Unvalidated Input Size Vulnerability in Snapdragon Platforms

Unvalidated Input Size Vulnerability in Snapdragon Platforms

CVE-2021-30261 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Learn more about our Industrial Pen Testing.