CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
12.6%
Possible memory corruption in BSI module due to improper validation of parameter count in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile
Vendor | Product | Version | CPE |
---|---|---|---|
qualcomm | aqt1000_firmware | - | cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:* |
qualcomm | aqt1000 | - | cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:* |
qualcomm | csrb31024_firmware | - | cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:* |
qualcomm | csrb31024 | - | cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:* |
qualcomm | pm7150a_firmware | - | cpe:2.3:o:qualcomm:pm7150a_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm7150a | - | cpe:2.3:h:qualcomm:pm7150a:-:*:*:*:*:*:*:* |
qualcomm | pm7150l_firmware | - | cpe:2.3:o:qualcomm:pm7150l_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm7150l | - | cpe:2.3:h:qualcomm:pm7150l:-:*:*:*:*:*:*:* |
qualcomm | pm7250_firmware | - | cpe:2.3:o:qualcomm:pm7250_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm7250 | - | cpe:2.3:h:qualcomm:pm7250:-:*:*:*:*:*:*:* |
[
{
"product": "Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "AQT1000, CSRB31024, PM7150A, PM7150L, PM7250, PM7250B, PM8004, PM8008, PM855, PM855B, PM855L, PM855P, PMK8002, PMX24, PMX50, PMX55, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5522, QAT5533, QBT2000, QCA6391, QCA6564AU, QCA6574A, QCA6574AU, QCA6584AU, QCA6595AU, QCA6696, QCA8337, QDM2301, QDM2305, QDM3301, QDM5620, QDM5621, QDM5650, QDM5652, QDM5670, QDM5671, QDM5677, QDM5679, QET4101, QET5100, QET6110, QLN1021AQ, QLN1031, QLN1036AQ, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5580, QPA6560, QPA8673, QPA8686, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM5621, QPM5658, QPM5670, QPM5677, QPM5679, QPM6582, QPM6585, QPM8830, QPM8895, QTC801S, QTM525, QTM527, SA415M, SD765, SD765G, SD768G, SDR051, SDR052, SDR8150, SDR865, SDX50M, SDX55, SM7250P, SMB1355, SMB1390, SMR525, SMR526, WCD9341, WCD9380, WCD9385, WCN3991, WCN3998, WSA8810, WSA8815"
}
]
}
]
More
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
12.6%