CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
9.0%
Memory corruption in Linux when the file upload API is called with parameters having large buffer.
Vendor | Product | Version | CPE |
---|---|---|---|
qualcomm | fastconnect_6900_firmware | - | cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:* |
qualcomm | fastconnect_6900 | - | cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:* |
qualcomm | fastconnect_7800_firmware | - | cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* |
qualcomm | fastconnect_7800 | - | cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:* |
qualcomm | snapdragon_8_gen_1_firmware | - | cpe:2.3:o:qualcomm:snapdragon_8_gen_1_firmware:-:*:*:*:*:*:*:* |
qualcomm | snapdragon_8_gen_1 | - | cpe:2.3:h:qualcomm:snapdragon_8_gen_1:-:*:*:*:*:*:*:* |
qualcomm | wcd9380_firmware | - | cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* |
qualcomm | wcd9380 | - | cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:* |
qualcomm | wsa8830_firmware | - | cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:* |
qualcomm | wsa8830 | - | cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"platforms": [
"Snapdragon Mobile"
],
"product": "Snapdragon",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "FastConnect 6900"
},
{
"status": "affected",
"version": "FastConnect 7800"
},
{
"status": "affected",
"version": "Snapdragon 8 Gen 1 Mobile Platform"
},
{
"status": "affected",
"version": "WCD9380"
},
{
"status": "affected",
"version": "WSA8830"
},
{
"status": "affected",
"version": "WSA8835"
}
]
}
]