Lucene search

QualcommCVE-2021-30342

HistoryJun 14, 2022 - 10:15 a.m.

CVE-2021-30342

2022-06-1410:15:14

CWE-367

qualcomm

web.nvd.nist.gov

128

cve-2021-30342

integrity check

race condition

pdcp

rrc

snapdragon auto

snapdragon compute

snapdragon consumer iot

snapdragon industrial iot

snapdragon voice & music

snapdragon wearables

nvd

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

47.7%

JSON

Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

Affected configurations

Nvd

Node

qualcommapq8009w_firmwareMatch-

AND

qualcommapq8009wMatch-

Node

qualcommapq8017_firmwareMatch-

AND

qualcommapq8017Match-

Node

qualcommapq8096au_firmwareMatch-

AND

qualcommapq8096auMatch-

Node

qualcommaqt1000_firmwareMatch-

AND

qualcommaqt1000Match-

Node

qualcommcsrb31024_firmwareMatch-

AND

qualcommcsrb31024Match-

Node

qualcommfsm10055_firmwareMatch-

AND

qualcommfsm10055Match-

Node

qualcommfsm10056_firmwareMatch-

AND

qualcommfsm10056Match-

Node

qualcommmdm8207_firmwareMatch-

AND

qualcommmdm8207Match-

Node

qualcommmdm9150_firmwareMatch-

AND

qualcommmdm9150Match-

Node

qualcommmdm9205_firmwareMatch-

AND

qualcommmdm9205Match-

Node

qualcommmdm9206_firmwareMatch-

AND

qualcommmdm9206Match-

Node

qualcommmdm9207_firmwareMatch-

AND

qualcommmdm9207Match-

Node

qualcommmdm9250_firmwareMatch-

AND

qualcommmdm9250Match-

Node

qualcommmdm9607_firmwareMatch-

AND

qualcommmdm9607Match-

Node

qualcommmdm9628_firmwareMatch-

AND

qualcommmdm9628Match-

Node

qualcommmdm9640_firmwareMatch-

AND

qualcommmdm9640Match-

Node

qualcommmdm9650_firmwareMatch-

AND

qualcommmdm9650Match-

Node

qualcommmdm9655_firmwareMatch-

AND

qualcommmdm9655Match-

Node

qualcommmsm8909w_firmwareMatch-

AND

qualcommmsm8909wMatch-

Node

qualcommmsm8996au_firmwareMatch-

AND

qualcommmsm8996auMatch-

Node

qualcommqca4004_firmwareMatch-

AND

qualcommqca4004Match-

Node

qualcommqca6174a_firmwareMatch-

AND

qualcommqca6174aMatch-

Node

qualcommqca6420_firmwareMatch-

AND

qualcommqca6420Match-

Node

qualcommqca6430_firmwareMatch-

AND

qualcommqca6430Match-

Node

qualcommqca6564a_firmwareMatch-

AND

qualcommqca6564aMatch-

Node

qualcommqca6564au_firmwareMatch-

AND

qualcommqca6564auMatch-

Node

qualcommqca6574_firmwareMatch-

AND

qualcommqca6574Match-

Node

qualcommqca6574a_firmwareMatch-

AND

qualcommqca6574aMatch-

Node

qualcommqca6574au_firmwareMatch-

AND

qualcommqca6574auMatch-

Node

qualcommqca6584_firmwareMatch-

AND

qualcommqca6584Match-

Node

qualcommqca6584au_firmwareMatch-

AND

qualcommqca6584auMatch-

Node

qualcommqca6595au_firmwareMatch-

AND

qualcommqca6595auMatch-

Node

qualcommqca6696_firmwareMatch-

AND

qualcommqca6696Match-

Node

qualcommqca9367_firmwareMatch-

AND

qualcommqca9367Match-

Node

qualcommqca9377_firmwareMatch-

AND

qualcommqca9377Match-

Node

qualcommqcm2290_firmwareMatch-

AND

qualcommqcm2290Match-

Node

qualcommqcm4290_firmwareMatch-

AND

qualcommqcm4290Match-

Node

qualcommqcm6125_firmwareMatch-

AND

qualcommqcm6125Match-

Node

qualcommqcs2290_firmwareMatch-

AND

qualcommqcs2290Match-

Node

qualcommqcs410_firmwareMatch-

AND

qualcommqcs410Match-

Node

qualcommqcs4290_firmwareMatch-

AND

qualcommqcs4290Match-

Node

qualcommqcs610_firmwareMatch-

AND

qualcommqcs610Match-

Node

qualcommqcs6125_firmwareMatch-

AND

qualcommqcs6125Match-

Node

qualcommqsw8573_firmwareMatch-

AND

qualcommqsw8573Match-

Node

qualcommsa415m_firmwareMatch-

AND

qualcommsa415mMatch-

Node

qualcommsa6145p_firmwareMatch-

AND

qualcommsa6145pMatch-

Node

qualcommsa6150p_firmwareMatch-

AND

qualcommsa6150pMatch-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8145p_firmwareMatch-

AND

qualcommsa8145pMatch-

Node

qualcommsa8150p_firmwareMatch-

AND

qualcommsa8150pMatch-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

Node

qualcommsd_675_firmwareMatch-

AND

qualcommsd_675Match-

Node

qualcommsd_8cx_gen2_firmwareMatch-

AND

qualcommsd_8cx_gen2Match-

Node

qualcommsd205_firmwareMatch-

AND

qualcommsd205Match-

Node

qualcommsd210_firmwareMatch-

AND

qualcommsd210Match-

Node

qualcommsd429_firmwareMatch-

AND

qualcommsd429Match-

Node

qualcommsd439_firmwareMatch-

AND

qualcommsd439Match-

Node

qualcommsd460_firmwareMatch-

AND

qualcommsd460Match-

Node

qualcommsd660_firmwareMatch-

AND

qualcommsd660Match-

Node

qualcommsd662_firmwareMatch-

AND

qualcommsd662Match-

Node

qualcommsd665_firmwareMatch-

AND

qualcommsd665Match-

Node

qualcommsd675_firmwareMatch-

AND

qualcommsd675Match-

Node

qualcommsd678_firmwareMatch-

AND

qualcommsd678Match-

Node

qualcommsd680_firmwareMatch-

AND

qualcommsd680Match-

Node

qualcommsd720g_firmwareMatch-

AND

qualcommsd720gMatch-

Node

qualcommsd730_firmwareMatch-

AND

qualcommsd730Match-

Node

qualcommsd7c_firmwareMatch-

AND

qualcommsd7cMatch-

Node

qualcommsd850_firmwareMatch-

AND

qualcommsd850Match-

Node

qualcommsd855_firmwareMatch-

AND

qualcommsd855Match-

Node

qualcommsda429w_firmwareMatch-

AND

qualcommsda429wMatch-

Node

qualcommsdm429w_firmwareMatch-

AND

qualcommsdm429wMatch-

Node

qualcommsdw2500_firmwareMatch-

AND

qualcommsdw2500Match-

Node

qualcommsdx12_firmwareMatch-

AND

qualcommsdx12Match-

Node

qualcommsdx20_firmwareMatch-

AND

qualcommsdx20Match-

Node

qualcommsdx24_firmwareMatch-

AND

qualcommsdx24Match-

Node

qualcommsdxr1_firmwareMatch-

AND

qualcommsdxr1Match-

Node

qualcommsm6250_firmwareMatch-

AND

qualcommsm6250Match-

Node

qualcommsm6250p_firmwareMatch-

AND

qualcommsm6250pMatch-

Node

qualcommsw5100_firmwareMatch-

AND

qualcommsw5100Match-

Node

qualcommsw5100p_firmwareMatch-

AND

qualcommsw5100pMatch-

Node

qualcommwcd9306_firmwareMatch-

AND

qualcommwcd9306Match-

Node

qualcommwcd9330_firmwareMatch-

AND

qualcommwcd9330Match-

Node

qualcommwcd9370_firmwareMatch-

AND

qualcommwcd9370Match-

Node

qualcommwcd9375_firmwareMatch-

AND

qualcommwcd9375Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcn3610_firmwareMatch-

AND

qualcommwcn3610Match-

Node

qualcommwcn3620_firmwareMatch-

AND

qualcommwcn3620Match-

Node

qualcommwcn3910_firmwareMatch-

AND

qualcommwcn3910Match-

Node

qualcommwcn3950_firmwareMatch-

AND

qualcommwcn3950Match-

Node

qualcommwcn3988_firmwareMatch-

AND

qualcommwcn3988Match-

Node

qualcommwcn3991_firmwareMatch-

AND

qualcommwcn3991Match-

Node

qualcommwcn3998_firmwareMatch-

AND

qualcommwcn3998Match-

Node

qualcommwsa8830_firmwareMatch-

AND

qualcommwsa8830Match-

Node

qualcommwsa8835_firmwareMatch-

AND

qualcommwsa8835Match-

VendorProductVersionCPE
qualcommapq8009w_firmware-cpe:2.3:o:qualcomm:apq8009w_firmware:-:*:*:*:*:*:*:*
qualcommapq8009w-cpe:2.3:h:qualcomm:apq8009w:-:*:*:*:*:*:*:*
qualcommapq8017_firmware-cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*
qualcommapq8017-cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*
qualcommapq8096au_firmware-cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*
qualcommapq8096au-cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*
qualcommaqt1000_firmware-cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*
qualcommaqt1000-cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*
qualcommcsrb31024_firmware-cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:*
qualcommcsrb31024-cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	apq8009w_firmware	-	cpe:2.3:o:qualcomm:apq8009w_firmware:-:::::::*
qualcomm	apq8009w	-	cpe:2.3:h:qualcomm:apq8009w:-:::::::*
qualcomm	apq8017_firmware	-	cpe:2.3:o:qualcomm:apq8017_firmware:-:::::::*
qualcomm	apq8017	-	cpe:2.3:h:qualcomm:apq8017:-:::::::*
qualcomm	apq8096au_firmware	-	cpe:2.3:o:qualcomm:apq8096au_firmware:-:::::::*
qualcomm	apq8096au	-	cpe:2.3:h:qualcomm:apq8096au:-:::::::*
qualcomm	aqt1000_firmware	-	cpe:2.3:o:qualcomm:aqt1000_firmware:-:::::::*
qualcomm	aqt1000	-	cpe:2.3:h:qualcomm:aqt1000:-:::::::*
qualcomm	csrb31024_firmware	-	cpe:2.3:o:qualcomm:csrb31024_firmware:-:::::::*
qualcomm	csrb31024	-	cpe:2.3:h:qualcomm:csrb31024:-:::::::*

Rows per page:

1-10 of 1901

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "APQ8009W, APQ8017, APQ8096AU, AQT1000, CSRB31024, FSM10055, FSM10056, MDM8207, MDM9150, MDM9205, MDM9206, MDM9207, MDM9250, MDM9607, MDM9628, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA4004, QCA6174A, QCA6420, QCA6430, QCA6564A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584, QCA6584AU, QCA6595AU, QCA6696, QCA9367, QCA9377, QCM2290, QCM4290, QCM6125, QCS2290, QCS410, QCS4290, QCS610, QCS6125, QSW8573, SA415M, SA6145P, SA6150P, SA6155P, SA8145P, SA8150P, SA8155P, SA8195P, SD 675, SD 8cx Gen2, SD205, SD210, SD429, SD439, SD460, SD660, SD662, SD665, SD675, SD678, SD680, SD720G, SD730, SD7c, SD850, SD855, SDA429W, SDM429W, SDW2500, SDX12, SDX20, SDX24, SDXR1, SM6250, SM6250P, SW5100, SW5100P, WCD9306, WCD9330, WCD9370, WCD9375, WCD9380, WCN3610, WCN3620, WCN3910, WCN3950, WCN3988, WCN3991, WCN3998, WSA8830, WSA8835"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Social References

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

47.7%

JSON

Related for CVE-2021-30342