CVE-2021-35093
MEDIUMQualcomm CSR8510 A10 and CSR8811 A12 Firmware - Denial of Service via Oversized LMP Packet
Title source: llmDescription
Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin
Scores
CVSS v3
6.5
EPSS
0.0008
EPSS Percentile
22.8%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-787
Status
published
Products (2)
qualcomm/csr8510_a10_firmware
qualcomm/csr8811_a12_firmware
Published
Jan 03, 2022
Tracked Since
Feb 18, 2026