Vulnerability Description
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Ar8035 Firmware | - |
| Qualcomm | Ar8035 | - |
| Qualcomm | Qca9984 Firmware | - |
| Qualcomm | Qca9984 | - |
| Qualcomm | Qcm2290 Firmware | - |
| Qualcomm | Qcm2290 | - |
| Qualcomm | Qcm4290 Firmware | - |
| Qualcomm | Qcm4290 | - |
| Qualcomm | Qcs2290 Firmware | - |
| Qualcomm | Qcs2290 | - |
| Qualcomm | Qcs405 Firmware | - |
| Qualcomm | Qcs405 | - |
| Qualcomm | Qcs4290 Firmware | - |
| Qualcomm | Qcs4290 | - |
| Qualcomm | Sd460 Firmware | - |
| Qualcomm | Sd460 | - |
| Qualcomm | Sd480 Firmware | - |
| Qualcomm | Sd480 | - |
| Qualcomm | Sd662 Firmware | - |
| Qualcomm | Sd662 | - |
References
- https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinVendor Advisory
FAQ
What is CVE-2021-30345?
CVE-2021-30345 is a vulnerability with a CVSS score of 6.5 (MEDIUM). RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networkin...
How severe is CVE-2021-30345?
CVE-2021-30345 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-30345?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Ar8035 Firmware, Qualcomm Ar8035, Qualcomm Qca9984 Firmware, Qualcomm Qca9984, Qualcomm Qcm2290 Firmware.