Vulnerability Description
Disabled SMMU from secure side while RPM is assigned a secure stream can lead to information disclosure in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Qcm2290 Firmware | - |
| Qualcomm | Qcm2290 | - |
| Qualcomm | Qcm4290 Firmware | - |
| Qualcomm | Qcm4290 | - |
| Qualcomm | Qcs2290 Firmware | - |
| Qualcomm | Qcs2290 | - |
| Qualcomm | Qcs4290 Firmware | - |
| Qualcomm | Qcs4290 | - |
| Qualcomm | Sd460 Firmware | - |
| Qualcomm | Sd460 | - |
| Qualcomm | Sd480 Firmware | - |
| Qualcomm | Sd480 | - |
| Qualcomm | Sd662 Firmware | - |
| Qualcomm | Sd662 | - |
| Qualcomm | Sd680 Firmware | - |
| Qualcomm | Sd680 | - |
| Qualcomm | Sd695 Firmware | - |
| Qualcomm | Sd695 | - |
| Qualcomm | Sm4125 Firmware | - |
| Qualcomm | Sm4125 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletinVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletinVendor Advisory
FAQ
What is CVE-2021-35080?
CVE-2021-35080 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Disabled SMMU from secure side while RPM is assigned a secure stream can lead to information disclosure in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
How severe is CVE-2021-35080?
CVE-2021-35080 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-35080?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Qcm2290 Firmware, Qualcomm Qcm2290, Qualcomm Qcm4290 Firmware, Qualcomm Qcm4290, Qualcomm Qcs2290 Firmware.