CVE-2021-30311

Q: What is the severity of CVE-2021-30311?

CVE-2021-30311 has a CVSS score of 7.8 (HIGH). This vulnerability allows heap overflow attacks due to improper index validation in Qualcomm Snapdragon chipsets before allocating and writing to heap buffers. Attackers could potentially execute arbitrary code or cause denial of service. Affected devices include those using Snapdragon Auto, Compute, Connectivity, Industrial IoT, and Mobile platforms.

7.8 HIGH

📋 TL;DR

This vulnerability allows heap overflow attacks due to improper index validation in Qualcomm Snapdragon chipsets before allocating and writing to heap buffers. Attackers could potentially execute arbitrary code or cause denial of service. Affected devices include those using Snapdragon Auto, Compute, Connectivity, Industrial IoT, and Mobile platforms.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Industrial IOT
Snapdragon Mobile

Versions: Specific chipset versions prior to January 2022 security updates

Operating Systems: Android, Linux-based automotive/industrial systems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices using vulnerable Qualcomm chipset firmware. Exact chip models not specified in bulletin.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Denial of service (device crash/reboot) or limited information disclosure from memory corruption.

🟢

If Mitigated

No impact if patched or if exploit attempts are blocked by security controls.

🌐 Internet-Facing: MEDIUM - Requires specific conditions and potentially local access, but could be exploited via malicious apps or network services.

🏢 Internal Only: MEDIUM - Similar risk profile whether internal or external, dependent on attack vector.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation likely requires local access or malicious application installation. No public exploits known.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: January 2022 security update or later

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for available updates. 2. Apply January 2022 or later security patch. 3. Reboot device after update.

🔧 Temporary Workarounds

Application Whitelisting

all

Restrict installation of untrusted applications to reduce attack surface.

Network Segmentation

all

Isolate affected devices from critical networks to limit lateral movement.

🧯 If You Can't Patch

Isolate affected devices in separate network segments
Implement strict application control policies

🔍 How to Verify

Check if Vulnerable:

Check device security patch level - if before January 2022, likely vulnerable. Use 'getprop ro.build.version.security_patch' on Android.

Check Version:

Android: getprop ro.build.version.security_patch

Verify Fix Applied:

Confirm security patch level is January 2022 or later. Check with device manufacturer for specific firmware versions.

📡 Detection & Monitoring

Log Indicators:

Unexpected device crashes/reboots
Memory corruption errors in system logs

Network Indicators:

Unusual outbound connections from affected devices

SIEM Query:

Device logs showing repeated crashes or memory errors from Snapdragon-based devices

📊 Metadata

CVE ID: CVE-2021-30311

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-129

Published: January 13, 2022

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/january-2022-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcx315 Firmware by Qualcomm

Sa515m Firmware by Qualcomm

Sd 675 Firmware by Qualcomm

Sd 8 Gen1 5g Firmware by Qualcomm

Sd460 Firmware by Qualcomm

Sd480 Firmware by Qualcomm

Sd662 Firmware by Qualcomm

Sd665 Firmware by Qualcomm

Sd675 Firmware by Qualcomm

Sd678 Firmware by Qualcomm

Sd690 5g Firmware by Qualcomm

Sd720g Firmware by Qualcomm

Sd730 Firmware by Qualcomm

Sd750g Firmware by Qualcomm

Sd765 Firmware by Qualcomm

Sd765g Firmware by Qualcomm

Sd768g Firmware by Qualcomm

Sd778g Firmware by Qualcomm

Sd780g Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Sd870 Firmware by Qualcomm

Sd888 5g Firmware by Qualcomm

Sd888 Firmware by Qualcomm

Sdx55 Firmware by Qualcomm

Sdx55m Firmware by Qualcomm

Sdx65 Firmware by Qualcomm

Sdxr2 5g Firmware by Qualcomm

Sm6225 Firmware by Qualcomm

Sm6250 Firmware by Qualcomm

Sm6375 Firmware by Qualcomm

Sm7250p Firmware by Qualcomm

Sm7315 Firmware by Qualcomm

Sm7325p Firmware by Qualcomm

Wcd9341 Firmware by Qualcomm

Wcd9360 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn3980 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wcn3991 Firmware by Qualcomm

Wcn3998 Firmware by Qualcomm

Wcn6740 Firmware by Qualcomm

Wcn6750 Firmware by Qualcomm

Wcn6850 Firmware by Qualcomm

Wcn6851 Firmware by Qualcomm

Wcn6855 Firmware by Qualcomm

Wcn6856 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm