CVE-2021-1907

EPSS 0.33%
Published 13.07.2021 06:15:08
Last modified 21.11.2024 05:45:24
Source product-security@qualcomm.com
Teams watchlist Login
Open Login

Possible buffer overflow due to lack of length check in BA request in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

Affected products Warnungen 0 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Qualcomm ≫ Apq8053 Firmware Version-

Qualcomm ≫ Apq8053 Version-

Qualcomm ≫ Csrb31024 Firmware Version-

Qualcomm ≫ Csrb31024 Version-

Qualcomm ≫ Msm8953 Firmware Version-

Qualcomm ≫ Msm8953 Version-

Qualcomm ≫ Qca6175a Firmware Version-

Qualcomm ≫ Qca6175a Version-

Qualcomm ≫ Qca6390 Firmware Version-

Qualcomm ≫ Qca6390 Version-

Qualcomm ≫ Qca6391 Firmware Version-

Qualcomm ≫ Qca6391 Version-

Qualcomm ≫ Qca6426 Firmware Version-

Qualcomm ≫ Qca6426 Version-

Qualcomm ≫ Qca6436 Firmware Version-

Qualcomm ≫ Qca6436 Version-

Qualcomm ≫ Qca6564a Firmware Version-

Qualcomm ≫ Qca6564a Version-

Qualcomm ≫ Qca6564au Firmware Version-

Qualcomm ≫ Qca6564au Version-

Qualcomm ≫ Qca6574 Firmware Version-

Qualcomm ≫ Qca6574 Version-

Qualcomm ≫ Qca6574a Firmware Version-

Qualcomm ≫ Qca6574a Version-

Qualcomm ≫ Qca6574au Firmware Version-

Qualcomm ≫ Qca6574au Version-

Qualcomm ≫ Qca6584au Firmware Version-

Qualcomm ≫ Qca6584au Version-

Qualcomm ≫ Qca6595 Firmware Version-

Qualcomm ≫ Qca6595 Version-

Qualcomm ≫ Qca6595au Firmware Version-

Qualcomm ≫ Qca6595au Version-

Qualcomm ≫ Qca6696 Firmware Version-

Qualcomm ≫ Qca6696 Version-

Qualcomm ≫ Qcm4290 Firmware Version-

Qualcomm ≫ Qcm4290 Version-

Qualcomm ≫ Qcm6125 Firmware Version-

Qualcomm ≫ Qcm6125 Version-

Qualcomm ≫ Qcs4290 Firmware Version-

Qualcomm ≫ Qcs4290 Version-

Qualcomm ≫ Qcs6125 Firmware Version-

Qualcomm ≫ Qcs6125 Version-

Qualcomm ≫ Sa415m Firmware Version-

Qualcomm ≫ Sa415m Version-

Qualcomm ≫ Sa515m Firmware Version-

Qualcomm ≫ Sa515m Version-

Qualcomm ≫ Sa6145p Firmware Version-

Qualcomm ≫ Sa6145p Version-

Qualcomm ≫ Sa6150p Firmware Version-

Qualcomm ≫ Sa6150p Version-

Qualcomm ≫ Sa6155 Firmware Version-

Qualcomm ≫ Sa6155 Version-

Qualcomm ≫ Sa6155p Firmware Version-

Qualcomm ≫ Sa6155p Version-

Qualcomm ≫ Sa8145p Firmware Version-

Qualcomm ≫ Sa8145p Version-

Qualcomm ≫ Sa8150p Firmware Version-

Qualcomm ≫ Sa8150p Version-

Qualcomm ≫ Sa8155 Firmware Version-

Qualcomm ≫ Sa8155 Version-

Qualcomm ≫ Sa8155p Firmware Version-

Qualcomm ≫ Sa8155p Version-

Qualcomm ≫ Sa8195p Firmware Version-

Qualcomm ≫ Sa8195p Version-

Qualcomm ≫ Sd 636 Firmware Version-

Qualcomm ≫ Sd 636 Version-

Qualcomm ≫ Sd480 Firmware Version-

Qualcomm ≫ Sd480 Version-

Qualcomm ≫ Sd660 Firmware Version-

Qualcomm ≫ Sd660 Version-

Qualcomm ≫ Sd665 Firmware Version-

Qualcomm ≫ Sd665 Version-

Qualcomm ≫ Sd670 Firmware Version-

Qualcomm ≫ Sd670 Version-

Qualcomm ≫ Sd710 Firmware Version-

Qualcomm ≫ Sd710 Version-

Qualcomm ≫ Sd765 Firmware Version-

Qualcomm ≫ Sd765 Version-

Qualcomm ≫ Sd765g Firmware Version-

Qualcomm ≫ Sd765g Version-

Qualcomm ≫ Sd768g Firmware Version-

Qualcomm ≫ Sd768g Version-

Qualcomm ≫ Sd778g Firmware Version-

Qualcomm ≫ Sd778g Version-

Qualcomm ≫ Sd780g Firmware Version-

Qualcomm ≫ Sd780g Version-

Qualcomm ≫ Sd835 Firmware Version-

Qualcomm ≫ Sd835 Version-

Qualcomm ≫ Sd845 Firmware Version-

Qualcomm ≫ Sd845 Version-

Qualcomm ≫ Sd855 Firmware Version-

Qualcomm ≫ Sd855 Version-

Qualcomm ≫ Sd865 5g Firmware Version-

Qualcomm ≫ Sd865 5g Version-

Qualcomm ≫ Sd870 Firmware Version-

Qualcomm ≫ Sd870 Version-

Qualcomm ≫ Sd888 Firmware Version-

Qualcomm ≫ Sd888 Version-

Qualcomm ≫ Sd888 5g Firmware Version-

Qualcomm ≫ Sd888 5g Version-

Qualcomm ≫ Sdm630 Firmware Version-

Qualcomm ≫ Sdm630 Version-

Qualcomm ≫ Sdx55 Firmware Version-

Qualcomm ≫ Sdx55 Version-

Qualcomm ≫ Sdx55m Firmware Version-

Qualcomm ≫ Sdx55m Version-

Qualcomm ≫ Sdxr2 5g Firmware Version-

Qualcomm ≫ Sdxr2 5g Version-

Qualcomm ≫ Sm7250p Firmware Version-

Qualcomm ≫ Sm7250p Version-

Qualcomm ≫ Sm7315 Firmware Version-

Qualcomm ≫ Sm7315 Version-

Qualcomm ≫ Sm7325p Firmware Version-

Qualcomm ≫ Sm7325p Version-

Qualcomm ≫ Wcd9326 Firmware Version-

Qualcomm ≫ Wcd9326 Version-

Qualcomm ≫ Wcd9335 Firmware Version-

Qualcomm ≫ Wcd9335 Version-

Qualcomm ≫ Wcd9340 Firmware Version-

Qualcomm ≫ Wcd9340 Version-

Qualcomm ≫ Wcd9341 Firmware Version-

Qualcomm ≫ Wcd9341 Version-

Qualcomm ≫ Wcd9370 Firmware Version-

Qualcomm ≫ Wcd9370 Version-

Qualcomm ≫ Wcd9375 Firmware Version-

Qualcomm ≫ Wcd9375 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcn3615 Firmware Version-

Qualcomm ≫ Wcn3615 Version-

Qualcomm ≫ Wcn3680b Firmware Version-

Qualcomm ≫ Wcn3680b Version-

Qualcomm ≫ Wcn3910 Firmware Version-

Qualcomm ≫ Wcn3910 Version-

Qualcomm ≫ Wcn3950 Firmware Version-

Qualcomm ≫ Wcn3950 Version-

Qualcomm ≫ Wcn3980 Firmware Version-

Qualcomm ≫ Wcn3980 Version-

Qualcomm ≫ Wcn3988 Firmware Version-

Qualcomm ≫ Wcn3988 Version-

Qualcomm ≫ Wcn3990 Firmware Version-

Qualcomm ≫ Wcn3990 Version-

Qualcomm ≫ Wcn3991 Firmware Version-

Qualcomm ≫ Wcn3991 Version-

Qualcomm ≫ Wcn3998 Firmware Version-

Qualcomm ≫ Wcn3998 Version-

Qualcomm ≫ Wcn6740 Firmware Version-

Qualcomm ≫ Wcn6740 Version-

Qualcomm ≫ Wcn6750 Firmware Version-

Qualcomm ≫ Wcn6750 Version-

Qualcomm ≫ Wcn6850 Firmware Version-

Qualcomm ≫ Wcn6850 Version-

Qualcomm ≫ Wcn6851 Firmware Version-

Qualcomm ≫ Wcn6851 Version-

Qualcomm ≫ Wcn6855 Firmware Version-

Qualcomm ≫ Wcn6855 Version-

Qualcomm ≫ Wcn6856 Firmware Version-

Qualcomm ≫ Wcn6856 Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.33%	0.528

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
product-security@qualcomm.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-1907

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-1907

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-1907

EUVD