion1