CVE-2021-1975 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-1975 PUBLISHED CVSS 10 CRITICAL

Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

EPSS 0.33% · 55.3th percentile

Risk Scores

CVSS v2.0

10

EPSS Score

0.33%

55.3th percentile

Affected Products

Vendor	Product	Versions
qualcomm	sd870_firmware
qualcomm	sd850_firmware
qualcomm	sd460_firmware
qualcomm	sd678_firmware
qualcomm	qca8337_firmware
qualcomm	qca6574au_firmware
qualcomm	mdm8207_firmware
qualcomm	sd821_firmware
qualcomm	ar6003_firmware
qualcomm	mdm9206_firmware
qualcomm	mdm9230_firmware
qualcomm	sd_455_firmware
qualcomm	wcn3910_firmware
qualcomm	wcn6850_firmware
qualcomm	mdm9310_firmware
qualcomm	sm7250_firmware
qualcomm	qca6595_firmware
qualcomm	qca6426_firmware
qualcomm	sdxr1_firmware
qualcomm	qcx315_firmware

…and 161 more

Timeline

Nov 1, 2021 CVE Published
Nov 12, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 26, 2022 EPSS Score
Jun 20, 2022 EPSS Score
Aug 14, 2022 EPSS Score
Oct 8, 2022 EPSS Score
Dec 2, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Mar 22, 2023 EPSS Score

References

Open in Interactive Console →