CVE-2021-35078 | Severity.io

Description

Possible memory leak due to improper validation of certificate chain length while parsing server certificate chain in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Related CPE's

aqt1000_firmware

Vulnerable

ar8035_firmware

Vulnerable

csrb31024_firmware

Vulnerable

qca6174a_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6420_firmware

Vulnerable

qca6421_firmware

Vulnerable

qca6426_firmware

Vulnerable

qca6430_firmware

Vulnerable

qca6431_firmware

Vulnerable

qca6436_firmware

Vulnerable

qca6564au_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qca6595au_firmware

Vulnerable

qca6696_firmware

Vulnerable

qca8081_firmware

Vulnerable

qca8337_firmware

Vulnerable

qca9377_firmware

Vulnerable

qcm2290_firmware

Vulnerable

qcm4290_firmware

Vulnerable

qcm6125_firmware

Vulnerable

qcm6490_firmware

Vulnerable

qcs2290_firmware

Vulnerable

qcs410_firmware

Vulnerable

qcs4290_firmware

Vulnerable

qcs603_firmware

Vulnerable

qcs605_firmware

Vulnerable

qcs610_firmware

Vulnerable

qcs6125_firmware

Vulnerable

qcs6490_firmware

Vulnerable

sa415m_firmware

Vulnerable

sa515m_firmware

Vulnerable

sc8180x\+sdx55_firmware

Vulnerable

sd_675_firmware

Vulnerable

sd_8_gen1_5g_firmware

Vulnerable

sd_8cx_firmware

Vulnerable

sd_8cx_gen2_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd690_5g_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd720g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

sd778g_firmware

Vulnerable

sd780g_firmware

Vulnerable

Vulnerable

Vulnerable

sd865_5g_firmware

Vulnerable

Vulnerable

Vulnerable

sd888_5g_firmware

Vulnerable

Vulnerable

sdx50m_firmware

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

Vulnerable

Vulnerable

sdxr2_5g_firmware

Vulnerable

sm4125_firmware

Vulnerable

sm6250_firmware

Vulnerable

sm6250p_firmware

Vulnerable

sm7250p_firmware

Vulnerable

sm7315_firmware

Vulnerable

sm7325p_firmware

Vulnerable

sw5100_firmware

Vulnerable

sw5100p_firmware

Vulnerable

wcd9326_firmware

Vulnerable

wcd9335_firmware

Vulnerable

wcd9340_firmware

Vulnerable

wcd9341_firmware

Vulnerable

wcd9360_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9371_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3910_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3980_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3990_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn6740_firmware

Vulnerable

wcn6750_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6855_firmware

Vulnerable

wcn6856_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-401

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-06-14T08:15:15.887Z

3 years ago

Last modified

2024-11-21T05:11:49.410Z

1 year ago