Vulnerability Description
Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Aqt1000 Firmware | - |
| Qualcomm | Aqt1000 | - |
| Qualcomm | Ar8035 Firmware | - |
| Qualcomm | Ar8035 | - |
| Qualcomm | Qca6390 Firmware | - |
| Qualcomm | Qca6390 | - |
| Qualcomm | Qca6391 Firmware | - |
| Qualcomm | Qca6391 | - |
| Qualcomm | Qca6564 Firmware | - |
| Qualcomm | Qca6564 | - |
| Qualcomm | Qca6564Au Firmware | - |
| Qualcomm | Qca6564Au | - |
| Qualcomm | Qca6574A Firmware | - |
| Qualcomm | Qca6574A | - |
| Qualcomm | Qca8081 Firmware | - |
| Qualcomm | Qca8081 | - |
| Qualcomm | Qca8337 Firmware | - |
| Qualcomm | Qca8337 | - |
| Qualcomm | Qcm2290 Firmware | - |
| Qualcomm | Qcm2290 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinPatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinPatchVendor Advisory
FAQ
What is CVE-2021-35081?
CVE-2021-35081 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr...
How severe is CVE-2021-35081?
CVE-2021-35081 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-35081?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Aqt1000 Firmware, Qualcomm Aqt1000, Qualcomm Ar8035 Firmware, Qualcomm Ar8035, Qualcomm Qca6390 Firmware.