CVE-2021-1972

9.8 CRITICAL

Remote Code Execution Buffer Overflow

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary code on affected Qualcomm Snapdragon devices due to a buffer overflow in the P2P search functionality. Attackers can exploit improper validation of device types to trigger memory corruption. This affects numerous Snapdragon product lines across automotive, mobile, IoT, and networking devices.

💻 Affected Systems

Products:

• Snapdragon Auto
• Snapdragon Compute
• Snapdragon Connectivity
• Snapdragon Consumer IOT
• Snapdragon Industrial IOT
• Snapdragon Mobile
• Snapdragon Voice & Music
• Snapdragon Wearables
• Snapdragon Wired Infrastructure and Networking

Versions: Specific affected versions not detailed in public advisory; refer to Qualcomm security bulletin for exact version ranges.

Operating Systems: Android-based systems and other embedded OS using affected Snapdragon chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with P2P functionality enabled. The vulnerability is in the chipset firmware/software, not the application layer.

📦 What is this software?

Apq8009 Firmware by Qualcomm

View all CVEs affecting Apq8009 Firmware →

Apq8009w Firmware by Qualcomm

View all CVEs affecting Apq8009w Firmware →

Apq8017 Firmware by Qualcomm

View all CVEs affecting Apq8017 Firmware →

Apq8053 Firmware by Qualcomm

View all CVEs affecting Apq8053 Firmware →

Apq8064au Firmware by Qualcomm

View all CVEs affecting Apq8064au Firmware →

Apq8076 Firmware by Qualcomm

View all CVEs affecting Apq8076 Firmware →

Apq8096au Firmware by Qualcomm

View all CVEs affecting Apq8096au Firmware →

Aqt1000 Firmware by Qualcomm

View all CVEs affecting Aqt1000 Firmware →

Ar6003 Firmware by Qualcomm

View all CVEs affecting Ar6003 Firmware →

Ar7420 Firmware by Qualcomm

View all CVEs affecting Ar7420 Firmware →

Ar8031 Firmware by Qualcomm

View all CVEs affecting Ar8031 Firmware →

Ar8035 Firmware by Qualcomm

View all CVEs affecting Ar8035 Firmware →

Ar9380 Firmware by Qualcomm

View all CVEs affecting Ar9380 Firmware →

Csr6030 Firmware by Qualcomm

View all CVEs affecting Csr6030 Firmware →

Csr8811 Firmware by Qualcomm

View all CVEs affecting Csr8811 Firmware →

Csra6620 Firmware by Qualcomm

View all CVEs affecting Csra6620 Firmware →

Csra6640 Firmware by Qualcomm

View all CVEs affecting Csra6640 Firmware →

Csrb31024 Firmware by Qualcomm

View all CVEs affecting Csrb31024 Firmware →

Fsm10055 Firmware by Qualcomm

View all CVEs affecting Fsm10055 Firmware →

Fsm10056 Firmware by Qualcomm

View all CVEs affecting Fsm10056 Firmware →

Ipq4018 Firmware by Qualcomm

View all CVEs affecting Ipq4018 Firmware →

Ipq4019 Firmware by Qualcomm

View all CVEs affecting Ipq4019 Firmware →

Ipq4028 Firmware by Qualcomm

View all CVEs affecting Ipq4028 Firmware →

Ipq4029 Firmware by Qualcomm

View all CVEs affecting Ipq4029 Firmware →

Ipq5010 Firmware by Qualcomm

View all CVEs affecting Ipq5010 Firmware →

Ipq5018 Firmware by Qualcomm

View all CVEs affecting Ipq5018 Firmware →

Ipq5028 Firmware by Qualcomm

View all CVEs affecting Ipq5028 Firmware →

Ipq6000 Firmware by Qualcomm

View all CVEs affecting Ipq6000 Firmware →

Ipq6005 Firmware by Qualcomm

View all CVEs affecting Ipq6005 Firmware →

Ipq6010 Firmware by Qualcomm

View all CVEs affecting Ipq6010 Firmware →

Ipq6018 Firmware by Qualcomm

View all CVEs affecting Ipq6018 Firmware →

Ipq6028 Firmware by Qualcomm

View all CVEs affecting Ipq6028 Firmware →

Ipq8064 Firmware by Qualcomm

View all CVEs affecting Ipq8064 Firmware →

Ipq8065 Firmware by Qualcomm

View all CVEs affecting Ipq8065 Firmware →

Ipq8068 Firmware by Qualcomm

View all CVEs affecting Ipq8068 Firmware →

Ipq8069 Firmware by Qualcomm

View all CVEs affecting Ipq8069 Firmware →

Ipq8070 Firmware by Qualcomm

View all CVEs affecting Ipq8070 Firmware →

Ipq8070a Firmware by Qualcomm

View all CVEs affecting Ipq8070a Firmware →

Ipq8071 Firmware by Qualcomm

View all CVEs affecting Ipq8071 Firmware →

Ipq8071a Firmware by Qualcomm

View all CVEs affecting Ipq8071a Firmware →

Ipq8072 Firmware by Qualcomm

View all CVEs affecting Ipq8072 Firmware →

Ipq8072a Firmware by Qualcomm

View all CVEs affecting Ipq8072a Firmware →

Ipq8074 Firmware by Qualcomm

View all CVEs affecting Ipq8074 Firmware →

Ipq8074a Firmware by Qualcomm

View all CVEs affecting Ipq8074a Firmware →

Ipq8076 Firmware by Qualcomm

View all CVEs affecting Ipq8076 Firmware →

Ipq8076a Firmware by Qualcomm

View all CVEs affecting Ipq8076a Firmware →

Ipq8078 Firmware by Qualcomm

View all CVEs affecting Ipq8078 Firmware →

Ipq8078a Firmware by Qualcomm

View all CVEs affecting Ipq8078a Firmware →

Ipq8173 Firmware by Qualcomm

View all CVEs affecting Ipq8173 Firmware →

Ipq8174 Firmware by Qualcomm

View all CVEs affecting Ipq8174 Firmware →

Mdm8215 Firmware by Qualcomm

View all CVEs affecting Mdm8215 Firmware →

Mdm8215m Firmware by Qualcomm

View all CVEs affecting Mdm8215m Firmware →

Mdm8615m Firmware by Qualcomm

View all CVEs affecting Mdm8615m Firmware →

Mdm9150 Firmware by Qualcomm

View all CVEs affecting Mdm9150 Firmware →

Mdm9206 Firmware by Qualcomm

View all CVEs affecting Mdm9206 Firmware →

Mdm9215 Firmware by Qualcomm

View all CVEs affecting Mdm9215 Firmware →

Mdm9230 Firmware by Qualcomm

View all CVEs affecting Mdm9230 Firmware →

Mdm9250 Firmware by Qualcomm

View all CVEs affecting Mdm9250 Firmware →

Mdm9310 Firmware by Qualcomm

View all CVEs affecting Mdm9310 Firmware →

Mdm9330 Firmware by Qualcomm

View all CVEs affecting Mdm9330 Firmware →

Mdm9607 Firmware by Qualcomm

View all CVEs affecting Mdm9607 Firmware →

Mdm9615 Firmware by Qualcomm

View all CVEs affecting Mdm9615 Firmware →

Mdm9615m Firmware by Qualcomm

View all CVEs affecting Mdm9615m Firmware →

Mdm9626 Firmware by Qualcomm

View all CVEs affecting Mdm9626 Firmware →

Mdm9628 Firmware by Qualcomm

View all CVEs affecting Mdm9628 Firmware →

Mdm9630 Firmware by Qualcomm

View all CVEs affecting Mdm9630 Firmware →

Mdm9640 Firmware by Qualcomm

View all CVEs affecting Mdm9640 Firmware →

Mdm9650 Firmware by Qualcomm

View all CVEs affecting Mdm9650 Firmware →

Msm8909w Firmware by Qualcomm

View all CVEs affecting Msm8909w Firmware →

Msm8917 Firmware by Qualcomm

View all CVEs affecting Msm8917 Firmware →

Msm8953 Firmware by Qualcomm

View all CVEs affecting Msm8953 Firmware →

Msm8996au Firmware by Qualcomm

View all CVEs affecting Msm8996au Firmware →

Pmp8074 Firmware by Qualcomm

View all CVEs affecting Pmp8074 Firmware →

Qca4020 Firmware by Qualcomm

View all CVEs affecting Qca4020 Firmware →

Qca4024 Firmware by Qualcomm

View all CVEs affecting Qca4024 Firmware →

Qca6174 Firmware by Qualcomm

View all CVEs affecting Qca6174 Firmware →

Qca6174a Firmware by Qualcomm

View all CVEs affecting Qca6174a Firmware →

Qca6310 Firmware by Qualcomm

View all CVEs affecting Qca6310 Firmware →

Qca6320 Firmware by Qualcomm

View all CVEs affecting Qca6320 Firmware →

Qca6335 Firmware by Qualcomm

View all CVEs affecting Qca6335 Firmware →

Qca6390 Firmware by Qualcomm

View all CVEs affecting Qca6390 Firmware →

Qca6391 Firmware by Qualcomm

View all CVEs affecting Qca6391 Firmware →

Qca6420 Firmware by Qualcomm

View all CVEs affecting Qca6420 Firmware →

Qca6421 Firmware by Qualcomm

View all CVEs affecting Qca6421 Firmware →

Qca6426 Firmware by Qualcomm

View all CVEs affecting Qca6426 Firmware →

Qca6428 Firmware by Qualcomm

View all CVEs affecting Qca6428 Firmware →

Qca6430 Firmware by Qualcomm

View all CVEs affecting Qca6430 Firmware →

Qca6431 Firmware by Qualcomm

View all CVEs affecting Qca6431 Firmware →

Qca6436 Firmware by Qualcomm

View all CVEs affecting Qca6436 Firmware →

Qca6438 Firmware by Qualcomm

View all CVEs affecting Qca6438 Firmware →

Qca6564 Firmware by Qualcomm

View all CVEs affecting Qca6564 Firmware →

Qca6564a Firmware by Qualcomm

View all CVEs affecting Qca6564a Firmware →

Qca6564au Firmware by Qualcomm

View all CVEs affecting Qca6564au Firmware →

Qca6574 Firmware by Qualcomm

View all CVEs affecting Qca6574 Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6574au Firmware by Qualcomm

View all CVEs affecting Qca6574au Firmware →

Qca6584 Firmware by Qualcomm

View all CVEs affecting Qca6584 Firmware →

Qca6584au Firmware by Qualcomm

View all CVEs affecting Qca6584au Firmware →

Qca6595 Firmware by Qualcomm

View all CVEs affecting Qca6595 Firmware →

Qca6595au Firmware by Qualcomm

View all CVEs affecting Qca6595au Firmware →

Qca6694 Firmware by Qualcomm

View all CVEs affecting Qca6694 Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Qca7500 Firmware by Qualcomm

View all CVEs affecting Qca7500 Firmware →

Qca7520 Firmware by Qualcomm

View all CVEs affecting Qca7520 Firmware →

Qca7550 Firmware by Qualcomm

View all CVEs affecting Qca7550 Firmware →

Qca8072 Firmware by Qualcomm

View all CVEs affecting Qca8072 Firmware →

Qca8075 Firmware by Qualcomm

View all CVEs affecting Qca8075 Firmware →

Qca8081 Firmware by Qualcomm

View all CVEs affecting Qca8081 Firmware →

Qca8337 Firmware by Qualcomm

View all CVEs affecting Qca8337 Firmware →

Qca9367 Firmware by Qualcomm

View all CVEs affecting Qca9367 Firmware →

Qca9377 Firmware by Qualcomm

View all CVEs affecting Qca9377 Firmware →

Qca9379 Firmware by Qualcomm

View all CVEs affecting Qca9379 Firmware →

Qca9531 Firmware by Qualcomm

View all CVEs affecting Qca9531 Firmware →

Qca9558 Firmware by Qualcomm

View all CVEs affecting Qca9558 Firmware →

Qca9561 Firmware by Qualcomm

View all CVEs affecting Qca9561 Firmware →

Qca9563 Firmware by Qualcomm

View all CVEs affecting Qca9563 Firmware →

Qca9880 Firmware by Qualcomm

View all CVEs affecting Qca9880 Firmware →

Qca9882 Firmware by Qualcomm

View all CVEs affecting Qca9882 Firmware →

Qca9886 Firmware by Qualcomm

View all CVEs affecting Qca9886 Firmware →

Qca9887 Firmware by Qualcomm

View all CVEs affecting Qca9887 Firmware →

Qca9888 Firmware by Qualcomm

View all CVEs affecting Qca9888 Firmware →

Qca9889 Firmware by Qualcomm

View all CVEs affecting Qca9889 Firmware →

Qca9896 Firmware by Qualcomm

View all CVEs affecting Qca9896 Firmware →

Qca9898 Firmware by Qualcomm

View all CVEs affecting Qca9898 Firmware →

Qca9980 Firmware by Qualcomm

View all CVEs affecting Qca9980 Firmware →

Qca9982 Firmware by Qualcomm

View all CVEs affecting Qca9982 Firmware →

Qca9984 Firmware by Qualcomm

View all CVEs affecting Qca9984 Firmware →

Qca9985 Firmware by Qualcomm

View all CVEs affecting Qca9985 Firmware →

Qca9986 Firmware by Qualcomm

View all CVEs affecting Qca9986 Firmware →

Qca9987 Firmware by Qualcomm

View all CVEs affecting Qca9987 Firmware →

Qca9988 Firmware by Qualcomm

View all CVEs affecting Qca9988 Firmware →

Qca9990 Firmware by Qualcomm

View all CVEs affecting Qca9990 Firmware →

Qca9992 Firmware by Qualcomm

View all CVEs affecting Qca9992 Firmware →

Qca9994 Firmware by Qualcomm

View all CVEs affecting Qca9994 Firmware →

Qcm2290 Firmware by Qualcomm

View all CVEs affecting Qcm2290 Firmware →

Qcm4290 Firmware by Qualcomm

View all CVEs affecting Qcm4290 Firmware →

Qcm6125 Firmware by Qualcomm

View all CVEs affecting Qcm6125 Firmware →

Qcn3018 Firmware by Qualcomm

View all CVEs affecting Qcn3018 Firmware →

Qcn5021 Firmware by Qualcomm

View all CVEs affecting Qcn5021 Firmware →

Qcn5022 Firmware by Qualcomm

View all CVEs affecting Qcn5022 Firmware →

Qcn5024 Firmware by Qualcomm

View all CVEs affecting Qcn5024 Firmware →

Qcn5052 Firmware by Qualcomm

View all CVEs affecting Qcn5052 Firmware →

Qcn5054 Firmware by Qualcomm

View all CVEs affecting Qcn5054 Firmware →

Qcn5064 Firmware by Qualcomm

View all CVEs affecting Qcn5064 Firmware →

Qcn5121 Firmware by Qualcomm

View all CVEs affecting Qcn5121 Firmware →

Qcn5122 Firmware by Qualcomm

View all CVEs affecting Qcn5122 Firmware →

Qcn5124 Firmware by Qualcomm

View all CVEs affecting Qcn5124 Firmware →

Qcn5152 Firmware by Qualcomm

View all CVEs affecting Qcn5152 Firmware →

Qcn5154 Firmware by Qualcomm

View all CVEs affecting Qcn5154 Firmware →

Qcn5164 Firmware by Qualcomm

View all CVEs affecting Qcn5164 Firmware →

Qcn5500 Firmware by Qualcomm

View all CVEs affecting Qcn5500 Firmware →

Qcn5502 Firmware by Qualcomm

View all CVEs affecting Qcn5502 Firmware →

Qcn5550 Firmware by Qualcomm

View all CVEs affecting Qcn5550 Firmware →

Qcn6023 Firmware by Qualcomm

View all CVEs affecting Qcn6023 Firmware →

Qcn6024 Firmware by Qualcomm

View all CVEs affecting Qcn6024 Firmware →

Qcn6122 Firmware by Qualcomm

View all CVEs affecting Qcn6122 Firmware →

Qcn9000 Firmware by Qualcomm

View all CVEs affecting Qcn9000 Firmware →

Qcn9012 Firmware by Qualcomm

View all CVEs affecting Qcn9012 Firmware →

Qcn9022 Firmware by Qualcomm

View all CVEs affecting Qcn9022 Firmware →

Qcn9024 Firmware by Qualcomm

View all CVEs affecting Qcn9024 Firmware →

Qcn9070 Firmware by Qualcomm

View all CVEs affecting Qcn9070 Firmware →

Qcn9072 Firmware by Qualcomm

View all CVEs affecting Qcn9072 Firmware →

Qcn9074 Firmware by Qualcomm

View all CVEs affecting Qcn9074 Firmware →

Qcn9100 Firmware by Qualcomm

View all CVEs affecting Qcn9100 Firmware →

Qcs2290 Firmware by Qualcomm

View all CVEs affecting Qcs2290 Firmware →

Qcs405 Firmware by Qualcomm

View all CVEs affecting Qcs405 Firmware →

Qcs410 Firmware by Qualcomm

View all CVEs affecting Qcs410 Firmware →

Qcs4290 Firmware by Qualcomm

View all CVEs affecting Qcs4290 Firmware →

Qcs603 Firmware by Qualcomm

View all CVEs affecting Qcs603 Firmware →

Qcs605 Firmware by Qualcomm

View all CVEs affecting Qcs605 Firmware →

Qcs610 Firmware by Qualcomm

View all CVEs affecting Qcs610 Firmware →

Qcs6125 Firmware by Qualcomm

View all CVEs affecting Qcs6125 Firmware →

Qcx315 Firmware by Qualcomm

View all CVEs affecting Qcx315 Firmware →

Qfe1922 Firmware by Qualcomm

View all CVEs affecting Qfe1922 Firmware →

Qfe1952 Firmware by Qualcomm

View all CVEs affecting Qfe1952 Firmware →

Qrb5165 Firmware by Qualcomm

View all CVEs affecting Qrb5165 Firmware →

Qualcomm215 Firmware by Qualcomm

View all CVEs affecting Qualcomm215 Firmware →

Sa415m Firmware by Qualcomm

View all CVEs affecting Sa415m Firmware →

Sa515m Firmware by Qualcomm

View all CVEs affecting Sa515m Firmware →

Sa6145p Firmware by Qualcomm

View all CVEs affecting Sa6145p Firmware →

Sa6150p Firmware by Qualcomm

View all CVEs affecting Sa6150p Firmware →

Sa6155 Firmware by Qualcomm

View all CVEs affecting Sa6155 Firmware →

Sa6155p Firmware by Qualcomm

View all CVEs affecting Sa6155p Firmware →

Sa8145p Firmware by Qualcomm

View all CVEs affecting Sa8145p Firmware →

Sa8150p Firmware by Qualcomm

View all CVEs affecting Sa8150p Firmware →

Sa8155 Firmware by Qualcomm

View all CVEs affecting Sa8155 Firmware →

Sa8155p Firmware by Qualcomm

View all CVEs affecting Sa8155p Firmware →

Sa8195p Firmware by Qualcomm

View all CVEs affecting Sa8195p Firmware →

Sd 455 Firmware by Qualcomm

View all CVEs affecting Sd 455 Firmware →

Sd 636 Firmware by Qualcomm

View all CVEs affecting Sd 636 Firmware →

Sd 675 Firmware by Qualcomm

View all CVEs affecting Sd 675 Firmware →

Sd 8c Firmware by Qualcomm

View all CVEs affecting Sd 8c Firmware →

Sd 8cx Firmware by Qualcomm

View all CVEs affecting Sd 8cx Firmware →

Sd205 Firmware by Qualcomm

View all CVEs affecting Sd205 Firmware →

Sd210 Firmware by Qualcomm

View all CVEs affecting Sd210 Firmware →

Sd429 Firmware by Qualcomm

View all CVEs affecting Sd429 Firmware →

Sd439 Firmware by Qualcomm

View all CVEs affecting Sd439 Firmware →

Sd450 Firmware by Qualcomm

View all CVEs affecting Sd450 Firmware →

Sd460 Firmware by Qualcomm

View all CVEs affecting Sd460 Firmware →

Sd480 Firmware by Qualcomm

View all CVEs affecting Sd480 Firmware →

Sd632 Firmware by Qualcomm

View all CVEs affecting Sd632 Firmware →

Sd660 Firmware by Qualcomm

View all CVEs affecting Sd660 Firmware →

Sd662 Firmware by Qualcomm

View all CVEs affecting Sd662 Firmware →

Sd665 Firmware by Qualcomm

View all CVEs affecting Sd665 Firmware →

Sd670 Firmware by Qualcomm

View all CVEs affecting Sd670 Firmware →

Sd675 Firmware by Qualcomm

View all CVEs affecting Sd675 Firmware →

Sd678 Firmware by Qualcomm

View all CVEs affecting Sd678 Firmware →

Sd690 5g Firmware by Qualcomm

View all CVEs affecting Sd690 5g Firmware →

Sd710 Firmware by Qualcomm

View all CVEs affecting Sd710 Firmware →

Sd720g Firmware by Qualcomm

View all CVEs affecting Sd720g Firmware →

Sd730 Firmware by Qualcomm

View all CVEs affecting Sd730 Firmware →

Sd750g Firmware by Qualcomm

View all CVEs affecting Sd750g Firmware →

Sd765 Firmware by Qualcomm

View all CVEs affecting Sd765 Firmware →

Sd765g Firmware by Qualcomm

View all CVEs affecting Sd765g Firmware →

Sd768g Firmware by Qualcomm

View all CVEs affecting Sd768g Firmware →

Sd778g Firmware by Qualcomm

View all CVEs affecting Sd778g Firmware →

Sd780g Firmware by Qualcomm

View all CVEs affecting Sd780g Firmware →

Sd835 Firmware by Qualcomm

View all CVEs affecting Sd835 Firmware →

Sd845 Firmware by Qualcomm

View all CVEs affecting Sd845 Firmware →

Sd855 Firmware by Qualcomm

View all CVEs affecting Sd855 Firmware →

Sd865 5g Firmware by Qualcomm

View all CVEs affecting Sd865 5g Firmware →

Sd870 Firmware by Qualcomm

View all CVEs affecting Sd870 Firmware →

Sd888 5g Firmware by Qualcomm

View all CVEs affecting Sd888 5g Firmware →

Sd888 Firmware by Qualcomm

View all CVEs affecting Sd888 Firmware →

Sdm429w Firmware by Qualcomm

View all CVEs affecting Sdm429w Firmware →

Sdm630 Firmware by Qualcomm

View all CVEs affecting Sdm630 Firmware →

Sdm830 Firmware by Qualcomm

View all CVEs affecting Sdm830 Firmware →

Sdw2500 Firmware by Qualcomm

View all CVEs affecting Sdw2500 Firmware →

Sdx12 Firmware by Qualcomm

View all CVEs affecting Sdx12 Firmware →

Sdx20 Firmware by Qualcomm

View all CVEs affecting Sdx20 Firmware →

Sdx20m Firmware by Qualcomm

View all CVEs affecting Sdx20m Firmware →

Sdx24 Firmware by Qualcomm

View all CVEs affecting Sdx24 Firmware →

Sdx50m Firmware by Qualcomm

View all CVEs affecting Sdx50m Firmware →

Sdx55 Firmware by Qualcomm

View all CVEs affecting Sdx55 Firmware →

Sdx55m Firmware by Qualcomm

View all CVEs affecting Sdx55m Firmware →

Sdxr1 Firmware by Qualcomm

View all CVEs affecting Sdxr1 Firmware →

Sdxr2 5g Firmware by Qualcomm

View all CVEs affecting Sdxr2 5g Firmware →

Sm4125 Firmware by Qualcomm

View all CVEs affecting Sm4125 Firmware →

Sm6250 Firmware by Qualcomm

View all CVEs affecting Sm6250 Firmware →

Sm6250p Firmware by Qualcomm

View all CVEs affecting Sm6250p Firmware →

Sm7250 Firmware by Qualcomm

View all CVEs affecting Sm7250 Firmware →

Sm7325 Firmware by Qualcomm

View all CVEs affecting Sm7325 Firmware →

Wcd9306 Firmware by Qualcomm

View all CVEs affecting Wcd9306 Firmware →

Wcd9326 Firmware by Qualcomm

View all CVEs affecting Wcd9326 Firmware →

Wcd9330 Firmware by Qualcomm

View all CVEs affecting Wcd9330 Firmware →

Wcd9335 Firmware by Qualcomm

View all CVEs affecting Wcd9335 Firmware →

Wcd9340 Firmware by Qualcomm

View all CVEs affecting Wcd9340 Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9371 Firmware by Qualcomm

View all CVEs affecting Wcd9371 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcn3610 Firmware by Qualcomm

View all CVEs affecting Wcn3610 Firmware →

Wcn3615 Firmware by Qualcomm

View all CVEs affecting Wcn3615 Firmware →

Wcn3620 Firmware by Qualcomm

View all CVEs affecting Wcn3620 Firmware →

Wcn3660 Firmware by Qualcomm

View all CVEs affecting Wcn3660 Firmware →

Wcn3660b Firmware by Qualcomm

View all CVEs affecting Wcn3660b Firmware →

Wcn3680 Firmware by Qualcomm

View all CVEs affecting Wcn3680 Firmware →

Wcn3680b Firmware by Qualcomm

View all CVEs affecting Wcn3680b Firmware →

Wcn3910 Firmware by Qualcomm

View all CVEs affecting Wcn3910 Firmware →

Wcn3950 Firmware by Qualcomm

View all CVEs affecting Wcn3950 Firmware →

Wcn3980 Firmware by Qualcomm

View all CVEs affecting Wcn3980 Firmware →

Wcn3988 Firmware by Qualcomm

View all CVEs affecting Wcn3988 Firmware →

Wcn3990 Firmware by Qualcomm

View all CVEs affecting Wcn3990 Firmware →

Wcn3991 Firmware by Qualcomm

View all CVEs affecting Wcn3991 Firmware →

Wcn3998 Firmware by Qualcomm

View all CVEs affecting Wcn3998 Firmware →

Wcn3999 Firmware by Qualcomm

View all CVEs affecting Wcn3999 Firmware →

Wcn6740 Firmware by Qualcomm

View all CVEs affecting Wcn6740 Firmware →

Wcn6750 Firmware by Qualcomm

View all CVEs affecting Wcn6750 Firmware →

Wcn6850 Firmware by Qualcomm

View all CVEs affecting Wcn6850 Firmware →

Wcn6851 Firmware by Qualcomm

View all CVEs affecting Wcn6851 Firmware →

Wcn6856 Firmware by Qualcomm

View all CVEs affecting Wcn6856 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wsa8830 Firmware by Qualcomm

View all CVEs affecting Wsa8830 Firmware →

Wsa8835 Firmware by Qualcomm

View all CVEs affecting Wsa8835 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with full system compromise, allowing attackers to take complete control of affected devices, install malware, or exfiltrate sensitive data.

🟠

Likely Case

Remote code execution leading to device compromise, potential data theft, or device becoming part of a botnet.

🟢

If Mitigated

Denial of service or limited information disclosure if exploit attempts are detected and blocked by security controls.

🌐 Internet-Facing: HIGH - The vulnerability affects P2P functionality that can be triggered remotely over networks.

🏢 Internal Only: MEDIUM - Internal network exploitation possible if devices are network-accessible.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

CVSS 9.8 indicates critical severity with network attack vector and no authentication required. No public exploit code was available at advisory publication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to device manufacturer updates; Qualcomm provides patches to OEMs.

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for firmware/software updates. 2. Apply manufacturer-provided patches. 3. Reboot device after update. 4. Verify patch installation through version checks.

🔧 Temporary Workarounds

Disable P2P functionality

all

Disable Wi-Fi Direct/P2P search features on affected devices if not required.

Copy

Device-specific commands vary by manufacturer; check device settings for Wi-Fi Direct/P2P options.

Network segmentation

all

Isolate affected devices on separate network segments to limit attack surface.

Copy

Configure network ACLs/firewalls to restrict P2P traffic between untrusted networks.

🧯 If You Can't Patch

• Implement strict network access controls to limit device exposure
• Monitor for unusual P2P network activity and exploit attempts

🔍 How to Verify

Check if Vulnerable:

Copy

Check device firmware version against manufacturer's patched versions. Use Qualcomm's advisory to identify affected chipset versions.

Check Version:

Copy

Device-specific; typically 'adb shell getprop ro.build.version' for Android devices or manufacturer-specific commands.

Verify Fix Applied:

Copy

Verify firmware version has been updated to manufacturer's patched version. Check that P2P functionality works without crashes.

📡 Detection & Monitoring

Log Indicators:

• Unexpected device crashes or reboots
• Log entries related to P2P/Wi-Fi Direct failures
• Memory corruption errors in system logs

Network Indicators:

• Unusual P2P discovery traffic patterns
• Malformed P2P packets targeting vulnerable devices

SIEM Query:

Copy

Search for: 'P2P search failure' OR 'buffer overflow' OR 'memory corruption' in device logs, combined with network traffic to port 5000-5002 (common P2P ports).

📊 Metadata

CVE ID: CVE-2021-1972

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-120

Published: September 8, 2021

Last Updated: November 21, 2024

🔗 References

• https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin Patch,Vendor Advisory
• https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin Patch,Vendor Advisory

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-1972, you might also want to check these:

CVE-2023-24482 10.0

This CVE describes a critical buffer overflow vulnerability in COMOS software's cache validation ser...

Same vulnerability type (CWE-120)

CVE-2024-22039 10.0

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with root privi...

Same vulnerability type (CWE-120)

CVE-2022-22570 10.0

A buffer overflow vulnerability in UniFi Door Access Reader Lite firmware allows attackers with netw...

Same vulnerability type (CWE-120)