Vulnerability Description
Improper handling of sensor HAL structure in absence of sensor can lead to use after free in Snapdragon Auto
CVSS Score
8.4
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Mdm9628 Firmware | - |
| Qualcomm | Mdm9628 | - |
| Qualcomm | Qca6564A Firmware | - |
| Qualcomm | Qca6564A | - |
| Qualcomm | Qca6564Au Firmware | - |
| Qualcomm | Qca6564Au | - |
| Qualcomm | Qca6574 Firmware | - |
| Qualcomm | Qca6574 | - |
| Qualcomm | Qca6574A Firmware | - |
| Qualcomm | Qca6574A | - |
| Qualcomm | Qca6574Au Firmware | - |
| Qualcomm | Qca6574Au | - |
| Qualcomm | Qca6595 Firmware | - |
| Qualcomm | Qca6595 | - |
| Qualcomm | Qca6595Au Firmware | - |
| Qualcomm | Qca6595Au | - |
| Qualcomm | Qca6696 Firmware | - |
| Qualcomm | Qca6696 | - |
| Qualcomm | Sa6155 Firmware | - |
| Qualcomm | Sa6155 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletiPatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletiPatchVendor Advisory
FAQ
What is CVE-2021-30315?
CVE-2021-30315 is a vulnerability with a CVSS score of 8.4 (HIGH). Improper handling of sensor HAL structure in absence of sensor can lead to use after free in Snapdragon Auto
How severe is CVE-2021-30315?
CVE-2021-30315 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-30315?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Mdm9628 Firmware, Qualcomm Mdm9628, Qualcomm Qca6564A Firmware, Qualcomm Qca6564A, Qualcomm Qca6564Au Firmware.