CVE-2021-1983 | Severity.io

Description

Possible buffer overflow due to improper handling of negative data length while processing write request in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

Related CPE's

apq8017_firmware

Vulnerable

apq8053_firmware

Vulnerable

apq8064au_firmware

Vulnerable

apq8096au_firmware

Vulnerable

aqt1000_firmware

Vulnerable

msm8917_firmware

Vulnerable

msm8953_firmware

Vulnerable

msm8996au_firmware

Vulnerable

qca6310_firmware

Vulnerable

qca6320_firmware

Vulnerable

qca6335_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6420_firmware

Vulnerable

qca6426_firmware

Vulnerable

qca6430_firmware

Vulnerable

qca6436_firmware

Vulnerable

qca6564a_firmware

Vulnerable

qca6564au_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qcm2290_firmware

Vulnerable

qcm4290_firmware

Vulnerable

qcm6125_firmware

Vulnerable

qcm6490_firmware

Vulnerable

qcs2290_firmware

Vulnerable

qcs4290_firmware

Vulnerable

qcs603_firmware

Vulnerable

qcs605_firmware

Vulnerable

qcs610_firmware

Vulnerable

qcs6125_firmware

Vulnerable

qcs6490_firmware

Vulnerable

qualcomm215_firmware

Vulnerable

sd_455_firmware

Vulnerable

sd_636_firmware

Vulnerable

sd_675_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd690_5g_firmware

Vulnerable

sd720g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

sd778g_firmware

Vulnerable

sd780g_firmware

Vulnerable

Vulnerable

sd865_5g_firmware

Vulnerable

Vulnerable

Vulnerable

sd888_5g_firmware

Vulnerable

sdm630_firmware

Vulnerable

sdx50m_firmware

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

Vulnerable

sdxr2_5g_firmware

Vulnerable

sm4125_firmware

Vulnerable

sm6250_firmware

Vulnerable

sm6250p_firmware

Vulnerable

sm7250_firmware

Vulnerable

sm7325_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9371_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3610_firmware

Vulnerable

wcn3615_firmware

Vulnerable

wcn3660b_firmware

Vulnerable

wcn3680_firmware

Vulnerable

wcn3680b_firmware

Vulnerable

wcn3910_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn6740_firmware

Vulnerable

wcn6750_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6855_firmware

Vulnerable

wcn6856_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-120

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-10-20T07:15:08.087

3 years ago

Last modified

2021-10-26T18:34:22.493

3 years ago