CVE-2021-35091

HIGH

8.4

Description

Possible out of bounds read due to improper typecasting while handling page fault for global memory in Snapdragon Connectivity, Snapdragon Mobile

Details CVE

Score CVSS v3.18.4

SeveriteHIGH

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie6/14/2022

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

qualcomm:sd_8_gen1_5g_firmwarequalcomm:sm8475qualcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcn6855qualcomm:wcn6855_firmwarequalcomm:wcn6856qualcomm:wcn6856_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmware

Faiblesses (CWE)

CWE-704

References

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin(product-security@qualcomm.com)

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.