CVE-2021-35133
MEDIUMQualcomm AR8035 and related firmware - Use-After-Free in synx Driver
Title source: llmDescription
Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin
Scores
CVSS v3
6.7
EPSS
0.0004
EPSS Percentile
13.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (36)
qualcomm/ar8035_firmware
qualcomm/qca6174a_firmware
qualcomm/qca6391_firmware
qualcomm/qca8081_firmware
qualcomm/qca8337_firmware
qualcomm/qca9377_firmware
qualcomm/qcm6490_firmware
qualcomm/qcs6490_firmware
qualcomm/sd480_firmware
qualcomm/sd780g_firmware
... and 26 more
Published
Sep 02, 2022
Tracked Since
Feb 18, 2026