CVE-2021-30302

Q: What is the severity of CVE-2021-30302?

CVE-2021-30302 has a CVSS score of 7.5 (HIGH). This vulnerability allows improper authentication of EAP WAPI EAPOL frames from unauthenticated users, potentially leading to information disclosure. It affects various Snapdragon chipsets used in compute, connectivity, mobile, and IoT devices. Attackers could exploit this to access sensitive information without proper authentication.

7.5 HIGH

📋 TL;DR

This vulnerability allows improper authentication of EAP WAPI EAPOL frames from unauthenticated users, potentially leading to information disclosure. It affects various Snapdragon chipsets used in compute, connectivity, mobile, and IoT devices. Attackers could exploit this to access sensitive information without proper authentication.

💻 Affected Systems

Products:

Snapdragon Compute
Snapdragon Connectivity
Snapdragon Consumer Electronics Connectivity
Snapdragon Consumer IOT
Snapdragon Industrial IOT
Snapdragon Mobile
Snapdragon Wired Infrastructure and Networking

Versions: Specific versions not detailed in CVE; refer to Qualcomm October 2021 bulletin for exact affected versions

Operating Systems: Android, Linux-based systems using affected Snapdragon chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices using WAPI (WLAN Authentication and Privacy Infrastructure) with EAP authentication. Requires Wi-Fi connectivity to be exploitable.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Unauthenticated attackers could intercept and access sensitive network communications and device information on vulnerable systems.

🟠

Likely Case

Information disclosure of network authentication data and potentially device identifiers in enterprise or public Wi-Fi environments.

🟢

If Mitigated

Limited impact with proper network segmentation and updated firmware, though some information leakage might still occur.

🌐 Internet-Facing: MEDIUM - Exploitable over Wi-Fi networks but requires proximity and specific network conditions.

🏢 Internal Only: MEDIUM - Could be exploited within organizational Wi-Fi networks by malicious insiders or compromised devices.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires proximity to target device and knowledge of WAPI/EAP protocols. No public exploit code has been disclosed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm October 2021 security bulletin for specific patched versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided patches through OEM updates. 3. Reboot device after update installation. 4. Verify patch application through version checks.

🔧 Temporary Workarounds

Disable WAPI Authentication

all

Disable WAPI authentication method on affected devices if not required for network connectivity.

Device-specific configuration commands vary by manufacturer

Network Segmentation

all

Isolate devices using WAPI authentication on separate network segments with strict access controls.

🧯 If You Can't Patch

Implement strict network access controls and monitor for unusual authentication attempts
Disable Wi-Fi on critical devices and use wired connections where possible

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm's October 2021 security bulletin. Use 'getprop ro.build.fingerprint' on Android devices to check chipset and version.

Check Version:

Android: getprop ro.build.fingerprint; Linux-based: cat /proc/version or manufacturer-specific version commands

Verify Fix Applied:

Verify firmware version has been updated to a version listed as patched in Qualcomm's advisory. Check that WAPI authentication is properly configured.

📡 Detection & Monitoring

Log Indicators:

Unusual EAP authentication failures
Multiple WAPI authentication attempts from single source
Authentication bypass events in Wi-Fi logs

Network Indicators:

Unencrypted EAPOL frames in WAPI networks
Authentication requests from unexpected MAC addresses
Abnormal WAPI protocol traffic patterns

SIEM Query:

source="wifi_logs" AND (event_type="authentication_failure" OR event_type="auth_bypass") AND protocol="WAPI"

📊 Metadata

CVE ID: CVE-2021-30302

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-287

Published: October 20, 2021

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Aqt1000 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Ar9380 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Ipq4018 Firmware by Qualcomm

Ipq4028 Firmware by Qualcomm

Ipq4029 Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5018 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6005 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8064 Firmware by Qualcomm

Ipq8069 Firmware by Qualcomm

Ipq8070 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071 Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072 Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074 Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Pmp8074 Firmware by Qualcomm

Qca1062 Firmware by Qualcomm

Qca1064 Firmware by Qualcomm

Qca10901 Firmware by Qualcomm

Qca2062 Firmware by Qualcomm

Qca2064 Firmware by Qualcomm

Qca2065 Firmware by Qualcomm

Qca2066 Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6310 Firmware by Qualcomm

Qca6335 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6420 Firmware by Qualcomm

Qca6421 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6428 Firmware by Qualcomm

Qca6430 Firmware by Qualcomm

Qca6431 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6438 Firmware by Qualcomm

Qca8072 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9888 Firmware by Qualcomm

Qca9889 Firmware by Qualcomm

Qca9898 Firmware by Qualcomm

Qca9980 Firmware by Qualcomm

Qca9984 Firmware by Qualcomm

Qca9990 Firmware by Qualcomm

Qca9992 Firmware by Qualcomm

Qca9994 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcn5021 Firmware by Qualcomm

Qcn5022 Firmware by Qualcomm

Qcn5024 Firmware by Qualcomm

Qcn5052 Firmware by Qualcomm

Qcn5054 Firmware by Qualcomm

Qcn5064 Firmware by Qualcomm

Qcn5121 Firmware by Qualcomm

Qcn5122 Firmware by Qualcomm

Qcn5124 Firmware by Qualcomm

Qcn5152 Firmware by Qualcomm

Qcn5154 Firmware by Qualcomm

Qcn5164 Firmware by Qualcomm