Description
User could gain access to secure memory due to incorrect argument into address range validation api used in SDI to capture requested contents in Snapdragon Industrial IOT, Snapdragon Mobile
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin
Scores
CVSS v3
8.4
EPSS
0.0003
EPSS Percentile
9.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (38)
qualcomm/pm660_firmware
qualcomm/pm660a_firmware
qualcomm/pm660l_firmware
qualcomm/pm855a_firmware
qualcomm/pmm855au_firmware
qualcomm/qat3514_firmware
qualcomm/qat3522_firmware
qualcomm/qat3550_firmware
qualcomm/qca6564a_firmware
qualcomm/qca6564au_firmware
... and 28 more
Published
Apr 07, 2021
Tracked Since
Feb 18, 2026