CVE-2021-30263

Possible race condition can occur due to lack of synchronization mechanism when On-Device Logging node open twice concurrently in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CVSS v3 7.8 HIGH
CVSS v2.0 4.4 MEDIUM

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

4.4^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 3.4 / Impact : 6.4

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/november-2021-bulletin	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8035:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6420:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6430:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8337:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm6125:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qcs6125_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs6125:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:sd_8c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_8c:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3999:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

History

16 Nov 2021, 15:47

Type	Values Removed	Values Added
References	~~(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/november-2021-bulletin -~~	(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/november-2021-bulletin - Patch, Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~6.7~~	v2 : 4.4 v3 : 7.8
CPE		cpe:2.3:h:qualcomm:wcd9370:-:::::::* cpe:2.3:o:qualcomm:qcs6125_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9341_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9370_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3950:-:::::::* cpe:2.3:o:qualcomm:csra6640_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6391:-:::::::* cpe:2.3:o:qualcomm:qca8337_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:o:qualcomm:sdx55_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6430_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:wcd9341:-:::::::* cpe:2.3:h:qualcomm:wcd9340:-:::::::* cpe:2.3:h:qualcomm:qca8337:-:::::::* cpe:2.3:o:qualcomm:ar8031_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs405_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_8c_firmware:-:::::::* cpe:2.3:h:qualcomm:sd855:-:::::::* cpe:2.3:h:qualcomm:qcs6125:-:::::::* cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9335_firmware:-:::::::* cpe:2.3:h:qualcomm:sdx55:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:o:qualcomm:sd855_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3950_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:aqt1000:-:::::::* cpe:2.3:o:qualcomm:aqt1000_firmware:-:::::::* cpe:2.3:h:qualcomm:csra6620:-:::::::* cpe:2.3:h:qualcomm:ar8035:-:::::::* cpe:2.3:h:qualcomm:qcm6125:-:::::::* cpe:2.3:h:qualcomm:qca6430:-:::::::* cpe:2.3:h:qualcomm:qcs405:-:::::::* cpe:2.3:h:qualcomm:sd_8cx:-:::::::* cpe:2.3:h:qualcomm:sdx55m:-:::::::* cpe:2.3:o:qualcomm:qca6420_firmware:-:::::::* cpe:2.3:o:qualcomm:csra6620_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_8cx_firmware:-:::::::* cpe:2.3:o:qualcomm:ar8035_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9335:-:::::::* cpe:2.3:o:qualcomm:wcd9340_firmware:-:::::::* cpe:2.3:h:qualcomm:csra6640:-:::::::* cpe:2.3:h:qualcomm:sd_8c:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:h:qualcomm:ar8031:-:::::::* cpe:2.3:h:qualcomm:wcn3999:-:::::::* cpe:2.3:h:qualcomm:qca6420:-:::::::* cpe:2.3:o:qualcomm:qcm6125_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3999_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:o:qualcomm:sdx55m_firmware:-:::::::*
CWE		CWE-416

12 Nov 2021, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-11-12 07:15

Updated : 2023-12-10 14:09

NVD link : CVE-2021-30263

Mitre link : CVE-2021-30263

CVE.ORG link : CVE-2021-30263

JSON object : View

Products Affected

qualcomm

aqt1000_firmware
wcn3950_firmware
qca6391_firmware
sd_8c_firmware
qcm6125
wcd9335
sd_8cx_firmware
csra6640_firmware
wsa8815
qcs405_firmware
sd855_firmware
qca6430_firmware
sd_8cx
ar8035
sd_8c
wcd9340_firmware
sdx55
wcn3998
qca6391
csra6620
ar8031
wsa8810_firmware
qcm6125_firmware
wsa8810
ar8035_firmware
qcs6125
csra6620_firmware
ar8031_firmware
sd855
qca8337
wcd9341_firmware
wcd9341
wcd9340
qca6420_firmware
aqt1000
wcd9335_firmware
wcd9370_firmware
wcd9370
wcn3980
sdx55m
sdx55m_firmware
qca6430
wcn3950
qcs405
qca8337_firmware
wcn3998_firmware
wsa8815_firmware
csra6640
wcn3999_firmware
qca6420
wcn3980_firmware
sdx55_firmware
qcs6125_firmware
wcn3999

CWE

CWE-416

Use After Free

7.8 /10