CVE-2021-30340 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
qualcomm	CNA	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 45%

Affected Products (NVD)

Vendor	Product	Version
qualcomm	ar8035_firmware	-
qualcomm	qca6390_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qca6426_firmware	-
qualcomm	qca6436_firmware	-
qualcomm	qca6574a_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qca8081_firmware	-
qualcomm	qca8337_firmware	-
qualcomm	qcm6490_firmware	-
qualcomm	qcs6490_firmware	-
qualcomm	qcx315_firmware	-
qualcomm	sa515m_firmware	-
qualcomm	sd_8_gen1_5g_firmware	-
qualcomm	sd480_firmware	-
qualcomm	sd690_5g_firmware	-
qualcomm	sd750g_firmware	-
qualcomm	sd765_firmware	-
qualcomm	sd765g_firmware	-
qualcomm	sd768g_firmware	-
qualcomm	sd778g_firmware	-
qualcomm	sd780g_firmware	-
qualcomm	sd865_5g_firmware	-
qualcomm	sd870_firmware	-
qualcomm	sd888_5g_firmware	-
qualcomm	sdx55_firmware	-
qualcomm	sdx55m_firmware	-
qualcomm	sdx65_firmware	-
qualcomm	sdxr2_5g_firmware	-
qualcomm	sm6375_firmware	-
qualcomm	sm7250p_firmware	-
qualcomm	sm7325p_firmware	-
qualcomm	wcd9341_firmware	-
qualcomm	wcd9360_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn3991_firmware	-
qualcomm	wcn3998_firmware	-
qualcomm	wcn6740_firmware	-
qualcomm	wcn6750_firmware	-
qualcomm	wcn6850_firmware	-
qualcomm	wcn6851_firmware	-
qualcomm	wcn6855_firmware	-
qualcomm	wcn6856_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8835_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-617 - Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin