Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-30304

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

Published

2021-10-20T07:15:08.737

Last Modified

2024-11-21T06:03:45.270

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

4.9

Weaknesses
  • Type: Primary
    CWE-125
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System qualcomm qca2062_firmware - Yes
Hardware qualcomm qca2062 - No
Operating System qualcomm qca2064_firmware - Yes
Hardware qualcomm qca2064 - No
Operating System qualcomm qca2065_firmware - Yes
Hardware qualcomm qca2065 - No
Operating System qualcomm qca2066_firmware - Yes
Hardware qualcomm qca2066 - No
Operating System qualcomm sc8280xp_firmware - Yes
Hardware qualcomm sc8280xp - No
Operating System qualcomm wcd9380_firmware - Yes
Hardware qualcomm wcd9380 - No
Operating System qualcomm wcd9385_firmware - Yes
Hardware qualcomm wcd9385 - No
Operating System qualcomm wcn6850_firmware - Yes
Hardware qualcomm wcn6850 - No
Operating System qualcomm wcn6851_firmware - Yes
Hardware qualcomm wcn6851 - No
Operating System qualcomm wcn6855_firmware - Yes
Hardware qualcomm wcn6855 - No
Operating System qualcomm wcn6856_firmware - Yes
Hardware qualcomm wcn6856 - No
Operating System qualcomm wsa8830_firmware - Yes
Hardware qualcomm wsa8830 - No
Operating System qualcomm wsa8835_firmware - Yes
Hardware qualcomm wsa8835 - No
References