Vulnerabilities > CVE-2021-35095 - Deserialization of Untrusted Data vulnerability in Qualcomm products

047910
CVSS 7.0 - HIGH
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
high complexity
qualcomm
CWE-502

Summary

Improper serialization of message queue client registration can lead to race condition allowing multiple gunyah message clients to register with same label in Snapdragon Connectivity, Snapdragon Mobile

Common Weakness Enumeration (CWE)