Description
Possible buffer overflow due to lack of length check of source and destination buffer before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin
Scores
CVSS v3
6.7
EPSS
0.0006
EPSS Percentile
18.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (50)
qualcomm/aqt1000_firmware
qualcomm/ar8031_firmware
qualcomm/ar8035_firmware
qualcomm/csra6620_firmware
qualcomm/csra6640_firmware
qualcomm/fsm10055_firmware
qualcomm/fsm10056_firmware
qualcomm/qca6390_firmware
qualcomm/qca6391_firmware
qualcomm/qca6420_firmware
... and 40 more
Published
Oct 20, 2021
Tracked Since
Feb 18, 2026