CVE-2021-35110Incorrect Type Conversion or Cast in Google Android

CWE-704Incorrect Type Conversion or Cast3 documents3 sources
Severity
8.8HIGHNVD
EPSS
0.1%
top 73.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Android
Timeline
PublishedApr 1
Latest updateApr 2

Description

Possible buffer overflow to improper validation of hash segment of file while allocating memory in Snapdragon Connectivity, Snapdragon Mobile

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-vhfm-jw2x-69j4: Possible buffer overflow to improper validation of hash segment of file while allocating memory in Snapdragon Connectivity, Snapdragon Mobile2022-04-02

📋Vendor Advisories

1
Android
CVE-2021-35110: Closed-source component2022-03-01
CVE-2021-35110 — Incorrect Type Conversion or Cast | cvebase