Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music
References
| Link | Resource |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
Configuration 12 (hide)
| AND |
|
Configuration 13 (hide)
| AND |
|
Configuration 14 (hide)
| AND |
|
Configuration 15 (hide)
| AND |
|
Configuration 16 (hide)
| AND |
|
Configuration 17 (hide)
| AND |
|
Configuration 18 (hide)
| AND |
|
Configuration 19 (hide)
| AND |
|
Configuration 20 (hide)
| AND |
|
Configuration 21 (hide)
| AND |
|
Configuration 22 (hide)
| AND |
|
Configuration 23 (hide)
| AND |
|
Configuration 24 (hide)
| AND |
|
Configuration 25 (hide)
| AND |
|
Configuration 26 (hide)
| AND |
|
Configuration 27 (hide)
| AND |
|
Configuration 28 (hide)
| AND |
|
Configuration 29 (hide)
| AND |
|
Configuration 30 (hide)
| AND |
|
Configuration 31 (hide)
| AND |
|
Configuration 32 (hide)
| AND |
|
Configuration 33 (hide)
| AND |
|
Configuration 34 (hide)
| AND |
|
Configuration 35 (hide)
| AND |
|
Configuration 36 (hide)
| AND |
|
Configuration 37 (hide)
| AND |
|
Configuration 38 (hide)
| AND |
|
Configuration 39 (hide)
| AND |
|
Configuration 40 (hide)
| AND |
|
Configuration 41 (hide)
| AND |
|
Configuration 42 (hide)
| AND |
|
Configuration 43 (hide)
| AND |
|
Configuration 44 (hide)
| AND |
|
Configuration 45 (hide)
| AND |
|
Configuration 46 (hide)
| AND |
|
Configuration 47 (hide)
| AND |
|
Configuration 48 (hide)
| AND |
|
Configuration 49 (hide)
| AND |
|
Configuration 50 (hide)
| AND |
|
Configuration 51 (hide)
| AND |
|
Configuration 52 (hide)
| AND |
|
Configuration 53 (hide)
| AND |
|
Configuration 54 (hide)
| AND |
|
Configuration 55 (hide)
| AND |
|
Configuration 56 (hide)
| AND |
|
Configuration 57 (hide)
| AND |
|
Configuration 58 (hide)
| AND |
|
Configuration 59 (hide)
| AND |
|
Configuration 60 (hide)
| AND |
|
Configuration 61 (hide)
| AND |
|
Configuration 62 (hide)
| AND |
|
Configuration 63 (hide)
| AND |
|
Configuration 64 (hide)
| AND |
|
Configuration 65 (hide)
| AND |
|
Configuration 66 (hide)
| AND |
|
Configuration 67 (hide)
| AND |
|
Configuration 68 (hide)
| AND |
|
Configuration 69 (hide)
| AND |
|
Configuration 70 (hide)
| AND |
|
Configuration 71 (hide)
| AND |
|
Configuration 72 (hide)
| AND |
|
Configuration 73 (hide)
| AND |
|
Configuration 74 (hide)
| AND |
|
Configuration 75 (hide)
| AND |
|
Configuration 76 (hide)
| AND |
|
Configuration 77 (hide)
| AND |
|
Configuration 78 (hide)
| AND |
|
Configuration 79 (hide)
| AND |
|
History
22 Jun 2022, 21:44
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:qualcomm:sdm658:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcn7606:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa6145:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:ipq6005:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sda830:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm6125:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs402_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa4155p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm6150p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdx24m:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa4250p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sda658:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm7150p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdpx55m:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa2145p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm4250_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm712:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm7250:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcn7606w:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:ipq6000:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8155:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdpx55m_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa2150p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm6250p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm7150p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs407_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa6125:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm658_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm8150p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sda670_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa6115p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa2145p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa4250p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm640_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa6115_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:ipq6010:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:apq8097_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm6250:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm7125:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs407:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm830:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm6150p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs402:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs401_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8155_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sc7180p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcn7606w_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa4150p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sda830_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm712_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa6125p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa4150p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sxr2130p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcn7605w_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa615xp_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sda658_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs403:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs403_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sxr2130p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sc8180xp_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa6125_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:ipq6028:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sc7180p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdm830_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa6115:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm6250_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:apq8097:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sc8180xp:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdx24m_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcn7606_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs401:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:ipq6005_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sda670:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:ipq6028_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:msm8997_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:msm8997:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa615xp:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa4155p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa6115p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa615x_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm6125_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm640:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa6145_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm6250p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa6125p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm7125_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm7250_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa2150p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa615x:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm8150p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm7250p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcn7605w:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm4250:-:*:*:*:*:*:*:* |
|
| CWE | CWE-120 | |
| CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 6.8 |
| References | (CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin - Vendor Advisory |
14 Jun 2022, 10:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-06-14 10:15
Updated : 2024-02-04 22:29
NVD link : CVE-2021-30327
Mitre link : CVE-2021-30327
CVE.ORG link : CVE-2021-30327
JSON object : View
Products Affected
qualcomm
- qcs407_firmware
- sa6145p
- sm6250_firmware
- sa515m_firmware
- sda830_firmware
- sdm660
- qcn7606
- sm7125
- msm8997
- sm8250_firmware
- ipq6005
- sc7180_firmware
- sdm830_firmware
- sdpx55m
- sa6115_firmware
- sm6150p
- sm8150p_firmware
- sdm658
- sdm670_firmware
- ipq6028_firmware
- qcs407
- sa615x_firmware
- sc8180x_firmware
- sdx24
- sa4155p
- qcs404_firmware
- qcn7606w_firmware
- sa2150p
- sc7180
- sm6125_firmware
- sa615xp
- sa415m_firmware
- sm7150p
- sdm658_firmware
- sdm710_firmware
- sdm850
- ipq6000_firmware
- sdx55_firmware
- sdm670
- sa8155_firmware
- sa6125
- sa2145p
- sa6115p_firmware
- qca6595_firmware
- sm6250p_firmware
- sa615x
- sm4250_firmware
- sdx55
- sdm710
- apq8097
- sm6250p
- sdm712
- sa4150p
- sa4155p_firmware
- sda658_firmware
- sdx24_firmware
- sda670_firmware
- sa6145p_firmware
- sc8180xp
- qcs404
- sm6150_firmware
- sdm845_firmware
- qcs405
- sda670
- ipq6018_firmware
- qcs401
- sa6115
- sxr2130p
- qcs403_firmware
- sm8150
- ipq6000
- sm7250p
- sm6125
- sm6150
- sa415m
- sm7125_firmware
- qcn7606w
- sc7180p_firmware
- mdm9205_firmware
- ipq6018
- qcs402_firmware
- sa4250p_firmware
- sa6145
- apq8098_firmware
- sa8155p_firmware
- sm8250
- sdm640_firmware
- sa8150p
- sa6125_firmware
- sdm845
- msm8998
- qcs405_firmware
- sa6125p_firmware
- sm4250
- sm6150p_firmware
- sdpx55m_firmware
- sc7180p
- ipq6010
- sda658
- sda660
- sxr2130_firmware
- sda660_firmware
- sdm850_firmware
- sm7250p_firmware
- ipq6010_firmware
- ipq6028
- sa6125p
- sa4150p_firmware
- sa615xp_firmware
- sa2145p_firmware
- sa8155p
- sdm712_firmware
- qcs402
- sm6250
- sm7250
- sm7250_firmware
- sa8150p_firmware
- sa515m
- qca6595au_firmware
- sa4250p
- sda845_firmware
- sxr2130
- sm7150
- qcn7606_firmware
- sa6115p
- sa8195p
- qcs403
- sdm830
- sdm660_firmware
- sm8150_firmware
- sa8155
- sa8195p_firmware
- sdx24m_firmware
- sm8150p
- msm8997_firmware
- qca6595
- qcn7605
- apq8097_firmware
- qcn7605w
- sxr2130p_firmware
- sa2150p_firmware
- mdm9205
- msm8998_firmware
- qcn7605w_firmware
- sc8180x
- qcn7605_firmware
- qcs401_firmware
- sda845
- sm7150_firmware
- apq8098
- sm7150p_firmware
- ipq6005_firmware
- sc8180xp_firmware
- sda830
- sdx24m
- sdm640
- qca6595au
- sa6145_firmware
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')