VDB
CVE-2021-35095
CVE-2021-35095
PUBLISHED
CVSS 8.399999618530273 HIGH
Improper serialization of message queue client registration can lead to race condition allowing multiple gunyah message clients to register with same label in Snapdragon Connectivity, Snapdragon Mobile
EPSS 0.11% · 29.4th percentile
Risk Scores
CVSS v3.1
8.399999618530273
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.11%
29.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| qualcomm | wcn6855_firmware | |
| qualcomm | wsa8830_firmware | |
| qualcomm | sdx65_firmware | |
| qualcomm | wcd9380_firmware | |
| qualcomm | ar8035_firmware | |
| qualcomm | sd_8_gen1_5g_firmware | |
| Qualcomm, Inc. | Snapdragon Connectivity, Snapdragon Mobile | * |
| qualcomm | wsa8835_firmware | |
| qualcomm | qca8337_firmware | |
| qualcomm | qca8081_firmware | |
| qualcomm | wcn6856_firmware |
Timeline
- Apr 5, 2022 CVE Published
- Jun 15, 2022 EPSS Score
- Aug 3, 2022 EPSS Score
- Sep 20, 2022 EPSS Score
- Nov 7, 2022 EPSS Score
- Dec 25, 2022 EPSS Score
- Feb 11, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 31, 2023 EPSS Score
- May 18, 2023 EPSS Score
- Jul 5, 2023 EPSS Score
- Aug 22, 2023 EPSS Score