CVE-2021-30336

Q: What is the severity of CVE-2021-30336?

CVE-2021-30336 has a CVSS score of 8.4 (HIGH). This vulnerability allows attackers to read memory outside the intended buffer bounds when processing APK close session requests in Qualcomm Snapdragon chipsets. It affects devices using Snapdragon Auto, Compute, Connectivity, Industrial IoT, and Wearables platforms. Successful exploitation could lead to information disclosure or system compromise.

8.4 HIGH

📋 TL;DR

This vulnerability allows attackers to read memory outside the intended buffer bounds when processing APK close session requests in Qualcomm Snapdragon chipsets. It affects devices using Snapdragon Auto, Compute, Connectivity, Industrial IoT, and Wearables platforms. Successful exploitation could lead to information disclosure or system compromise.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Industrial IOT
Snapdragon Wearables

Versions: Specific chipset versions not detailed in public advisory

Operating Systems: Android-based systems and embedded OS using affected Snapdragon chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects multiple Qualcomm chipset families across automotive, computing, IoT, and wearable devices

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Information disclosure through memory read, potentially exposing sensitive data or cryptographic keys.

🟢

If Mitigated

Limited impact with proper memory protection mechanisms and input validation in place.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Requires sending specially crafted APK close session requests to trigger the out-of-bounds read

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm December 2021 security bulletin for specific chipset updates

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided patches through OEM updates. 3. Reboot device after update installation.

🔧 Temporary Workarounds

Network segmentation

all

Isolate affected devices from untrusted networks to limit attack surface

Input validation at application layer

all

Implement additional validation for APK session handling in applications

🧯 If You Can't Patch

Implement strict network access controls to limit who can communicate with affected devices
Monitor for abnormal APK session termination patterns in network traffic

🔍 How to Verify

Check if Vulnerable:

Check device chipset version and compare against Qualcomm's patched versions in December 2021 bulletin

Check Version:

Device-specific commands vary by manufacturer; typically 'getprop ro.build.fingerprint' or similar on Android devices

Verify Fix Applied:

Verify firmware version has been updated to include December 2021 Qualcomm security patches

📡 Detection & Monitoring

Log Indicators:

Unusual APK session termination patterns
Memory access violation logs in system logs

Network Indicators:

Abnormal APK close session requests to Snapdragon services
Unexpected network traffic to chipset management interfaces

SIEM Query:

Search for APK session termination events with abnormal parameters or timing patterns

📊 Metadata

CVE ID: CVE-2021-30336

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-125

Published: January 3, 2022

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4290 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qualcomm215 Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155 Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sd 675 Firmware by Qualcomm

Sd460 Firmware by Qualcomm

Sd480 Firmware by Qualcomm

Sd662 Firmware by Qualcomm

Sd665 Firmware by Qualcomm

Sd675 Firmware by Qualcomm

Sd678 Firmware by Qualcomm

Sd690 5g Firmware by Qualcomm

Sd720g Firmware by Qualcomm

Sd730 Firmware by Qualcomm

Sd750g Firmware by Qualcomm

Sd765 Firmware by Qualcomm

Sd765g Firmware by Qualcomm

Sd768g Firmware by Qualcomm

Sd778g Firmware by Qualcomm

Sd780g Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Sd870 Firmware by Qualcomm

Sd888 5g Firmware by Qualcomm

Sd888 Firmware by Qualcomm

Sda429w Firmware by Qualcomm

Sdx55m Firmware by Qualcomm

Sdxr1 Firmware by Qualcomm

Sm6225 Firmware by Qualcomm

Sm6250 Firmware by Qualcomm

Sm6375 Firmware by Qualcomm

Sm7250p Firmware by Qualcomm

Sm7315 Firmware by Qualcomm

Sm7325p Firmware by Qualcomm

Sm8450 Firmware by Qualcomm

Sm8450p Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3610 Firmware by Qualcomm

Wcn3660b Firmware by Qualcomm

Wcn3910 Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wcn3991 Firmware by Qualcomm

Wcn6740 Firmware by Qualcomm

Wcn6750 Firmware by Qualcomm

Wcn6850 Firmware by Qualcomm

Wcn6851 Firmware by Qualcomm

Wcn6855 Firmware by Qualcomm

Wcn6856 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status