Vulnerability Description
Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Ar8035 Firmware | - |
| Qualcomm | Ar8035 | - |
| Qualcomm | Qca6174A Firmware | - |
| Qualcomm | Qca6174A | - |
| Qualcomm | Qca6391 Firmware | - |
| Qualcomm | Qca6391 | - |
| Qualcomm | Qca8081 Firmware | - |
| Qualcomm | Qca8081 | - |
| Qualcomm | Qca8337 Firmware | - |
| Qualcomm | Qca8337 | - |
| Qualcomm | Qca9377 Firmware | - |
| Qualcomm | Qca9377 | - |
| Qualcomm | Qcm6490 Firmware | - |
| Qualcomm | Qcm6490 | - |
| Qualcomm | Qcs6490 Firmware | - |
| Qualcomm | Qcs6490 | - |
| Qualcomm | Sd 8 Gen1 5G Firmware | - |
| Qualcomm | Sm8475 | - |
| Qualcomm | Sd480 Firmware | - |
| Qualcomm | Sd480 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletinPatchVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletinPatchVendor Advisory
FAQ
What is CVE-2021-35133?
CVE-2021-35133 is a vulnerability with a CVSS score of 6.7 (MEDIUM). Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
How severe is CVE-2021-35133?
CVE-2021-35133 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-35133?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Ar8035 Firmware, Qualcomm Ar8035, Qualcomm Qca6174A Firmware, Qualcomm Qca6174A, Qualcomm Qca6391 Firmware.