CVE-2021-35121

An array index is improperly used to lock and unlock a mutex which can lead to a Use After Free condition In the Synx driver in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

CVSS v3 6.7 MEDIUM
CVSS v2.0 4.6 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

4.6^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6426:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6436:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qcm2290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm2290:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qcm4290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm4290:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qcs2290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs2290:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qcs4290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs4290:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qrb5165:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qrb5165m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qrb5165m:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qrb5165n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qrb5165n:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:sd460_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd460:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:sd662_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd662:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:sd680_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd680:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:sd690_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd690_5g:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:sd750g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd750g:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:sd765_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd765:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:sd765g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd765g:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:sd768g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd768g:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd870:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdxr2_5g:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7250p:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9326:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:wcn3615_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3615:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3680b:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:wcn3910_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3910:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:wcn3991_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3991:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

History

23 Jun 2022, 20:17

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 4.6 v3 : 6.7
First Time		Qualcomm wsa8810 Firmware Qualcomm wcd9326 Qualcomm wcd9380 Qualcomm sm7250p Qualcomm sd865 5g Qualcomm qca6391 Qualcomm sd460 Qualcomm qcm4290 Qualcomm qcs4290 Firmware Qualcomm sm7250p Firmware Qualcomm qcs4290 Qualcomm wcd9380 Firmware Qualcomm qcm2290 Firmware Qualcomm wcd9370 Qualcomm wsa8815 Firmware Qualcomm msm8953 Firmware Qualcomm sd765 Firmware Qualcomm sd750g Qualcomm wcn3910 Qualcomm qca6391 Firmware Qualcomm apq8053 Firmware Qualcomm sd750g Firmware Qualcomm qca6436 Firmware Qualcomm sd768g Qualcomm sd662 Firmware Qualcomm qrb5165m Firmware Qualcomm wcd9385 Qualcomm wcd9385 Firmware Qualcomm sd870 Firmware Qualcomm wsa8835 Qualcomm wcn6851 Firmware Qualcomm wcd9370 Firmware Qualcomm sd870 Qualcomm wsa8830 Qualcomm sd662 Qualcomm sdxr2 5g Firmware Qualcomm sd765g Firmware Qualcomm wsa8830 Firmware Qualcomm wcn3615 Firmware Qualcomm wcn3910 Firmware Qualcomm wcn3988 Qualcomm wcn6851 Qualcomm qrb5165 Qualcomm sd690 5g Qualcomm qca6390 Firmware Qualcomm wcd9326 Firmware Qualcomm wcn3991 Firmware Qualcomm qca6426 Qualcomm sd768g Firmware Qualcomm qcm4290 Firmware Qualcomm qca6426 Firmware Qualcomm sdx55m Qualcomm sdx55m Firmware Qualcomm sdxr2 5g Qualcomm wcn3680b Qualcomm wcn3615 Qualcomm qcs2290 Firmware Qualcomm wcn3998 Qualcomm wcd9375 Firmware Qualcomm wcn6850 Qualcomm wcn3988 Firmware Qualcomm wsa8835 Firmware Qualcomm qrb5165n Qualcomm qcm2290 Qualcomm Qualcomm sd765g Qualcomm apq8053 Qualcomm wcn3991 Qualcomm qca6436 Qualcomm qrb5165n Firmware Qualcomm sd680 Firmware Qualcomm wsa8810 Qualcomm wcn6850 Firmware Qualcomm sd690 5g Firmware Qualcomm qrb5165 Firmware Qualcomm wcn3680b Firmware Qualcomm msm8953 Qualcomm sd680 Qualcomm sd765 Qualcomm qca6390 Qualcomm wcn3950 Qualcomm qcs2290 Qualcomm wcn3950 Firmware Qualcomm sd460 Firmware Qualcomm qrb5165m Qualcomm wcn3998 Firmware Qualcomm sd865 5g Firmware Qualcomm wsa8815 Qualcomm wcd9375
References	~~(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin -~~	(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin - Patch, Vendor Advisory
CPE		cpe:2.3:o:qualcomm:sdx55m_firmware:-:::::::* cpe:2.3:o:qualcomm:qrb5165m_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3910:-:::::::* cpe:2.3:h:qualcomm:qrb5165n:-:::::::* cpe:2.3:o:qualcomm:sd662_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3988_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn6850_firmware:-:::::::* cpe:2.3:h:qualcomm:sm7250p:-:::::::* cpe:2.3:o:qualcomm:sd460_firmware:-:::::::* cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3991_firmware:-:::::::* cpe:2.3:h:qualcomm:sd690_5g:-:::::::* cpe:2.3:o:qualcomm:sd690_5g_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6426_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9375_firmware:-:::::::* cpe:2.3:h:qualcomm:sd680:-:::::::* cpe:2.3:h:qualcomm:wcd9385:-:::::::* cpe:2.3:o:qualcomm:sd768g_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9326:-:::::::* cpe:2.3:h:qualcomm:wcd9370:-:::::::* cpe:2.3:h:qualcomm:qca6426:-:::::::* cpe:2.3:o:qualcomm:sm7250p_firmware:-:::::::* cpe:2.3:h:qualcomm:sd768g:-:::::::* cpe:2.3:h:qualcomm:apq8053:-:::::::* cpe:2.3:h:qualcomm:wcn3988:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:o:qualcomm:qca6390_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:o:qualcomm:qrb5165_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3615_firmware:-:::::::* cpe:2.3:h:qualcomm:qcm4290:-:::::::* cpe:2.3:h:qualcomm:sd765:-:::::::* cpe:2.3:o:qualcomm:wcn6851_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9326_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6436_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6391:-:::::::* cpe:2.3:o:qualcomm:sd865_5g_firmware:-:::::::* cpe:2.3:h:qualcomm:sd765g:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs4290:-:::::::* cpe:2.3:o:qualcomm:sd765g_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6436:-:::::::* cpe:2.3:o:qualcomm:qcs4290_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs2290_firmware:-:::::::* cpe:2.3:h:qualcomm:sd750g:-:::::::* cpe:2.3:o:qualcomm:wcd9370_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:msm8953:-:::::::* cpe:2.3:h:qualcomm:sd870:-:::::::* cpe:2.3:o:qualcomm:qrb5165n_firmware:-:::::::* cpe:2.3:h:qualcomm:sd865_5g:-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:h:qualcomm:wcn6850:-:::::::* cpe:2.3:o:qualcomm:wcn3950_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn6851:-:::::::* cpe:2.3:h:qualcomm:sdxr2_5g:-:::::::* cpe:2.3:o:qualcomm:wcn3910_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3991:-:::::::* cpe:2.3:h:qualcomm:wsa8830:-:::::::* cpe:2.3:o:qualcomm:sd870_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:wcn3950:-:::::::* cpe:2.3:h:qualcomm:wcd9375:-:::::::* cpe:2.3:h:qualcomm:qca6390:-:::::::* cpe:2.3:h:qualcomm:wsa8835:-:::::::* cpe:2.3:h:qualcomm:sd460:-:::::::* cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::* cpe:2.3:h:qualcomm:qrb5165m:-:::::::* cpe:2.3:o:qualcomm:sd765_firmware:-:::::::* cpe:2.3:o:qualcomm:qcm4290_firmware:-:::::::* cpe:2.3:h:qualcomm:qcm2290:-:::::::* cpe:2.3:o:qualcomm:qcm2290_firmware:-:::::::* cpe:2.3:o:qualcomm:msm8953_firmware:-:::::::* cpe:2.3:o:qualcomm:sd680_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs2290:-:::::::* cpe:2.3:h:qualcomm:wcn3680b:-:::::::* cpe:2.3:o:qualcomm:wcn3680b_firmware:-:::::::* cpe:2.3:h:qualcomm:qrb5165:-:::::::* cpe:2.3:o:qualcomm:apq8053_firmware:-:::::::* cpe:2.3:h:qualcomm:sd662:-:::::::* cpe:2.3:o:qualcomm:sd750g_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9385_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3615:-:::::::* cpe:2.3:h:qualcomm:sdx55m:-:::::::*
CWE		CWE-129

14 Jun 2022, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-06-14 10:15

Updated : 2023-12-10 14:22

NVD link : CVE-2021-35121

Mitre link : CVE-2021-35121

CVE.ORG link : CVE-2021-35121

JSON object : View

Products Affected

qualcomm

qcs2290
qca6390_firmware
qrb5165
wsa8830_firmware
qcm2290
wcn6851
wcd9385
apq8053
sd690_5g_firmware
wcd9385_firmware
qca6426
sdx55m
sd690_5g
sd765
qcm4290
wcn3998
qca6391
wcn3615
sd460
wcn3950
sd768g
qca6436
qrb5165n
wsa8835
sd662
wcd9380_firmware
wcd9375
qcm2290_firmware
sm7250p
wcd9326_firmware
qcs4290
sm7250p_firmware
qcs4290_firmware
sd865_5g_firmware
wcn3680b
sd768g_firmware
wcn3988_firmware
sd750g_firmware
qca6426_firmware
sd865_5g
wcn3991_firmware
qca6391_firmware
wcn6851_firmware
qrb5165m
wsa8810_firmware
sd460_firmware
wcn6850
qca6436_firmware
wcn3910_firmware
wcn6850_firmware
qca6390
sd870
apq8053_firmware
sd765_firmware
msm8953_firmware
wcn3998_firmware
wcn3988
wcd9380
msm8953
sd765g
qcs2290_firmware
wcn3910
sd680_firmware
wcn3680b_firmware
sd662_firmware
sd765g_firmware
wcn3615_firmware
qrb5165n_firmware
wcd9370_firmware
qrb5165m_firmware
sdxr2_5g
sdxr2_5g_firmware
wcd9326
wcd9375_firmware
wsa8835_firmware
sd680
qrb5165_firmware
wcn3991
wcd9370
sd750g
wcn3950_firmware
wsa8810
wsa8815_firmware
qcm4290_firmware
sdx55m_firmware
sd870_firmware
wsa8815
wsa8830

CWE

CWE-129

Improper Validation of Array Index

6.7 /10