CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
30.6%
Possible race condition during async fastrpc session after sending RPC message due to the fastrpc ctx gets free during async session in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile
Vendor | Product | Version | CPE |
---|---|---|---|
qualcomm | pm3003a_firmware | - | cpe:2.3:o:qualcomm:pm3003a_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm3003a | - | cpe:2.3:h:qualcomm:pm3003a:-:*:*:*:*:*:*:* |
qualcomm | pm4250_firmware | - | cpe:2.3:o:qualcomm:pm4250_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm4250 | - | cpe:2.3:h:qualcomm:pm4250:-:*:*:*:*:*:*:* |
qualcomm | pm6125_firmware | - | cpe:2.3:o:qualcomm:pm6125_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm6125 | - | cpe:2.3:h:qualcomm:pm6125:-:*:*:*:*:*:*:* |
qualcomm | pm6150a_firmware | - | cpe:2.3:o:qualcomm:pm6150a_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm6150a | - | cpe:2.3:h:qualcomm:pm6150a:-:*:*:*:*:*:*:* |
qualcomm | pm6150l_firmware | - | cpe:2.3:o:qualcomm:pm6150l_firmware:-:*:*:*:*:*:*:* |
qualcomm | pm6150l | - | cpe:2.3:h:qualcomm:pm6150l:-:*:*:*:*:*:*:* |
[
{
"product": "Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "PM3003A, PM4250, PM6125, PM6150A, PM6150L, PM6350, PM7150A, PM7150L, PM7250, PM7250B, PM7350C, PM8008, PM8009, PM8150A, PM8150B, PM8150C, PM8150L, PM8250, PM8350, PM8350B, PM8350BH, PM8350BHS, PM8350C, PMI632, PMK7350, PMK8002, PMK8003, PMK8350, PMR525, PMR735A, PMR735B, PMX55, QAT3514, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5516, QAT5522, QAT5533, QAT5568, QBT2000, QCA6390, QCA6391, QCA6426, QCM4290, QCS4290, QDM2307, QDM2308, QDM2310, QDM3301, QDM3302, QDM4643, QDM4650, QDM5579, QDM5620, QDM5621, QDM5650, QDM5652, QDM5670, QDM5671, QDM5677, QDM5679, QET4101, QET5100, QET5100M, QET6100, QET6110, QFS2530, QFS2580, QFS2608, QFS2630, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5461, QPA5580, QPA5581, QPA6560, QPA8673, QPA8686, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM4621, QPM4630, QPM4640, QPM4641, QPM4650, QPM5620, QPM5621, QPM5641, QPM5657, QPM5658, QPM5670, QPM5677, QPM5679, QPM5870, QPM5875, QPM6585, QPM6621, QPM6670, QPM8820, QPM8870, QPM8895, QSM7250, QTM525, ...[truncated*]"
}
]
}
]
More
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
30.6%