CVE-2021-1894 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-1894 PUBLISHED CVSS 7.099999904632568 HIGH

Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

EPSS 0.03% · 9.9th percentile

Risk Scores

CVSS v3.1

7.099999904632568

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS Score

0.03%

9.9th percentile

Affected Products

Vendor	Product	Versions
qualcomm	sm8450_firmware
qualcomm	sm6250p_firmware
qualcomm	qca6564a_firmware
qualcomm	sd678_firmware
qualcomm	qca4004_firmware
qualcomm	sa8540p_firmware
qualcomm	qcm2290_firmware
qualcomm	sd865_5g_firmware
qualcomm	qcs410_firmware
qualcomm	wsa8835_firmware
qualcomm	qca8081_firmware
qualcomm	sd662_firmware
qualcomm	sm6375_firmware
qualcomm	sa6145p_firmware
qualcomm	qrb5165_firmware
qualcomm	sd460_firmware
qualcomm	wcd9340_firmware
qualcomm	csrb31024_firmware
qualcomm	qca6574au_firmware
qualcomm	qcs8155_firmware

…and 98 more

Timeline

Dec 7, 2021 CVE Published
Jan 3, 2022 EPSS Score
Feb 25, 2022 EPSS Score
Apr 19, 2022 EPSS Score
Jun 11, 2022 EPSS Score
Aug 4, 2022 EPSS Score
Sep 27, 2022 EPSS Score
Nov 19, 2022 EPSS Score
Jan 11, 2023 EPSS Score
Mar 5, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 27, 2023 EPSS Score

References

Open in Interactive Console →