CVE-2021-35093
First published: Mon Jan 03 2022(Updated: )
Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service in BlueCore
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm CSR8510 A10 | ||
| Qualcomm CSR8510 A10 Firmware | ||
| Qualcomm CSR8811 A12 Firmware | ||
| Qualcomm Csr8811 A12 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-35093?
The severity level of CVE-2021-35093 is categorized as high due to its potential to cause a denial of service.
How do I fix CVE-2021-35093?
To mitigate CVE-2021-35093, update the firmware of affected Qualcomm Bluetooth controllers to the latest version provided by Qualcomm.
What are the affected devices in CVE-2021-35093?
CVE-2021-35093 specifically affects Qualcomm CSR8510 A10 and CSR8811 Bluetooth controller firmware.
What type of attack does CVE-2021-35093 enable?
CVE-2021-35093 can lead to a denial of service attack by exploiting memory corruption through oversized LMP packets.
Is CVE-2021-35093 a hardware or software vulnerability?
CVE-2021-35093 is a firmware vulnerability affecting the software running on Qualcomm Bluetooth chipsets.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/qualcomm
- canonical/qualcomm csr8510 a10 firmware
- canonical/qualcomm csr8811 firmware
- canonical/qualcomm csr8811 a12 firmware