CVE-2021-30338

Description

Improper input validation in TrustZone memory transfer interface can lead to information disclosure in Snapdragon Compute

Related CPE's

o qualcomm sd850_firmware -*******

h qualcomm sd850 -*******

o qualcomm sdxr1_firmware -*******

h qualcomm sdxr1 -*******

References

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

AccessComplexity	LOW
ConfidentialityImpact	COMPLETE
AvailabilityImpact	NONE
IntegrityImpact	NONE
BaseScore	4.900000095367432
VectorString	AV:L/AC:L/Au:N/C:C/I:N/A:N
Version	2.0
AccessVector	LOCAL
Authentication	NONE

Created by Yello

About Severity.io