CVE-2021-35112
HIGHQualcomm APQ8009W Firmware - Incorrect Authorization in Register Configuration
Title source: llmDescription
A user with user level permission can access graphics protected region due to improper access control in register configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin
Scores
CVSS v3
8.4
EPSS
0.0008
EPSS Percentile
24.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-863
Status
published
Products (50)
qualcomm/apq8009w_firmware
qualcomm/aqt1000_firmware
qualcomm/ar8031_firmware
qualcomm/ar8035_firmware
qualcomm/csra6620_firmware
qualcomm/csra6640_firmware
qualcomm/mdm9150_firmware
qualcomm/msm8909w_firmware
qualcomm/qam8295p_firmware
qualcomm/qca6174a_firmware
... and 40 more
Published
Jun 14, 2022
Tracked Since
Feb 18, 2026