CVE-2021-1952

Q: What is the severity of CVE-2021-1952?

CVE-2021-1952 has a CVSS score of 7.8 (HIGH). A buffer over-read vulnerability in Qualcomm Snapdragon chipsets allows attackers to read memory beyond allocated buffers due to insufficient length validation. This affects devices using vulnerable Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, and Voice & Music chipsets. Attackers could potentially access sensitive information or cause system instability.

7.8 HIGH

Buffer Overflow

📋 TL;DR

A buffer over-read vulnerability in Qualcomm Snapdragon chipsets allows attackers to read memory beyond allocated buffers due to insufficient length validation. This affects devices using vulnerable Snapdragon Auto, Compute, Connectivity, Consumer IoT, Industrial IoT, and Voice & Music chipsets. Attackers could potentially access sensitive information or cause system instability.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Consumer IOT
Snapdragon Industrial IOT
Snapdragon Voice & Music

Versions: Specific chipset versions not detailed in public advisory; affected by firmware/driver implementations.

Operating Systems: Android, Linux-based embedded systems, QNX, Other embedded OS using Qualcomm chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability exists in chipset firmware/drivers; exact affected configurations depend on device manufacturer implementations and firmware versions.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Information disclosure of sensitive data from adjacent memory, potential system crash or instability, possible escalation to arbitrary code execution if combined with other vulnerabilities.

🟠

Likely Case

Information disclosure of adjacent memory contents, potential denial of service through system crashes or reboots.

🟢

If Mitigated

Limited impact with proper memory isolation and access controls; potential for system logs to detect abnormal behavior.

🌐 Internet-Facing: MEDIUM - Requires local access or ability to send crafted requests to affected components; not directly exploitable over internet without additional attack vectors.

🏢 Internal Only: MEDIUM - Requires local access to device or ability to interact with vulnerable components; could be exploited by malicious apps or users with device access.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires ability to send crafted requests to vulnerable components; typically requires local access or compromised application.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Varies by device manufacturer; check specific device vendor security updates

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for security updates. 2. Apply firmware/software updates from device vendor. 3. Reboot device after update installation. 4. Verify update was successfully applied.

🔧 Temporary Workarounds

Restrict local access

all

Limit physical and network access to affected devices to trusted users only

Application sandboxing

all

Implement strict application sandboxing to limit potential attack surface

🧯 If You Can't Patch

Isolate affected devices on separate network segments
Implement strict access controls and monitoring for suspicious memory access patterns

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against manufacturer security bulletins; use Qualcomm's security advisory to identify affected chipset versions

Check Version:

Device-specific commands vary; typically 'cat /proc/version' or manufacturer-specific system info commands

Verify Fix Applied:

Verify firmware version has been updated to patched version from device manufacturer

📡 Detection & Monitoring

Log Indicators:

Unexpected system crashes or reboots
Memory access violation logs
Abnormal process behavior in system logs

Network Indicators:

Unusual local network traffic to device management interfaces
Suspicious inter-process communication patterns

SIEM Query:

Search for: 'buffer overflow' OR 'memory violation' OR 'segmentation fault' in system logs from Qualcomm-based devices

📊 Metadata

CVE ID: CVE-2021-1952

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-125

Published: September 9, 2021

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Aqt1000 Firmware by Qualcomm

Ar8031 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Mdm9150 Firmware by Qualcomm

Mdm9205 Firmware by Qualcomm

Qca4004 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6420 Firmware by Qualcomm

Qca6421 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6430 Firmware by Qualcomm

Qca6431 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4290 Firmware by Qualcomm

Qcm6125 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs405 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs6125 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcx315 Firmware by Qualcomm

Qrb5165 Firmware by Qualcomm

Qsm8250 Firmware by Qualcomm

Qsm8350 Firmware by Qualcomm

Sa415m Firmware by Qualcomm

Sa515m Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155 Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sc8180x\+sdx55 Firmware by Qualcomm

Sd 675 Firmware by Qualcomm

Sd 8c Firmware by Qualcomm

Sd 8cx Firmware by Qualcomm

Sd460 Firmware by Qualcomm

Sd480 Firmware by Qualcomm

Sd662 Firmware by Qualcomm

Sd665 Firmware by Qualcomm

Sd670 Firmware by Qualcomm

Sd675 Firmware by Qualcomm

Sd678 Firmware by Qualcomm

Sd690 5g Firmware by Qualcomm

Sd720g Firmware by Qualcomm

Sd730 Firmware by Qualcomm

Sd750g Firmware by Qualcomm

Sd765 Firmware by Qualcomm

Sd765g Firmware by Qualcomm

Sd768g Firmware by Qualcomm

Sd778g Firmware by Qualcomm

Sd780g Firmware by Qualcomm

Sd7c Firmware by Qualcomm

Sd855 Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Sd870 Firmware by Qualcomm

Sd888 5g Firmware by Qualcomm

Sdx50m Firmware by Qualcomm

Sdx55 Firmware by Qualcomm

Sdx55m Firmware by Qualcomm