Improper SMMU Configuration in Qualcomm Snapdragon Products
CVE-2021-30346

6.5MEDIUM

Key Information:

Vendor: Qualcomm
Status: Snapdragon Industrial Iot, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure And Networking
Vendor: CVE Published:; 14 June 2022

What is CVE-2021-30346?

A vulnerability exists in Qualcomm's Snapdragon products where improper configuration of the System Memory Management Unit (SMMU) allows unauthorized access to secure resources. This flaw could lead to potential exploitation in Snapdragon Industrial IOT, Mobile, Wearable, and Wired Infrastructure and Networking devices, highlighting the need for vigilance in securing IoT and mobile environments.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking AR8035, QCA9984, QCM2290, QCM4290, QCS2290, QCS405, QCS4290, SD460, SD480, SD662, SD680, SM6375, SW5100, SW5100P, WCD9370, WCD9375, WCD9385, WCN3910, WCN3950, WCN3980, WCN3988, WCN3991, WCN3998, WCN3999, WSA8810, WSA8815, WSA8830, WSA8835

References

https://www.qualcomm.com/company/product-security/bulleti...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jun 14, 2022
Vulnerability Reserved
Apr 7, 2021

JSON

Qualcomm