CVE-2021-30257 | Severity.io

Description

Possible out of bound read or write in VR service due to lack of validation of DSP selection values in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT

Related CPE's

apq8017_firmware

Vulnerable

apq8053_firmware

Vulnerable

aqt1000_firmware

Vulnerable

msm8917_firmware

Vulnerable

msm8953_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6420_firmware

Vulnerable

qca6426_firmware

Vulnerable

qca6430_firmware

Vulnerable

qca6436_firmware

Vulnerable

qcm2290_firmware

Vulnerable

qcm4290_firmware

Vulnerable

qcm6125_firmware

Vulnerable

qcm6490_firmware

Vulnerable

qcs2290_firmware

Vulnerable

qcs4290_firmware

Vulnerable

qcs605_firmware

Vulnerable

qcs6125_firmware

Vulnerable

qcs6490_firmware

Vulnerable

qualcomm215_firmware

Vulnerable

sd_636_firmware

Vulnerable

sd_675_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd690_5g_firmware

Vulnerable

sd720g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

sd778g_firmware

Vulnerable

sd780g_firmware

Vulnerable

Vulnerable

sd865_5g_firmware

Vulnerable

Vulnerable

Vulnerable

sd888_5g_firmware

Vulnerable

sdm630_firmware

Vulnerable

sdx50m_firmware

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

Vulnerable

sdxr2_5g_firmware

Vulnerable

sm4125_firmware

Vulnerable

sm6250_firmware

Vulnerable

sm7250_firmware

Vulnerable

sm7325_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3615_firmware

Vulnerable

wcn3660b_firmware

Vulnerable

wcn3680_firmware

Vulnerable

wcn3680b_firmware

Vulnerable

wcn3910_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn6740_firmware

Vulnerable

wcn6750_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6855_firmware

Vulnerable

wcn6856_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-125CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.4 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-10-20T05:15:08.327Z

4 years ago

Last modified

2024-11-21T05:03:35.290Z

1 year ago