CVE-2021-35134

HIGH

Snapdragon Connectivity/Snapdragon Industrial IOT/Snapdragon Mobile...

Title source: llm

Description

Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur in Boot leading to memory corruption in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

References (1)

[Vendor Advisory] https://www.qualcomm.com/company/product-security/bulletins/august-2022-bulletin

Scores

CVSS v3 8.4

EPSS 0.0012

EPSS Percentile 30.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-131

Status published

Products (30)

qualcomm/qca6391_firmware

qualcomm/qcm6490_firmware

qualcomm/qcs6490_firmware

qualcomm/qsm8350_firmware

qualcomm/sd778g_firmware

qualcomm/sd780g_firmware

qualcomm/sd888_5g_firmware

qualcomm/sd888_firmware

qualcomm/sd_8_gen1_5g_firmware

qualcomm/sm7315_firmware

... and 20 more

Published Sep 02, 2022

Tracked Since Feb 18, 2026