CVE-2021-1961 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
qualcomm	CNA	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 83%

Affected Products (NVD)

Vendor	Product	Version
qualcomm	apq8009_firmware	-
qualcomm	apq8053_firmware	-
qualcomm	apq8096au_firmware	-
qualcomm	aqt1000_firmware	-
qualcomm	ar8031_firmware	-
qualcomm	ar8035_firmware	-
qualcomm	csra6620_firmware	-
qualcomm	csra6640_firmware	-
qualcomm	fsm10055_firmware	-
qualcomm	fsm10056_firmware	-
qualcomm	mdm9150_firmware	-
qualcomm	mdm9206_firmware	-
qualcomm	mdm9640_firmware	-
qualcomm	mdm9650_firmware	-
qualcomm	msm8953_firmware	-
qualcomm	msm8996au_firmware	-
qualcomm	qca6174a_firmware	-
qualcomm	qca6390_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qca6420_firmware	-
qualcomm	qca6421_firmware	-
qualcomm	qca6426_firmware	-
qualcomm	qca6430_firmware	-
qualcomm	qca6431_firmware	-
qualcomm	qca6436_firmware	-
qualcomm	qca6564a_firmware	-
qualcomm	qca6564au_firmware	-
qualcomm	qca6574_firmware	-
qualcomm	qca6574a_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6584au_firmware	-
qualcomm	qca6595_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qca8337_firmware	-
qualcomm	qca9367_firmware	-
qualcomm	qca9377_firmware	-
qualcomm	qcm6125_firmware	-
qualcomm	qcs405_firmware	-
qualcomm	qcs410_firmware	-
qualcomm	qcs605_firmware	-
qualcomm	qcs610_firmware	-
qualcomm	qcs6125_firmware	-
qualcomm	qrb5165_firmware	-
qualcomm	qsm8250_firmware	-
qualcomm	qualcomm215_firmware	-
qualcomm	sa6145p_firmware	-
qualcomm	sa6150p_firmware	-
qualcomm	sa6155_firmware	-
qualcomm	sa6155p_firmware	-
qualcomm	sa8145p_firmware	-
qualcomm	sa8150p_firmware	-
qualcomm	sa8155_firmware	-
qualcomm	sa8155p_firmware	-
qualcomm	sa8195p_firmware	-
qualcomm	sd_8c_firmware	-
qualcomm	sd_8cx_firmware	-
qualcomm	sd205_firmware	-
qualcomm	sd210_firmware	-
qualcomm	sd460_firmware	-
qualcomm	sd480_firmware	-
qualcomm	sd662_firmware	-
qualcomm	sd665_firmware	-
qualcomm	sd690_5g_firmware	-
qualcomm	sd750g_firmware	-
qualcomm	sd765_firmware	-
qualcomm	sd765g_firmware	-
qualcomm	sd768g_firmware	-
qualcomm	sd778g_firmware	-
qualcomm	sd780g_firmware	-
qualcomm	sd855_firmware	-
qualcomm	sd865_5g_firmware	-
qualcomm	sd870_firmware	-
qualcomm	sd888_5g_firmware	-
qualcomm	sda429w_firmware	-
qualcomm	sdx12_firmware	-
qualcomm	sdx55_firmware	-
qualcomm	sdx55m_firmware	-
qualcomm	sdxr2_5g_firmware	-
qualcomm	sm7250_firmware	-
qualcomm	sm7325_firmware	-
qualcomm	wcd9326_firmware	-
qualcomm	wcd9330_firmware	-
qualcomm	wcd9335_firmware	-
qualcomm	wcd9340_firmware	-
qualcomm	wcd9341_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcn3610_firmware	-
qualcomm	wcn3615_firmware	-
qualcomm	wcn3620_firmware	-
qualcomm	wcn3660b_firmware	-
qualcomm	wcn3680_firmware	-
qualcomm	wcn3680b_firmware	-
qualcomm	wcn3950_firmware	-
qualcomm	wcn3980_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn3990_firmware	-
qualcomm	wcn3991_firmware	-
qualcomm	wcn3998_firmware	-
qualcomm	wcn3999_firmware	-
qualcomm	wcn6740_firmware	-
qualcomm	wcn6750_firmware	-
qualcomm	wcn6850_firmware	-
qualcomm	wcn6851_firmware	-
qualcomm	wcn6855_firmware	-
qualcomm	wcn6856_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8835_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References

https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin