Vulnerabilities > CVE-2021-35130 - Use After Free vulnerability in Qualcomm products

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

qualcomm

CWE-416

NVD

Published: 2022-06-14

Updated: 2022-06-22

Summary

Memory corruption in graphics support layer due to use after free condition in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Ar8035 Firmware - Qualcomm Qam8295P Firmware - Qualcomm Qca6174A Firmware - Qualcomm Qca6391 Firmware - Qualcomm Qca6574Au Firmware - Qualcomm Qca6595Au Firmware - Qualcomm Qca6696 Firmware - Qualcomm Qca8081 Firmware - Qualcomm Qca8337 Firmware - Qualcomm Qca9377 Firmware - Qualcomm Qcm6490 Firmware - Qualcomm Qcs410 Firmware - Qualcomm Qcs610 Firmware - Qualcomm Qcs6490 Firmware - Qualcomm Sa4150P Firmware - Qualcomm Sa4155P Firmware - Qualcomm Sa6145P Firmware - Qualcomm Sa6150P Firmware - Qualcomm Sa6155P Firmware - Qualcomm Sa8145P Firmware - Qualcomm Sa8150P Firmware - Qualcomm Sa8155P Firmware - Qualcomm Sa8195P Firmware - Qualcomm Sa8295P Firmware - Qualcomm Sd480 Firmware - Qualcomm Sd778G Firmware - Qualcomm Sd780G Firmware - Qualcomm Sd888 Firmware - Qualcomm Sd888 5G Firmware - Qualcomm Sdx12 Firmware - Qualcomm Sdx65 Firmware - Qualcomm Sm6375 Firmware - Qualcomm Sm7315 Firmware - Qualcomm Sm7325P Firmware - Qualcomm Sw5100 Firmware - Qualcomm Sw5100P Firmware - Qualcomm Wcd9335 Firmware - Qualcomm Wcd9341 Firmware - Qualcomm Wcd9370 Firmware - Qualcomm Wcd9375 Firmware - Qualcomm Wcd9380 Firmware - Qualcomm Wcd9385 Firmware - Qualcomm Wcn3950 Firmware - Qualcomm Wcn3980 Firmware - Qualcomm Wcn3988 Firmware - Qualcomm Wcn3991 Firmware - Qualcomm Wcn3998 Firmware - Qualcomm Wcn6740 Firmware - Qualcomm Wcn6750 Firmware - Qualcomm Wcn6850 Firmware - Qualcomm Wcn6851 Firmware - Qualcomm Wcn6855 Firmware - Qualcomm Wcn6856 Firmware - Qualcomm Wsa8810 Firmware - Qualcomm Wsa8815 Firmware - Qualcomm Wsa8830 Firmware - Qualcomm Wsa8835 Firmware -	57
Hardware	Qualcomm Qualcomm Ar8035 - Qualcomm Qam8295P - Qualcomm Qca6174A - Qualcomm Qca6391 - Qualcomm Qca6574Au - Qualcomm Qca6595Au - Qualcomm Qca6696 - Qualcomm Qca8081 - Qualcomm Qca8337 - Qualcomm Qca9377 - Qualcomm Qcm6490 - Qualcomm Qcs410 - Qualcomm Qcs610 - Qualcomm Qcs6490 - Qualcomm Sa4150P - Qualcomm Sa4155P - Qualcomm Sa6145P - Qualcomm Sa6150P - Qualcomm Sa6155P - Qualcomm Sa8145P - Qualcomm Sa8150P - Qualcomm Sa8155P - Qualcomm Sa8195P - Qualcomm Sa8295P - Qualcomm Sd480 - Qualcomm Sd778G - Qualcomm Sd780G - Qualcomm Sd888 - Qualcomm Sd888 5G - Qualcomm Sdx12 - Qualcomm Sdx65 - Qualcomm Sm6375 - Qualcomm Sm7315 - Qualcomm Sm7325P - Qualcomm Sw5100 - Qualcomm Sw5100P - Qualcomm Wcd9335 - Qualcomm Wcd9341 - Qualcomm Wcd9370 - Qualcomm Wcd9375 - Qualcomm Wcd9380 - Qualcomm Wcd9385 - Qualcomm Wcn3950 - Qualcomm Wcn3980 - Qualcomm Wcn3988 - Qualcomm Wcn3991 - Qualcomm Wcn3998 - Qualcomm Wcn6740 - Qualcomm Wcn6750 - Qualcomm Wcn6850 - Qualcomm Wcn6851 - Qualcomm Wcn6855 - Qualcomm Wcn6856 - Qualcomm Wsa8810 - Qualcomm Wsa8815 - Qualcomm Wsa8830 - Qualcomm Wsa8835 -	57

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin