Vulnerabilities > CVE-2021-30283 - Improper Handling of Exceptional Conditions vulnerability in Qualcomm products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

qualcomm

CWE-755

NVD

Published: 2022-01-03

Updated: 2022-01-12

Summary

Possible denial of service due to improper handling of debug register trap from user applications in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Qca6391 Firmware - Qualcomm Qcm6490 Firmware - Qualcomm Qcs6490 Firmware - Qualcomm Qrb5165 Firmware - Qualcomm Qrb5165N Firmware - Qualcomm Sd778G Firmware - Qualcomm Sd888 5G Firmware - Qualcomm Sm7325P Firmware - Qualcomm Wcd9370 Firmware - Qualcomm Wcd9375 Firmware - Qualcomm Wcd9380 Firmware - Qualcomm Wcd9385 Firmware - Qualcomm Wcn6750 Firmware - Qualcomm Wcn6850 Firmware - Qualcomm Wcn6851 Firmware - Qualcomm Wcn6855 Firmware - Qualcomm Wcn6856 Firmware - Qualcomm Wsa8830 Firmware - Qualcomm Wsa8835 Firmware -	19
Hardware	Qualcomm Qualcomm Qca6391 - Qualcomm Qcm6490 - Qualcomm Qcs6490 - Qualcomm Qrb5165 - Qualcomm Qrb5165N - Qualcomm Sd778G - Qualcomm Sd888 5G - Qualcomm Sm7325P - Qualcomm Wcd9370 - Qualcomm Wcd9375 - Qualcomm Wcd9380 - Qualcomm Wcd9385 - Qualcomm Wcn6750 - Qualcomm Wcn6850 - Qualcomm Wcn6851 - Qualcomm Wcn6855 - Qualcomm Wcn6856 - Qualcomm Wsa8830 - Qualcomm Wsa8835 -	19

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin