1. Home
  2. CVE Database
  3. CVE-2021-30304
HIGH · 7.5

CVE-2021-30304

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer El...

Vulnerability Description

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
QualcommQca2062 Firmware-
QualcommQca2062-
QualcommQca2064 Firmware-
QualcommQca2064-
QualcommQca2065 Firmware-
QualcommQca2065-
QualcommQca2066 Firmware-
QualcommQca2066-
QualcommSc8280Xp Firmware-
QualcommSc8280Xp-
QualcommWcd9380 Firmware-
QualcommWcd9380-
QualcommWcd9385 Firmware-
QualcommWcd9385-
QualcommWcn6850 Firmware-
QualcommWcn6850-
QualcommWcn6851 Firmware-
QualcommWcn6851-
QualcommWcn6855 Firmware-
QualcommWcn6855-

Related Weaknesses (CWE)

CWE-125

References

FAQ

What is CVE-2021-30304?

CVE-2021-30304 is a vulnerability with a CVSS score of 7.5 (HIGH). Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer El...

How severe is CVE-2021-30304?

CVE-2021-30304 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-30304?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Qca2062 Firmware, Qualcomm Qca2062, Qualcomm Qca2064 Firmware, Qualcomm Qca2064, Qualcomm Qca2065 Firmware.