What is the severity of CVE-2021-30298?

CVE-2021-30298 has a medium severity rating due to the possibility of an out-of-bounds access condition.

How do I fix CVE-2021-30298?

To remediate CVE-2021-30298, users should update to the latest firmware version provided by Qualcomm that addresses this vulnerability.

What devices are affected by CVE-2021-30298?

CVE-2021-30298 affects various Qualcomm firmware across devices in categories such as automotive, IoT, mobile, and wearables.

What are the consequences of CVE-2021-30298?

Exploitation of CVE-2021-30298 could lead to unexpected behavior or system crashes due to improper validation during USB and PCIe switching.

Is there a workaround for CVE-2021-30298?

Currently, no official workaround for CVE-2021-30298 has been provided; the best action is to apply the firmware updates.

Vulnerability/
CVE-2021-30298

high

7.8

CWE

120

3/1/2022

3/8/2024

CVE-2021-30298

First published: Mon Jan 03 2022(Updated: )

Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching between USB and PCIE interface in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Qualcomm AR8031
Qualcomm AR8031 Firmware
Qualcomm AR8035 Firmware
Qualcomm AR8035 Firmware
Qualcomm CSRA6620
Qualcomm CSRA6620
Qualcomm CSRA6640 Firmware
Qualcomm csra6640 firmware
Qualcomm FSM10055
Qualcomm FSM10055 Firmware
Qualcomm FSM10056 Firmware
Qualcomm FSM10056 Firmware
Qualcomm IPQ8072A
Qualcomm IPQ8072A
qualcomm ipq8074 firmware
qualcomm ipq8074a firmware
Qualcomm IPQ8076A Firmware
Qualcomm IPQ8076A Firmware
Qualcomm MDM9150 Firmware
Qualcomm MDM9150 firmware
Qualcomm QCA6390 Firmware
Qualcomm QCA6390 Firmware
Qualcomm QCA6391 Firmware
Qualcomm QCA6391 Firmware
Qualcomm QCA6574 Firmware
Qualcomm QCA6574AU
Qualcomm QCA6595AU Firmware
Qualcomm QCA6595AU Firmware
Qualcomm QCA6696 Firmware
Qualcomm QCA6696 Firmware
Qualcomm QCA8337 Firmware
Qualcomm QCA8337 Firmware
Qualcomm QCN9000 Firmware
Qualcomm QCN9000 Firmware
Qualcomm QCN9074 Firmware
Qualcomm QCN9074 Firmware
Qualcomm QCS405 Firmware
Qualcomm QCS405 Firmware
Qualcomm QCS410 Firmware
Qualcomm QCS410 Firmware
Qualcomm QCS610 Firmware
Qualcomm QCS610 Firmware
Qualcomm QRB5165N Firmware
Qualcomm QRB5165 Firmware
Qualcomm QRB5165N Firmware
qualcomm qrb5165n firmware
Qualcomm 215 Mobile Firmware
Qualcomm 215 Firmware
Qualcomm SA8155
Qualcomm SA8155P Firmware
Qualcomm 205 Firmware
Qualcomm Snapdragon 205
Qualcomm SD 210 Firmware
Qualcomm SD210 Firmware
Qualcomm SD460 Firmware
Qualcomm SD460 Firmware
Qualcomm SD662 Firmware
Qualcomm SD662 Firmware
Qualcomm Snapdragon 665
Qualcomm Snapdragon 665
Qualcomm SD765 Firmware
Qualcomm Snapdragon 765
Qualcomm SD765 Firmware
Qualcomm Snapdragon 765G
Qualcomm SD768 Firmware
Qualcomm SD768G Firmware
Qualcomm Snapdragon 865 5G Firmware
Qualcomm Snapdragon 865 5G Firmware
Qualcomm SD870
Qualcomm Snapdragon 870
Qualcomm SDA429W Firmware
Qualcomm SDA429W Firmware
Qualcomm SDX55M Firmware
Qualcomm SDX55 Firmware
Qualcomm SDX55M Firmware
Qualcomm SDX55M Firmware
Qualcomm SM7250 Firmware
Qualcomm SM7250
Qualcomm WCD9335 Firmware
Qualcomm WCD9335 Firmware
Qualcomm WCD9340 Firmware
Qualcomm WCD9340 Firmware
Qualcomm WCD9341
Qualcomm WCD9341 Firmware
Qualcomm WCD9370 Firmware
Qualcomm WCD9370 Firmware
Qualcomm WCD9375
Qualcomm WCD9375 Firmware
Qualcomm WCD9380
Qualcomm WCD9380 Firmware
Qualcomm WCD9385
Qualcomm WCD9385 Firmware
Qualcomm WCN3610 Firmware
Qualcomm WCN3610 Firmware
Qualcomm WCN3620 Firmware
Qualcomm WCN3620 Firmware
Qualcomm WCN3660B
Qualcomm WCN3660B Firmware
Qualcomm WCN3950 Firmware
Qualcomm WCN3950 Firmware
Qualcomm Wcn3980
Qualcomm WCN3980
Qualcomm WCN3988 Firmware
Qualcomm WCN3988 Firmware
Qualcomm WCN3991 Firmware
Qualcomm WCN3991 Firmware
Qualcomm WCN3998 Firmware
Qualcomm wcn3998 firmware
Qualcomm WCN3999 Firmware
Qualcomm WCN3999 Firmware
Qualcomm WCN6850 Firmware
Qualcomm WCN6850 Firmware
Qualcomm WCN6851 Firmware
Qualcomm WCN6851 Firmware
Qualcomm WSA8810
Qualcomm WSA8810 Firmware
Qualcomm WSA8815 Firmware
Qualcomm WSA8815 Firmware
Qualcomm WSA8830
Qualcomm WSA8830
Qualcomm WSA8835
Qualcomm WSA8835 Firmware

Remedy

https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin

Never miss a vulnerability like this again

Reference Links

https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin

Frequently Asked Questions

What is the severity of CVE-2021-30298?
CVE-2021-30298 has a medium severity rating due to the possibility of an out-of-bounds access condition.
How do I fix CVE-2021-30298?
To remediate CVE-2021-30298, users should update to the latest firmware version provided by Qualcomm that addresses this vulnerability.
What devices are affected by CVE-2021-30298?
CVE-2021-30298 affects various Qualcomm firmware across devices in categories such as automotive, IoT, mobile, and wearables.
What are the consequences of CVE-2021-30298?
Exploitation of CVE-2021-30298 could lead to unexpected behavior or system crashes due to improper validation during USB and PCIe switching.
Is there a workaround for CVE-2021-30298?
Currently, no official workaround for CVE-2021-30298 has been provided; the best action is to apply the firmware updates.