CVE-2021-35092 | Severity.io

Description

Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to arbitrary address modification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Related CPE's

apq8053_firmware

Vulnerable

apq8096au_firmware

Vulnerable

aqt1000_firmware

Vulnerable

ar8031_firmware

Vulnerable

ar8035_firmware

Vulnerable

csra6620_firmware

Vulnerable

csra6640_firmware

Vulnerable

mdm9150_firmware

Vulnerable

mdm9650_firmware

Vulnerable

msm8953_firmware

Vulnerable

qca6174a_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6420_firmware

Vulnerable

qca6430_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qca6595au_firmware

Vulnerable

qca6696_firmware

Vulnerable

qca8081_firmware

Vulnerable

qca8337_firmware

Vulnerable

qca9377_firmware

Vulnerable

qcs405_firmware

Vulnerable

qcs410_firmware

Vulnerable

qcs605_firmware

Vulnerable

qcs610_firmware

Vulnerable

qrb5165_firmware

Vulnerable

qrb5165m_firmware

Vulnerable

qrb5165n_firmware

Vulnerable

qualcomm215_firmware

Vulnerable

sd_8_gen1_5g_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd690_5g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

sd778g_firmware

Vulnerable

sd780g_firmware

Vulnerable

Vulnerable

sd865_5g_firmware

Vulnerable

Vulnerable

sd888_5g_firmware

Vulnerable

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

Vulnerable

sm7250p_firmware

Vulnerable

sm7325p_firmware

Vulnerable

wcd9326_firmware

Vulnerable

wcd9335_firmware

Vulnerable

wcd9341_firmware

Vulnerable

wcd9360_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3615_firmware

Vulnerable

wcn3660b_firmware

Vulnerable

wcn3680_firmware

Vulnerable

wcn3680b_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3980_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3990_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn6740_firmware

Vulnerable

wcn6750_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6855_firmware

Vulnerable

wcn6856_firmware

Vulnerable

wcn7850_firmware

Vulnerable

wcn7851_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin

PatchVendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin

PatchVendor Advisory

Weaknesses

[email protected]

Primary

CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

6.7 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-06-14T08:15:16.557Z

3 years ago

Last modified

2024-11-21T05:11:52.203Z

1 year ago