1. Home
  2. CVE Database
  3. CVE-2021-30321
CRITICAL · 9.8

CVE-2021-30321

Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

Vulnerability Description

Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommAqt1000 Firmware-
QualcommAqt1000-
QualcommQca1062 Firmware-
QualcommQca1062-
QualcommQca1064 Firmware-
QualcommQca1064-
QualcommQca2066 Firmware-
QualcommQca2066-
QualcommQca6320 Firmware-
QualcommQca6320-
QualcommQca6391 Firmware-
QualcommQca6391-
QualcommQca6420 Firmware-
QualcommQca6420-
QualcommQca6430 Firmware-
QualcommQca6430-
QualcommSc8280Xp Firmware-
QualcommSc8280Xp-
QualcommSd 8Cx Firmware-
QualcommSd 8Cx-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2021-30321?

CVE-2021-30321 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

How severe is CVE-2021-30321?

CVE-2021-30321 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2021-30321?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Aqt1000 Firmware, Qualcomm Aqt1000, Qualcomm Qca1062 Firmware, Qualcomm Qca1062, Qualcomm Qca1064 Firmware.