First published: Tue Jul 13 2021(Updated: )
Possible buffer over-read due to lack of length check while flashing meta images in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Credit: product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Qualcomm APQ8009W Firmware | ||
Qualcomm APQ8009 Firmware | ||
Qualcomm APQ8053 | ||
Qualcomm APQ8053 Firmware | ||
Qualcomm AQT1000 Firmware | ||
Qualcomm AQT1000 Firmware | ||
Qualcomm MDM9206 | ||
Qualcomm MDM9206 firmware | ||
Qualcomm QCA6420 Firmware | ||
Qualcomm QCA6420 Firmware | ||
Qualcomm QCA6430 firmware | ||
Qualcomm QCA6430 firmware | ||
Qualcomm QCA9367 Firmware | ||
Qualcomm QCA9367 Firmware | ||
Qualcomm QCA9377 Firmware | ||
Qualcomm QCA9377 Firmware | ||
Qualcomm 215 Mobile Firmware | ||
Qualcomm 215 Firmware | ||
Qualcomm SD 675 Firmware | ||
Qualcomm Snapdragon 675 | ||
Qualcomm 205 Firmware | ||
Qualcomm Snapdragon 205 | ||
Qualcomm SD 210 Firmware | ||
Qualcomm SD210 Firmware | ||
Qualcomm SD 675 Firmware | ||
Qualcomm Snapdragon 675 | ||
Qualcomm SD678 Firmware | ||
Qualcomm SD678 Firmware | ||
Qualcomm Snapdragon 720G Firmware | ||
Qualcomm SD720G Firmware | ||
Qualcomm SD 730 Firmware | ||
Qualcomm Snapdragon 730 | ||
Qualcomm Snapdragon 855 | ||
Qualcomm Snapdragon 855 | ||
Qualcomm SDA429W Firmware | ||
Qualcomm SDA429W Firmware | ||
Qualcomm SDX50M Firmware | ||
Qualcomm SDX50M Firmware | ||
Qualcomm SDX55M Firmware | ||
Qualcomm SDX55 Firmware | ||
Qualcomm SDX55M Firmware | ||
Qualcomm SDX55M Firmware | ||
Qualcomm SM6250P Firmware | ||
Qualcomm SM6250 Firmware | ||
Qualcomm WCD9326 | ||
Qualcomm WCD9326 Firmware | ||
Qualcomm WCD9330 | ||
Qualcomm WCD9330 Firmware | ||
Qualcomm WCD9340 Firmware | ||
Qualcomm WCD9340 Firmware | ||
Qualcomm WCD9341 | ||
Qualcomm WCD9341 Firmware | ||
Qualcomm WCD9370 Firmware | ||
Qualcomm WCD9370 Firmware | ||
Qualcomm WCD9375 | ||
Qualcomm WCD9375 Firmware | ||
Qualcomm WCD9380 | ||
Qualcomm WCD9380 Firmware | ||
Qualcomm WCN3610 Firmware | ||
Qualcomm WCN3610 Firmware | ||
Qualcomm WCN3615 Firmware | ||
Qualcomm WCN3615 Firmware | ||
Qualcomm WCN3620 Firmware | ||
Qualcomm WCN3620 Firmware | ||
Qualcomm WCN3660B | ||
Qualcomm WCN3660B Firmware | ||
Qualcomm WCN3680B Firmware | ||
Qualcomm WCN3680B Firmware | ||
Qualcomm WCN3680B Firmware | ||
Qualcomm WCN3680B Firmware | ||
Qualcomm WCN3950 Firmware | ||
Qualcomm WCN3950 Firmware | ||
Qualcomm Wcn3980 | ||
Qualcomm WCN3980 | ||
Qualcomm WCN3988 Firmware | ||
Qualcomm WCN3988 Firmware | ||
Qualcomm WCN3991 Firmware | ||
Qualcomm WCN3991 Firmware | ||
Qualcomm WCN3998 Firmware | ||
Qualcomm wcn3998 firmware | ||
Qualcomm WSA8810 | ||
Qualcomm WSA8810 Firmware | ||
Qualcomm WSA8815 Firmware | ||
Qualcomm WSA8815 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-1901 is considered a medium severity vulnerability due to the potential for a buffer over-read that may affect system integrity.
To fix CVE-2021-1901, ensure that you update your firmware to the latest version provided by Qualcomm that addresses this vulnerability.
CVE-2021-1901 affects multiple Qualcomm chipsets including APQ8009, APQ8053, and others as listed in the detailed vendor advisory.
CVE-2021-1901 is categorized as a buffer over-read vulnerability related to the handling of meta images.
Exploitation of CVE-2021-1901 could potentially allow an attacker to read sensitive memory contents, depending on the specific environment and attack vector.