CVE-2021-35077 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-35077 PUBLISHED CVSS 8.399999618530273 HIGH

Possible use after free scenario in compute offloads to DSP while multiple calls spawn a dynamic process in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

EPSS 0.09% · 26.3th percentile

Risk Scores

CVSS v3.1

8.399999618530273

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.09%

26.3th percentile

Affected Products

Vendor	Product	Versions
qualcomm	wcd9370_firmware
qualcomm	sd690_5g_firmware
qualcomm	qca6390_firmware
qualcomm	sm6225_firmware
qualcomm	wcn6850_firmware
qualcomm	qrb5165n_firmware
qualcomm	sa6155p_firmware
qualcomm	sa6150p_firmware
qualcomm	wcn6740_firmware
qualcomm	qca6696_firmware
qualcomm	sd_8_gen1_5g_firmware
qualcomm	qca6391_firmware
qualcomm	sd888_firmware
qualcomm	qcm4290_firmware
qualcomm	qca6174a_firmware
qualcomm	qcs6490_firmware
qualcomm	sdx55m_firmware
qualcomm	sa8155p_firmware
qualcomm	sa8195p_firmware
qualcomm	sd662_firmware

…and 52 more

Timeline

Feb 8, 2022 CVE Published
Feb 13, 2022 EPSS Score
Apr 6, 2022 EPSS Score
May 27, 2022 EPSS Score
Jul 19, 2022 EPSS Score
Sep 9, 2022 EPSS Score
Oct 30, 2022 EPSS Score
Dec 21, 2022 EPSS Score
Feb 11, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 4, 2023 EPSS Score
May 25, 2023 EPSS Score

References

Open in Interactive Console →