CVE-2021-30343

Description

Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Related CPE's

oqualcommar8035_firmware-*******

hqualcommar8035-*******

oqualcommqca6390_firmware-*******

hqualcommqca6390-*******

oqualcommqca6391_firmware-*******

hqualcommqca6391-*******

oqualcommqca6426_firmware-*******

hqualcommqca6426-*******

oqualcommqca6436_firmware-*******

hqualcommqca6436-*******

References

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

AccessComplexity

MEDIUM

ConfidentialityImpact

COMPLETE

AvailabilityImpact

NONE

IntegrityImpact

NONE

BaseScore

7.099999904632568

VectorString

AV:N/AC:M/Au:N/C:C/I:N/A:N

Version

2.0

AccessVector

NETWORK

Authentication

NONE

Created by Yello
About Severity.io