CVE-2021-35134

EPSS 0.08%
Veröffentlicht 02.09.2022 12:15:09
Zuletzt bearbeitet 21.11.2024 06:12:00
Quelle product-security@qualcomm.com
Teams Watchlist Login
Unerledigt Login

Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur in Boot leading to memory corruption in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Qca6391 Firmware Version-

Qualcomm ≫ Qca6391 Version-

Qualcomm ≫ Qcm6490 Firmware Version-

Qualcomm ≫ Qcm6490 Version-

Qualcomm ≫ Qcs6490 Firmware Version-

Qualcomm ≫ Qcs6490 Version-

Qualcomm ≫ Qsm8350 Firmware Version-

Qualcomm ≫ Qsm8350 Version-

Qualcomm ≫ Sd 8 Gen1 5g Firmware Version-

Qualcomm ≫ Sm8475 Version-

Qualcomm ≫ Sd778g Firmware Version-

Qualcomm ≫ Sd778g Version-

Qualcomm ≫ Sd780g Firmware Version-

Qualcomm ≫ Sd780g Version-

Qualcomm ≫ Sd888 Firmware Version-

Qualcomm ≫ Sd888 Version-

Qualcomm ≫ Sd888 5g Firmware Version-

Qualcomm ≫ Sd888 5g Version-

Qualcomm ≫ Sm7315 Firmware Version-

Qualcomm ≫ Sm7315 Version-

Qualcomm ≫ Sm7325p Firmware Version-

Qualcomm ≫ Sm7325p Version-

Qualcomm ≫ Sm7450 Firmware Version-

Qualcomm ≫ Sm7450 Version-

Qualcomm ≫ Sm8475 Firmware Version-

Qualcomm ≫ Sm8475 Version-

Qualcomm ≫ Sm8475p Firmware Version-

Qualcomm ≫ Sm8475p Version-

Qualcomm ≫ Wcd9341 Firmware Version-

Qualcomm ≫ Wcd9341 Version-

Qualcomm ≫ Wcd9370 Firmware Version-

Qualcomm ≫ Wcd9370 Version-

Qualcomm ≫ Wcd9375 Firmware Version-

Qualcomm ≫ Wcd9375 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcn6740 Firmware Version-

Qualcomm ≫ Wcn6740 Version-

Qualcomm ≫ Wcn6750 Firmware Version-

Qualcomm ≫ Wcn6750 Version-

Qualcomm ≫ Wcn6850 Firmware Version-

Qualcomm ≫ Wcn6850 Version-

Qualcomm ≫ Wcn6851 Firmware Version-

Qualcomm ≫ Wcn6851 Version-

Qualcomm ≫ Wcn6855 Firmware Version-

Qualcomm ≫ Wcn6855 Version-

Qualcomm ≫ Wcn6856 Firmware Version-

Qualcomm ≫ Wcn6856 Version-

Qualcomm ≫ Wcn7850 Firmware Version-

Qualcomm ≫ Wcn7850 Version-

Qualcomm ≫ Wcn7851 Firmware Version-

Qualcomm ≫ Wcn7851 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8832 Firmware Version-

Qualcomm ≫ Wsa8832 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.238

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.4	2.5	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
product-security@qualcomm.com	8.4	2.5	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-131 Incorrect Calculation of Buffer Size

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

https://www.qualcomm.com/company/product-security/bulletins/august-2022-bulletin

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-35134

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-35134

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-35134

EUVD