CVE-2021-30290

Q: What is the severity of CVE-2021-30290?

CVE-2021-30290 has a CVSS score of 8.4 (HIGH). This vulnerability is a race condition in Qualcomm Snapdragon chipsets that can cause a null pointer dereference when timeline fence operations occur simultaneously. It affects automotive, connectivity, industrial IoT, and mobile devices using vulnerable Snapdragon components. Successful exploitation could lead to system crashes or potential code execution.

8.4 HIGH

Denial of Service

📋 TL;DR

This vulnerability is a race condition in Qualcomm Snapdragon chipsets that can cause a null pointer dereference when timeline fence operations occur simultaneously. It affects automotive, connectivity, industrial IoT, and mobile devices using vulnerable Snapdragon components. Successful exploitation could lead to system crashes or potential code execution.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Connectivity
Snapdragon Industrial IOT
Snapdragon Mobile

Versions: Specific chipset versions not publicly detailed in advisory

Operating Systems: Android, Linux-based automotive/industrial systems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects multiple Qualcomm chipset families across different product categories

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation

🟠

Likely Case

System crash or denial of service causing device instability and reboots

🟢

If Mitigated

System crash with limited impact if proper isolation and privilege separation are implemented

🌐 Internet-Facing: MEDIUM - Requires specific timing conditions and access to vulnerable interfaces

🏢 Internal Only: MEDIUM - Could be exploited by malicious apps or local attackers with device access

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Race condition exploitation requires precise timing and access to specific system interfaces

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm September 2021 security bulletin for specific chipset updates

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset versions. 2. Obtain firmware updates from device manufacturer. 3. Apply firmware updates following manufacturer instructions. 4. Reboot device to activate fixes.

🔧 Temporary Workarounds

No direct workarounds available

all

This is a hardware/firmware level vulnerability requiring vendor patches

🧯 If You Can't Patch

Isolate affected devices from untrusted networks and users
Implement strict application control to prevent malicious app installation

🔍 How to Verify

Check if Vulnerable:

Check device chipset version and compare against Qualcomm's September 2021 security bulletin

Check Version:

Device-specific commands vary by manufacturer (e.g., 'getprop ro.bootloader' on Android)

Verify Fix Applied:

Verify firmware version has been updated to post-September 2021 release

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
Null pointer dereference errors in system logs
Unexpected device reboots

Network Indicators:

Unusual timing patterns in system calls

SIEM Query:

Device logs containing 'kernel panic' OR 'null pointer' OR 'segmentation fault' from affected devices

📊 Metadata

CVE ID: CVE-2021-30290

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-367

Published: September 9, 2021

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin Patch,Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/september-2021-bulletin Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Qca6174a Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155 Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sd480 Firmware by Qualcomm

Sd778g Firmware by Qualcomm

Sd780g Firmware by Qualcomm

Sd888 5g Firmware by Qualcomm

Sd888 Firmware by Qualcomm

Sdx12 Firmware by Qualcomm

Sm7325 Firmware by Qualcomm

Wcd9335 Firmware by Qualcomm

Wcd9341 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wcn3991 Firmware by Qualcomm

Wcn6740 Firmware by Qualcomm

Wcn6750 Firmware by Qualcomm

Wcn6850 Firmware by Qualcomm

Wcn6851 Firmware by Qualcomm

Wcn6855 Firmware by Qualcomm

Wcn6856 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm