CVE-2021-35112

Q: What is the severity of CVE-2021-35112?

CVE-2021-35112 has a CVSS score of 8.4 (HIGH). This vulnerability allows a user with standard permissions to access protected graphics memory regions due to improper access control in register configuration on Qualcomm Snapdragon chips. It affects multiple Snapdragon product lines including Auto, Compute, Mobile, and Wearables. Attackers could potentially read or modify sensitive graphics data.

8.4 HIGH

📋 TL;DR

This vulnerability allows a user with standard permissions to access protected graphics memory regions due to improper access control in register configuration on Qualcomm Snapdragon chips. It affects multiple Snapdragon product lines including Auto, Compute, Mobile, and Wearables. Attackers could potentially read or modify sensitive graphics data.

💻 Affected Systems

Products:

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Consumer IOT
Snapdragon Industrial IOT
Snapdragon Mobile
Snapdragon Voice & Music
Snapdragon Wearables

Versions: Specific chipset versions not detailed in bulletin; affected by firmware/software versions before April 2022 patches

Operating Systems: Android, Linux-based systems using affected Snapdragon chips

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices using vulnerable Qualcomm Snapdragon chipsets with unpatched firmware/drivers.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could exfiltrate sensitive graphics data (including potentially protected content like DRM-protected media), modify graphics rendering to bypass security controls, or cause system instability/crashes.

🟠

Likely Case

Information disclosure of graphics memory contents, potentially exposing sensitive application data or protected content.

🟢

If Mitigated

Limited impact with proper privilege separation and memory protection mechanisms in place.

🌐 Internet-Facing: LOW - This is a local hardware/firmware vulnerability requiring local access or code execution.

🏢 Internal Only: MEDIUM - Could be exploited by malicious insiders or through malware with user-level privileges on affected devices.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires user-level access to execute malicious code; exploitation involves manipulating graphics register configurations.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware/driver updates released in April 2022 security bulletins

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for firmware updates. 2. Apply Qualcomm-provided patches through OEM update channels. 3. Reboot device after update installation.

🔧 Temporary Workarounds

Restrict user privileges

all

Limit user accounts to minimal necessary privileges to reduce attack surface

Application sandboxing

linux

Use containerization or sandboxing to isolate applications from accessing protected memory regions

🧯 If You Can't Patch

Implement strict access controls and monitor for unusual graphics memory access patterns
Isolate affected devices from sensitive networks and implement network segmentation

🔍 How to Verify

Check if Vulnerable:

Check device chipset model and firmware version against Qualcomm's April 2022 security bulletin

Check Version:

On Android: 'getprop ro.bootloader' or check Settings > About Phone > Build Number

Verify Fix Applied:

Verify firmware version has been updated to post-April 2022 patches from device manufacturer

📡 Detection & Monitoring

Log Indicators:

Unusual graphics driver errors
Access violations in graphics memory regions
Privilege escalation attempts

Network Indicators:

Not network-exploitable; local vulnerability

SIEM Query:

Search for graphics driver access violations or privilege escalation events in system logs

📊 Metadata

CVE ID: CVE-2021-35112

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-863

Published: June 14, 2022

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin Patch,Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Apq8009w Firmware by Qualcomm

Aqt1000 Firmware by Qualcomm

Ar8031 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Mdm9150 Firmware by Qualcomm

Msm8909w Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4290 Firmware by Qualcomm

Qcm6125 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs405 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs603 Firmware by Qualcomm

Qcs605 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs6125 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qet4101 Firmware by Qualcomm

Qrb5165 Firmware by Qualcomm

Qrb5165m Firmware by Qualcomm

Qrb5165n Firmware by Qualcomm

Qsw8573 Firmware by Qualcomm

Qualcomm215 Firmware by Qualcomm

Sa515m Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8295p Firmware by Qualcomm

Sd 8 Gen1 5g Firmware by Qualcomm

Sd205 Firmware by Qualcomm

Sd210 Firmware by Qualcomm

Sd429 Firmware by Qualcomm

Sd460 Firmware by Qualcomm

Sd480 Firmware by Qualcomm

Sd662 Firmware by Qualcomm

Sd765 Firmware by Qualcomm

Sd765g Firmware by Qualcomm

Sd768g Firmware by Qualcomm

Sd778g Firmware by Qualcomm

Sd780g Firmware by Qualcomm

Sd855 Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Sd870 Firmware by Qualcomm

Sd888 5g Firmware by Qualcomm

Sd888 Firmware by Qualcomm

Sda429w Firmware by Qualcomm

Sdm429w Firmware by Qualcomm

Sdx12 Firmware by Qualcomm

Sdx24 Firmware by Qualcomm

Sdx55 Firmware by Qualcomm

Sdx55m Firmware by Qualcomm

Sdxr2 5g Firmware by Qualcomm

Sm6375 Firmware by Qualcomm

Sm7250p Firmware by Qualcomm

Sm7315 Firmware by Qualcomm

Sm7325p Firmware by Qualcomm

Sw5100 Firmware by Qualcomm