8.4
CVE-2021-1940
- EPSS 0.02%
- Veröffentlicht 13.07.2021 06:15:08
- Zuletzt bearbeitet 21.11.2024 05:45:34
- Quelle product-security@qualcomm.com
- Teams Watchlist Login
- Unerledigt Login
Use after free can occur due to improper handling of response from firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Qualcomm ≫ Aqt1000 Firmware Version-
Qualcomm ≫ Ar8031 Firmware Version-
Qualcomm ≫ Ar8035 Firmware Version-
Qualcomm ≫ Csra6620 Firmware Version-
Qualcomm ≫ Csra6640 Firmware Version-
Qualcomm ≫ Fsm10055 Firmware Version-
Qualcomm ≫ Fsm10056 Firmware Version-
Qualcomm ≫ Qca6391 Firmware Version-
Qualcomm ≫ Qca6420 Firmware Version-
Qualcomm ≫ Qca6430 Firmware Version-
Qualcomm ≫ Qca6564 Firmware Version-
Qualcomm ≫ Qca6564a Firmware Version-
Qualcomm ≫ Qca6564au Firmware Version-
Qualcomm ≫ Qca6574 Firmware Version-
Qualcomm ≫ Qca6574a Firmware Version-
Qualcomm ≫ Qca6574au Firmware Version-
Qualcomm ≫ Qca6584au Firmware Version-
Qualcomm ≫ Qca6595au Firmware Version-
Qualcomm ≫ Qca6696 Firmware Version-
Qualcomm ≫ Qca8337 Firmware Version-
Qualcomm ≫ Qcm6125 Firmware Version-
Qualcomm ≫ Qcs405 Firmware Version-
Qualcomm ≫ Qcs410 Firmware Version-
Qualcomm ≫ Qcs610 Firmware Version-
Qualcomm ≫ Qcs6125 Firmware Version-
Qualcomm ≫ Sa415m Firmware Version-
Qualcomm ≫ Sa515m Firmware Version-
Qualcomm ≫ Sa6145p Firmware Version-
Qualcomm ≫ Sa6155 Firmware Version-
Qualcomm ≫ Sa6155p Firmware Version-
Qualcomm ≫ Sa8155 Firmware Version-
Qualcomm ≫ Sa8155p Firmware Version-
Qualcomm ≫ Sa8195p Firmware Version-
Qualcomm ≫ Sd 675 Firmware Version-
Qualcomm ≫ Sd 8c Firmware Version-
Qualcomm ≫ Sd 8cx Firmware Version-
Qualcomm ≫ Sd660 Firmware Version-
Qualcomm ≫ Sd665 Firmware Version-
Qualcomm ≫ Sd675 Firmware Version-
Qualcomm ≫ Sd678 Firmware Version-
Qualcomm ≫ Sd720g Firmware Version-
Qualcomm ≫ Sd730 Firmware Version-
Qualcomm ≫ Sd855 Firmware Version-
Qualcomm ≫ Sda429w Firmware Version-
Qualcomm ≫ Sdx50m Firmware Version-
Qualcomm ≫ Sdx55 Firmware Version-
Qualcomm ≫ Sdx55m Firmware Version-
Qualcomm ≫ Sm6250 Firmware Version-
Qualcomm ≫ Sm6250p Firmware Version-
Qualcomm ≫ Wcd9335 Firmware Version-
Qualcomm ≫ Wcd9340 Firmware Version-
Qualcomm ≫ Wcd9341 Firmware Version-
Qualcomm ≫ Wcd9370 Firmware Version-
Qualcomm ≫ Wcd9375 Firmware Version-
Qualcomm ≫ Wcd9380 Firmware Version-
Qualcomm ≫ Wcn3610 Firmware Version-
Qualcomm ≫ Wcn3620 Firmware Version-
Qualcomm ≫ Wcn3660b Firmware Version-
Qualcomm ≫ Wcn3950 Firmware Version-
Qualcomm ≫ Wcn3980 Firmware Version-
Qualcomm ≫ Wcn3988 Firmware Version-
Qualcomm ≫ Wcn3990 Firmware Version-
Qualcomm ≫ Wcn3991 Firmware Version-
Qualcomm ≫ Wcn3998 Firmware Version-
Qualcomm ≫ Wcn3999 Firmware Version-
Qualcomm ≫ Wsa8810 Firmware Version-
Qualcomm ≫ Wsa8815 Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.047 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
| product-security@qualcomm.com | 8.4 | 2.5 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.