CVE-2021-35119
Last modified
CVE-2021-35119 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. Potential out of Bounds read in FIPS event processing due to improper validation of the length from the firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile. EPSS estimates a 0.13% chance of exploitation in the next 30 days.
Description
Potential out of Bounds read in FIPS event processing due to improper validation of the length from the firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Aqt1000 Firmware | All versions |
| Qualcomm | Ar8035 Firmware | All versions |
| Qualcomm | Csrb31024 Firmware | All versions |
| Qualcomm | Qca6175a Firmware | All versions |
| Qualcomm | Qca6310 Firmware | All versions |
| Qualcomm | Qca6320 Firmware | All versions |
| Qualcomm | Qca6390 Firmware | All versions |
| Qualcomm | Qca6391 Firmware | All versions |
| Qualcomm | Qca6420 Firmware | All versions |
| Qualcomm | Qca6426 Firmware | All versions |
| Qualcomm | Qca6430 Firmware | All versions |
| Qualcomm | Qca6436 Firmware | All versions |
| Qualcomm | Qca6564au Firmware | All versions |
| Qualcomm | Qca6574 Firmware | All versions |
| Qualcomm | Qca6574a Firmware | All versions |
| Qualcomm | Qca6574au Firmware | All versions |
| Qualcomm | Qca6595 Firmware | All versions |
| Qualcomm | Qca6595au Firmware | All versions |
| Qualcomm | Qca6696 Firmware | All versions |
| Qualcomm | Qca8081 Firmware | All versions |
| Qualcomm | Qca8337 Firmware | All versions |
| Qualcomm | Qcm4290 Firmware | All versions |
| Qualcomm | Qcm6490 Firmware | All versions |
| Qualcomm | Qcs4290 Firmware | All versions |
| Qualcomm | Qcs610 Firmware | All versions |
| Qualcomm | Qcs6490 Firmware | All versions |
| Qualcomm | Sa415m Firmware | All versions |
| Qualcomm | Sa515m Firmware | All versions |
| Qualcomm | Sa6155 Firmware | All versions |
| Qualcomm | Sa6155p Firmware | All versions |
| Qualcomm | Sa8155 Firmware | All versions |
| Qualcomm | Sa8155p Firmware | All versions |
| Qualcomm | Sd 8 Gen1 5g Firmware | All versions |
| Qualcomm | Sd460 Firmware | All versions |
| Qualcomm | Sd480 Firmware | All versions |
| Qualcomm | Sd662 Firmware | All versions |
| Qualcomm | Sd680 Firmware | All versions |
| Qualcomm | Sd690 5g Firmware | All versions |
| Qualcomm | Sd750g Firmware | All versions |
| Qualcomm | Sd765 Firmware | All versions |
| Qualcomm | Sd765g Firmware | All versions |
| Qualcomm | Sd768g Firmware | All versions |
| Qualcomm | Sd780g Firmware | All versions |
| Qualcomm | Sd835 Firmware | All versions |
| Qualcomm | Sd855 Firmware | All versions |
| Qualcomm | Sd865 5g Firmware | All versions |
| Qualcomm | Sd870 Firmware | All versions |
| Qualcomm | Sd888 5g Firmware | All versions |
| Qualcomm | Sdx55 Firmware | All versions |
| Qualcomm | Sdx55m Firmware | All versions |
Showing 50 of 83 affected configurations. See NVD for the full list.
References
- https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletinPatch, Vendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletinPatch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-35119?
How severe is CVE-2021-35119?
How do I fix CVE-2021-35119?
Are you affected by CVE-2021-35119?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST