CVE-2021-30305 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.4 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
qualcomm	qca6174a_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qca6574_firmware	-
qualcomm	qca6574a_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qca9377_firmware	-
qualcomm	qcm6490_firmware	-
qualcomm	qcs6490_firmware	-
qualcomm	sa6145p_firmware	-
qualcomm	sa6150p_firmware	-
qualcomm	sa6155_firmware	-
qualcomm	sa6155p_firmware	-
qualcomm	sa8145p_firmware	-
qualcomm	sa8150p_firmware	-
qualcomm	sa8155_firmware	-
qualcomm	sa8155p_firmware	-
qualcomm	sa8195p_firmware	-
qualcomm	sd480_firmware	-
qualcomm	sd778g_firmware	-
qualcomm	sd780g_firmware	-
qualcomm	sd888_5g_firmware	-
qualcomm	sdx12_firmware	-
qualcomm	sm7325_firmware	-
qualcomm	wcd9335_firmware	-
qualcomm	wcd9341_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn3991_firmware	-
qualcomm	wcn6740_firmware	-
qualcomm	wcn6750_firmware	-
qualcomm	wcn6850_firmware	-
qualcomm	wcn6851_firmware	-
qualcomm	wcn6855_firmware	-
qualcomm	wcn6856_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8835_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin