CVE-2021-1977

Q: What is the severity of CVE-2021-1977?

CVE-2021-1977 has a CVSS score of 7.5 (HIGH). This vulnerability allows attackers to read beyond allocated memory boundaries during AEAD decryption in Qualcomm Snapdragon chipsets. It affects devices using Snapdragon Auto, Compute, Connectivity, Mobile, and other Snapdragon platforms. Successful exploitation could lead to information disclosure or system crashes.

7.5 HIGH

📋 TL;DR

This vulnerability allows attackers to read beyond allocated memory boundaries during AEAD decryption in Qualcomm Snapdragon chipsets. It affects devices using Snapdragon Auto, Compute, Connectivity, Mobile, and other Snapdragon platforms. Successful exploitation could lead to information disclosure or system crashes.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Consumer Electronics Connectivity
Snapdragon Consumer IOT
Snapdragon Industrial IOT
Snapdragon IoT
Snapdragon Mobile
Snapdragon Voice & Music

Versions: Specific chipset versions not detailed in bulletin; check Qualcomm advisory for exact affected versions.

Operating Systems: Android, Linux-based systems using affected Snapdragon chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability is in firmware/hardware layer, affecting all devices with vulnerable Snapdragon chipsets regardless of OS configuration.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Denial of service through system crashes or information disclosure of sensitive data in memory.

🟢

If Mitigated

Limited impact with proper network segmentation and updated firmware.

🌐 Internet-Facing: MEDIUM - Requires specific network conditions and targeting of vulnerable devices.

🏢 Internal Only: MEDIUM - Could be exploited in internal networks if vulnerable devices are present.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending specially crafted network packets during ASSOC response processing with AEAD decryption.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check device manufacturer for specific firmware updates

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for firmware updates. 2. Apply manufacturer-provided firmware patches. 3. Reboot device after update. 4. Verify patch installation.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate affected devices from untrusted networks to reduce attack surface.

Disable Vulnerable Features

linux

If possible, disable AEAD decryption features in affected wireless interfaces.

🧯 If You Can't Patch

Segment network to isolate vulnerable devices from untrusted traffic
Implement strict firewall rules to limit network access to affected devices

🔍 How to Verify

Check if Vulnerable:

Check device specifications for affected Snapdragon chipsets and firmware version against manufacturer advisories.

Check Version:

Device-specific commands vary by manufacturer; typically 'cat /proc/version' or manufacturer-specific firmware check utilities.

Verify Fix Applied:

Verify firmware version matches or exceeds manufacturer's patched version.

📡 Detection & Monitoring

Log Indicators:

Unexpected system crashes
Memory access violation logs
Wireless association failures

Network Indicators:

Unusual ASSOC response packets
Malformed wireless frames targeting AEAD decryption

SIEM Query:

Search for: (event_category:crash OR error:memory) AND (device_type:snapdragon OR chipset:qualcomm)

📊 Metadata

CVE ID: CVE-2021-1977

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-125

Published: October 20, 2021

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin Patch,Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Apq8009 Firmware by Qualcomm

Apq8017 Firmware by Qualcomm

Apq8053 Firmware by Qualcomm

Apq8064au Firmware by Qualcomm

Apq8096au Firmware by Qualcomm

Ar8031 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Csrb31024 Firmware by Qualcomm

Mdm9150 Firmware by Qualcomm

Mdm9206 Firmware by Qualcomm

Mdm9250 Firmware by Qualcomm

Mdm9607 Firmware by Qualcomm

Mdm9626 Firmware by Qualcomm

Mdm9628 Firmware by Qualcomm

Mdm9650 Firmware by Qualcomm

Msm8953 Firmware by Qualcomm

Msm8996au Firmware by Qualcomm

Qca4020 Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6175a Firmware by Qualcomm

Qca6310 Firmware by Qualcomm

Qca6320 Firmware by Qualcomm

Qca6335 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9367 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qca9379 Firmware by Qualcomm

Qcm4290 Firmware by Qualcomm

Qcm6125 Firmware by Qualcomm

Qcs405 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs603 Firmware by Qualcomm

Qcs605 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs6125 Firmware by Qualcomm

Qrb5165 Firmware by Qualcomm

Sa415m Firmware by Qualcomm

Sa515m Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155 Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sd 675 Firmware by Qualcomm

Sd460 Firmware by Qualcomm

Sd660 Firmware by Qualcomm

Sd662 Firmware by Qualcomm

Sd665 Firmware by Qualcomm

Sd675 Firmware by Qualcomm

Sd678 Firmware by Qualcomm

Sd690 5g Firmware by Qualcomm

Sd720g Firmware by Qualcomm

Sd750g Firmware by Qualcomm

Sd765 Firmware by Qualcomm

Sd765g Firmware by Qualcomm

Sd768g Firmware by Qualcomm

Sd778g Firmware by Qualcomm