CVE-2021-30304
Last modified
CVE-2021-30304 is a critical-severity vulnerability rated 9.1/10 on the CVSS scale. Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity. EPSS estimates a 0.59% chance of exploitation in the next 30 days.
Description
Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Qca2062 Firmware | All versions |
| Qualcomm | Qca2064 Firmware | All versions |
| Qualcomm | Qca2065 Firmware | All versions |
| Qualcomm | Qca2066 Firmware | All versions |
| Qualcomm | Sc8280xp Firmware | All versions |
| Qualcomm | Wcd9380 Firmware | All versions |
| Qualcomm | Wcd9385 Firmware | All versions |
| Qualcomm | Wcn6850 Firmware | All versions |
| Qualcomm | Wcn6851 Firmware | All versions |
| Qualcomm | Wcn6855 Firmware | All versions |
| Qualcomm | Wcn6856 Firmware | All versions |
| Qualcomm | Wsa8830 Firmware | All versions |
| Qualcomm | Wsa8835 Firmware | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-30304?
How severe is CVE-2021-30304?
How do I fix CVE-2021-30304?
Are you affected by CVE-2021-30304?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST