CVE-2021-35100 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-35100 PUBLISHED CVSS 7.5 HIGH

Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

EPSS 0.48% · 64.7th percentile

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.48%

64.7th percentile

Affected Products

Vendor	Product	Versions
qualcomm	sm6250_firmware
qualcomm	qca9377_firmware
qualcomm	qca6696_firmware
qualcomm	apq8064au_firmware
qualcomm	sd730_firmware
qualcomm	qca9367_firmware
qualcomm	apq8009w_firmware
qualcomm	wcn6855_firmware
qualcomm	sda429w_firmware
qualcomm	sd765_firmware
qualcomm	qca6595au_firmware
qualcomm	qcs6490_firmware
qualcomm	qca6574_firmware
qualcomm	wcn3999_firmware
qualcomm	wcn3980_firmware
qualcomm	sdx55m_firmware
qualcomm	wcd9335_firmware
qualcomm	qca6174a_firmware
qualcomm	wcd9340_firmware
qualcomm	sd460_firmware

…and 101 more

Timeline

Apr 5, 2022 CVE Published
Jun 15, 2022 EPSS Score
Aug 2, 2022 EPSS Score
Sep 19, 2022 EPSS Score
Nov 5, 2022 EPSS Score
Dec 23, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 14, 2023 EPSS Score
Jul 1, 2023 EPSS Score
Aug 17, 2023 EPSS Score

References

Open in Interactive Console →