CVE-2021-30303 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-30303 PUBLISHED CVSS 7.800000190734863 HIGH

Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

EPSS 0.03% · 10.1th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.03%

10.1th percentile

Affected Products

Vendor	Product	Versions
qualcomm	ar7420_firmware
qualcomm	qcn5024_firmware
qualcomm	qcn5152_firmware
qualcomm	sa415m_firmware
qualcomm	wcn3988_firmware
qualcomm	qca6174a_firmware
qualcomm	wsa8835_firmware
qualcomm	qca6430_firmware
qualcomm	sm8450_firmware
qualcomm	wcd9360_firmware
qualcomm	aqt1000_firmware
qualcomm	ipq8069_firmware
qualcomm	qcn5124_firmware
qualcomm	sd765_firmware
qualcomm	wcd9326_firmware
qualcomm	qcs605_firmware
qualcomm	qcx315_firmware
qualcomm	sdx65_firmware
qualcomm	sd888_firmware
qualcomm	sm7315_firmware

…and 220 more

Timeline

Dec 7, 2021 CVE Published
Jan 3, 2022 EPSS Score
Feb 25, 2022 EPSS Score
Apr 19, 2022 EPSS Score
Jun 11, 2022 EPSS Score
Aug 4, 2022 EPSS Score
Sep 27, 2022 EPSS Score
Nov 19, 2022 EPSS Score
Jan 11, 2023 EPSS Score
Mar 5, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 27, 2023 EPSS Score

References

Open in Interactive Console →