CVE-2021-35134

HIGH

Snapdragon Connectivity/Snapdragon Industrial IOT/Snapdragon Mobile...

Title source: llm

Description

Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur in Boot leading to memory corruption in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

References (1)

[Vendor Advisory] https://www.qualcomm.com/company/product-security/bulletins/august-2022-bulletin

Scores

CVSS v3 8.4

EPSS 0.0012

EPSS Percentile 31.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-131

Status published

Affected Products (30)

qualcomm/qca6391_firmware

qualcomm/qcm6490_firmware

qualcomm/qcs6490_firmware

qualcomm/qsm8350_firmware

qualcomm/sd_8_gen1_5g_firmware

qualcomm/sd778g_firmware

qualcomm/sd780g_firmware

qualcomm/sd888_firmware

qualcomm/sd888_5g_firmware

qualcomm/sm7315_firmware

qualcomm/sm7325p_firmware

qualcomm/sm7450_firmware

qualcomm/sm8475_firmware

qualcomm/sm8475p_firmware

qualcomm/wcd9341_firmware

... and 15 more

Timeline

Published Sep 02, 2022

Tracked Since Feb 18, 2026