What is CVE-2021-30304?

CVE-2021-30304 is a vulnerability that can cause a possible buffer out of bound read due to improper validation of TBTT count and length.

What software is affected by CVE-2021-30304?

Qualcomm Qca2062 Firmware, Qualcomm Qca2064 Firmware, Qualcomm Qca2065 Firmware, Qualcomm Qca2066 Firmware, Qualcomm Sc8280xp Firmware, Google Android, Qualcomm Wcn6855 Firmware, Google Android, Qualcomm Wcn6856 Firmware, Google Android, Qualcomm Wsa8830 Firmware, Google Android, Qualcomm Wsa8835 Firmware.

What is the severity of CVE-2021-30304?

CVE-2021-30304 has a severity rating of 9.1 (Critical).

How can I fix CVE-2021-30304?

To fix CVE-2021-30304, it is recommended to apply the latest patches and updates provided by Qualcomm.

Where can I find more information about CVE-2021-30304?

More information about CVE-2021-30304 can be found on the official Qualcomm Product Security Bulletins page: https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin.

Vulnerability/
CVE-2021-30304

critical

9.1

CWE

125

20/10/2021

3/8/2024

CVE-2021-30304

First published: Wed Oct 20 2021(Updated: )

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Qualcomm Qca2062 Firmware
Qualcomm Qca2062
Qualcomm Qca2064 Firmware
Qualcomm Qca2064
Qualcomm Qca2065 Firmware
Qualcomm Qca2065
Qualcomm Qca2066 Firmware
Qualcomm Qca2066
Qualcomm Sc8280xp Firmware
Qualcomm Sc8280xp
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Qualcomm Wcn6855 Firmware
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android

Never miss a vulnerability like this again

Reference Links

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Frequently Asked Questions

What is CVE-2021-30304?
CVE-2021-30304 is a vulnerability that can cause a possible buffer out of bound read due to improper validation of TBTT count and length.
What software is affected by CVE-2021-30304?
Qualcomm Qca2062 Firmware, Qualcomm Qca2064 Firmware, Qualcomm Qca2065 Firmware, Qualcomm Qca2066 Firmware, Qualcomm Sc8280xp Firmware, Google Android, Qualcomm Wcn6855 Firmware, Google Android, Qualcomm Wcn6856 Firmware, Google Android, Qualcomm Wsa8830 Firmware, Google Android, Qualcomm Wsa8835 Firmware.
What is the severity of CVE-2021-30304?
CVE-2021-30304 has a severity rating of 9.1 (Critical).
How can I fix CVE-2021-30304?
To fix CVE-2021-30304, it is recommended to apply the latest patches and updates provided by Qualcomm.
Where can I find more information about CVE-2021-30304?
More information about CVE-2021-30304 can be found on the official Qualcomm Product Security Bulletins page: https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.