Login Sign Up

CVE-2021-35115

8.4 HIGH

📋 TL;DR

This vulnerability in Qualcomm Snapdragon chipsets allows attackers to execute arbitrary code or cause denial of service through a use-after-free condition in the PVM backend when handling multiple sessions. It affects automotive and mobile devices using vulnerable Snapdragon chipsets.

💻 Affected Systems

Products:
  • Snapdragon Auto
  • Snapdragon Mobile
Versions: Multiple Snapdragon chipset versions (see Qualcomm advisory for specific models)
Operating Systems: Android-based systems, Automotive OS using Snapdragon
Default Config Vulnerable: ⚠️ Yes
Notes: Affects devices with vulnerable Snapdragon chipsets; exact models vary by manufacturer implementation

📦 What is this software?

Apq8096au Firmware by Qualcomm

View all CVEs affecting Apq8096au Firmware →

Ar6003 Firmware by Qualcomm

View all CVEs affecting Ar6003 Firmware →

Mdm8215 Firmware by Qualcomm

View all CVEs affecting Mdm8215 Firmware →

Mdm8215m Firmware by Qualcomm

View all CVEs affecting Mdm8215m Firmware →

Mdm8615m Firmware by Qualcomm

View all CVEs affecting Mdm8615m Firmware →

Mdm9215 Firmware by Qualcomm

View all CVEs affecting Mdm9215 Firmware →

Mdm9310 Firmware by Qualcomm

View all CVEs affecting Mdm9310 Firmware →

Mdm9615 Firmware by Qualcomm

View all CVEs affecting Mdm9615 Firmware →

Mdm9615m Firmware by Qualcomm

View all CVEs affecting Mdm9615m Firmware →

Msm8996au Firmware by Qualcomm

View all CVEs affecting Msm8996au Firmware →

Qca6564a Firmware by Qualcomm

View all CVEs affecting Qca6564a Firmware →

Qca6564au Firmware by Qualcomm

View all CVEs affecting Qca6564au Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6574au Firmware by Qualcomm

View all CVEs affecting Qca6574au Firmware →

Qca6584au Firmware by Qualcomm

View all CVEs affecting Qca6584au Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Sa6145p Firmware by Qualcomm

View all CVEs affecting Sa6145p Firmware →

Sa6150p Firmware by Qualcomm

View all CVEs affecting Sa6150p Firmware →

Sa6155p Firmware by Qualcomm

View all CVEs affecting Sa6155p Firmware →

Sa8145p Firmware by Qualcomm

View all CVEs affecting Sa8145p Firmware →

Sa8150p Firmware by Qualcomm

View all CVEs affecting Sa8150p Firmware →

Sa8155p Firmware by Qualcomm

View all CVEs affecting Sa8155p Firmware →

Sa8195p Firmware by Qualcomm

View all CVEs affecting Sa8195p Firmware →

Sa8540p Firmware by Qualcomm

View all CVEs affecting Sa8540p Firmware →

Sa9000p Firmware by Qualcomm

View all CVEs affecting Sa9000p Firmware →

Sdx55 Firmware by Qualcomm

View all CVEs affecting Sdx55 Firmware →

Sdx55m Firmware by Qualcomm

View all CVEs affecting Sdx55m Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation

🟠

Likely Case

Device crash/reboot (denial of service) or limited code execution in kernel context

🟢

If Mitigated

No impact if patched or if exploit attempts are blocked by security controls

🌐 Internet-Facing: MEDIUM - Requires specific conditions but could be exploited via malicious apps or network vectors
🏢 Internal Only: MEDIUM - Local privilege escalation possible if attacker gains initial access

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires local access or malicious app installation; kernel-level vulnerability increases impact

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Varies by device manufacturer - check specific device security updates

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/march-2022-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer's security updates 2. Apply latest firmware/OS update 3. Reboot device 4. Verify patch installation

🔧 Temporary Workarounds

Restrict app installations

all

Prevent installation of untrusted applications that could exploit this vulnerability

Enable verified boot

all

Ensure device integrity through verified boot chain

🧯 If You Can't Patch

  • Isolate affected devices from untrusted networks
  • Implement application allowlisting to prevent malicious app execution

🔍 How to Verify

Check if Vulnerable:

Check device chipset model and firmware version against Qualcomm advisory

Check Version:

adb shell getprop ro.build.fingerprint (Android) or check device settings

Verify Fix Applied:

Verify device has March 2022 or later security patches installed

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • PVM backend crash reports
  • Unexpected process termination

Network Indicators:

  • Unusual outbound connections from system processes
  • Exploit kit traffic patterns

SIEM Query:

source="kernel" AND ("panic" OR "oops") AND "pvm"

📊 Metadata

CVE ID: CVE-2021-35115
CVSS v3 Score: 8.4 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-416
Published: April 1, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-35115, you might also want to check these:

CVE-2025-24085 10.0

This CVE describes a use-after-free vulnerability (CWE-416) in Apple operating systems that allows m...

Same vulnerability type (CWE-416)
CVE-2024-43102 10.0

This CVE describes a use-after-free vulnerability in FreeBSD's umtx (user mutex) subsystem where con...

Same vulnerability type (CWE-416)
CVE-2021-33796 10.0

CVE-2021-33796 is a use-after-free vulnerability in MuJS's regexp source property access that can le...

Same vulnerability type (CWE-416)