CVE-2021-30288 | Severity.io

Description

Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Related CPE's

apq8009_firmware

Vulnerable

apq8053_firmware

Vulnerable

apq8096au_firmware

Vulnerable

aqt1000_firmware

Vulnerable

ar8031_firmware

Vulnerable

ar8035_firmware

Vulnerable

csr8811_firmware

Vulnerable

csra6620_firmware

Vulnerable

csra6640_firmware

Vulnerable

csrb31024_firmware

Vulnerable

ipq5010_firmware

Vulnerable

ipq5018_firmware

Vulnerable

ipq5028_firmware

Vulnerable

ipq6000_firmware

Vulnerable

ipq6005_firmware

Vulnerable

ipq6010_firmware

Vulnerable

ipq6018_firmware

Vulnerable

ipq6028_firmware

Vulnerable

ipq8070_firmware

Vulnerable

ipq8070a_firmware

Vulnerable

ipq8071_firmware

Vulnerable

ipq8071a_firmware

Vulnerable

ipq8072_firmware

Vulnerable

ipq8072a_firmware

Vulnerable

ipq8074_firmware

Vulnerable

ipq8074a_firmware

Vulnerable

ipq8076_firmware

Vulnerable

ipq8076a_firmware

Vulnerable

ipq8078_firmware

Vulnerable

ipq8078a_firmware

Vulnerable

ipq8173_firmware

Vulnerable

ipq8174_firmware

Vulnerable

msm8996au_firmware

Vulnerable

pmp8074_firmware

Vulnerable

qca1023_firmware

Vulnerable

qca1062_firmware

Vulnerable

qca1064_firmware

Vulnerable

qca10901_firmware

Vulnerable

qca2062_firmware

Vulnerable

qca2064_firmware

Vulnerable

qca2065_firmware

Vulnerable

qca2066_firmware

Vulnerable

qca4010_firmware

Vulnerable

qca4020_firmware

Vulnerable

qca4024_firmware

Vulnerable

qca6174a_firmware

Vulnerable

qca6310_firmware

Vulnerable

qca6335_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6420_firmware

Vulnerable

qca6421_firmware

Vulnerable

qca6426_firmware

Vulnerable

qca6428_firmware

Vulnerable

qca6430_firmware

Vulnerable

qca6431_firmware

Vulnerable

qca6436_firmware

Vulnerable

qca6438_firmware

Vulnerable

qca6564au_firmware

Vulnerable

qca6574_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qca6584au_firmware

Vulnerable

qca6595au_firmware

Vulnerable

qca6694_firmware

Vulnerable

qca6696_firmware

Vulnerable

qca8072_firmware

Vulnerable

qca8075_firmware

Vulnerable

qca8081_firmware

Vulnerable

qca9369_firmware

Vulnerable

qca9377_firmware

Vulnerable

qca9379_firmware

Vulnerable

qca9888_firmware

Vulnerable

qca9889_firmware

Vulnerable

qca9984_firmware

Vulnerable

qcm2290_firmware

Vulnerable

qcm4290_firmware

Vulnerable

qcm6125_firmware

Vulnerable

qcm6490_firmware

Vulnerable

qcn5021_firmware

Vulnerable

qcn5022_firmware

Vulnerable

qcn5024_firmware

Vulnerable

qcn5052_firmware

Vulnerable

qcn5054_firmware

Vulnerable

qcn5064_firmware

Vulnerable

qcn5121_firmware

Vulnerable

qcn5122_firmware

Vulnerable

qcn5124_firmware

Vulnerable

qcn5152_firmware

Vulnerable

qcn5154_firmware

Vulnerable

qcn5164_firmware

Vulnerable

qcn5550_firmware

Vulnerable

qcn6023_firmware

Vulnerable

qcn6024_firmware

Vulnerable

qcn6122_firmware

Vulnerable

qcn7605_firmware

Vulnerable

qcn7606_firmware

Vulnerable

qcn9000_firmware

Vulnerable

qcn9022_firmware

Vulnerable

qcn9024_firmware

Vulnerable

qcn9070_firmware

Vulnerable

qcn9072_firmware

Vulnerable

qcn9074_firmware

Vulnerable

qcn9100_firmware

Vulnerable

qcs2290_firmware

Vulnerable

qcs405_firmware

Vulnerable

qcs410_firmware

Vulnerable

qcs4290_firmware

Vulnerable

qcs605_firmware

Vulnerable

qcs610_firmware

Vulnerable

qcs6125_firmware

Vulnerable

qcs6490_firmware

Vulnerable

qrb5165_firmware

Vulnerable

qsm8350_firmware

Vulnerable

sa8155_firmware

Vulnerable

sa8155p_firmware

Vulnerable

sc8180x\+sdx55_firmware

Vulnerable

sc8280xp_firmware

Vulnerable

sd_675_firmware

Vulnerable

Vulnerable

sd_8cx_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd690_5g_firmware

Vulnerable

Vulnerable

sd720g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

sd778g_firmware

Vulnerable

sd780g_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd865_5g_firmware

Vulnerable

Vulnerable

Vulnerable

sd888_5g_firmware

Vulnerable

sdm830_firmware

Vulnerable

Vulnerable

sdx20m_firmware

Vulnerable

Vulnerable

sdx50m_firmware

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

Vulnerable

sdxr2_5g_firmware

Vulnerable

sm4125_firmware

Vulnerable

sm6250_firmware

Vulnerable

sm6250p_firmware

Vulnerable

sm7250_firmware

Vulnerable

sm7325_firmware

Vulnerable

wcd9326_firmware

Vulnerable

wcd9335_firmware

Vulnerable

wcd9340_firmware

Vulnerable

wcd9341_firmware

Vulnerable

wcd9360_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9371_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3610_firmware

Vulnerable

wcn3615_firmware

Vulnerable

wcn3660b_firmware

Vulnerable

wcn3680b_firmware

Vulnerable

wcn3910_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3980_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3990_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn3999_firmware

Vulnerable

wcn6740_firmware

Vulnerable

wcn6750_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6855_firmware

Vulnerable

wcn6856_firmware

Vulnerable

whs9410_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.4 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-10-20T05:15:08.447Z

4 years ago

Last modified

2024-11-21T05:03:42.240Z

1 year ago