Buffer Overflow Vulnerability in Snapdragon Products by Qualcomm
CVE-2021-35081
Key Information:
Summary
A buffer overflow vulnerability was identified in Qualcomm’s Snapdragon product suite, stemming from improper validation of SSID lengths received from beacons or probe responses during Independent Basic Service Set (IBSS) sessions. Exploitation of this flaw could lead to unauthorized access and manipulation of the device, potentially compromising user data and device security. It is crucial for affected users to apply available patches to mitigate this risk.
Affected Version(s)
Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music AQT1000, AR8035, QCA6390, QCA6391, QCA6564, QCA6564AU, QCA6574A, QCA8081, QCA8337, QCM2290, QCM4290, QCM6125, QCM6490, QCN7605, QCN7606, QCS2290, QCS4290, QCS610, QCS6125, QCS6490, QRB5165, QRB5165M, QRB5165N, SA6145P, SA6150P, SA6155P, SA8145P, SA8150P, SA8155P, SA8195P, SD460, SD480, SD662, SD690 5G, SD750G, SD765, SD765G, SD768G, SD778G, SD780G, SD855, SD865 5G, SD870, SD888 5G, SDX55, SDX55M, SDX65, SDXR1, SM6375, SM7250P, SM7325P, WCD9326, WCD9341, WCD9370, WCD9375, WCD9380, WCD9385, WCN3910, WCN3950, WCN3980, WCN3988, WCN3991, WCN3998, WCN6740, WCN6750, WCN6850, WCN6851, WCN6855, WCN6856, WSA8810, WSA8815, WSA8830, WSA8835
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved