CVE-2021-1940: Use After Free
First published: Wed Jul 07 2021(Updated: )
Use after free can occur due to improper handling of response from firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | ||
| Qualcomm AQT1000 Firmware | ||
| Qualcomm AQT1000 Firmware | ||
| Qualcomm AR8031 | ||
| Qualcomm AR8031 Firmware | ||
| Qualcomm AR8035 Firmware | ||
| Qualcomm AR8035 Firmware | ||
| Qualcomm CSRA6620 | ||
| Qualcomm CSRA6620 | ||
| Qualcomm csra6640 firmware | ||
| Qualcomm csra6640 firmware | ||
| Qualcomm FSM10055 | ||
| Qualcomm FSM10055 Firmware | ||
| Qualcomm FSM10056 | ||
| Qualcomm fsm10056 firmware | ||
| Qualcomm QCA6391 Firmware | ||
| Qualcomm QCA6391 Firmware | ||
| Qualcomm QCA6420 Firmware | ||
| Qualcomm QCA6420 Firmware | ||
| Qualcomm QCA6430 firmware | ||
| Qualcomm QCA6430 firmware | ||
| Qualcomm QCA6564AU Firmware | ||
| Qualcomm QCA6564 Firmware | ||
| Qualcomm QCA6564A | ||
| Qualcomm QCA6564A Firmware | ||
| Qualcomm QCA6564AU Firmware | ||
| Qualcomm QCA6564A | ||
| Qualcomm QCA6574 Firmware | ||
| Qualcomm QCA6574 Firmware | ||
| qualcomm qca6574a firmware | ||
| qualcomm qca6574a firmware | ||
| Qualcomm QCA6574 Firmware | ||
| Qualcomm QCA6574AU | ||
| qualcomm QCA6584AU firmware | ||
| Qualcomm QCA6584 | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm QCA8337 Firmware | ||
| Qualcomm QCA8337 Firmware | ||
| Qualcomm QCM6125 | ||
| Qualcomm qcm6125 firmware | ||
| Qualcomm QCS405 Firmware | ||
| Qualcomm QCS405 Firmware | ||
| Qualcomm QCS410 Firmware | ||
| Qualcomm QCS410 Firmware | ||
| Qualcomm QCS610 Firmware | ||
| Qualcomm QCS610 Firmware | ||
| Qualcomm QCS6125 Firmware | ||
| Qualcomm QCS6125 Firmware | ||
| Qualcomm SA415M | ||
| Qualcomm sa415m firmware | ||
| Qualcomm SA515M Firmware | ||
| Qualcomm SA515M Firmware | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155 Firmware | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155P | ||
| Qualcomm SA8155P Firmware | ||
| Qualcomm SA8155 Firmware | ||
| Qualcomm SA8155 | ||
| Qualcomm SA8155P Firmware | ||
| Qualcomm SA8195P | ||
| Qualcomm SA8195P Firmware | ||
| Qualcomm SD 675 Firmware | ||
| Qualcomm Snapdragon 675 | ||
| qualcomm sd 8c firmware | ||
| Qualcomm Snapdragon 8c | ||
| Qualcomm SD 8cx firmware | ||
| Qualcomm Snapdragon 8cx | ||
| Qualcomm SDM660 Firmware | ||
| Qualcomm Snapdragon 660 | ||
| Qualcomm Snapdragon 665 | ||
| Qualcomm Snapdragon 665 | ||
| Qualcomm SD 675 Firmware | ||
| Qualcomm Snapdragon 675 | ||
| Qualcomm SD678 Firmware | ||
| Qualcomm SD678 Firmware | ||
| Qualcomm Snapdragon 720G Firmware | ||
| Qualcomm SD720G Firmware | ||
| Qualcomm SD 730 Firmware | ||
| Qualcomm Snapdragon 730 | ||
| Qualcomm Snapdragon 855 | ||
| Qualcomm Snapdragon 855 | ||
| Qualcomm SDA429W Firmware | ||
| Qualcomm SDA429W Firmware | ||
| Qualcomm SDX50M Firmware | ||
| Qualcomm SDX50M Firmware | ||
| Qualcomm SDX55M Firmware | ||
| Qualcomm SDX55 Firmware | ||
| Qualcomm SDX55M Firmware | ||
| Qualcomm SDX55M Firmware | ||
| Qualcomm SM6250P Firmware | ||
| Qualcomm SM6250 Firmware | ||
| Qualcomm SM6250 Firmware | ||
| Qualcomm SM6250P Firmware | ||
| Qualcomm WCD9335 Firmware | ||
| Qualcomm WCD9335 Firmware | ||
| Qualcomm WCD9340 Firmware | ||
| Qualcomm WCD9340 Firmware | ||
| Qualcomm WCD9341 | ||
| Qualcomm WCD9341 Firmware | ||
| Qualcomm WCD9370 Firmware | ||
| Qualcomm WCD9370 Firmware | ||
| Qualcomm WCD9375 | ||
| Qualcomm WCD9375 Firmware | ||
| Qualcomm WCD9380 | ||
| Qualcomm WCD9380 Firmware | ||
| Qualcomm WCN3610 Firmware | ||
| Qualcomm WCN3610 Firmware | ||
| Qualcomm WCN3620 Firmware | ||
| Qualcomm WCN3620 Firmware | ||
| Qualcomm WCN3660B | ||
| Qualcomm WCN3660B Firmware | ||
| Qualcomm WCN3950 Firmware | ||
| Qualcomm WCN3950 Firmware | ||
| Qualcomm Wcn3980 | ||
| qualcomm wcn3980 firmware | ||
| qualcomm wcn3988 firmware | ||
| Qualcomm WCN3988 | ||
| Qualcomm WCN3990 | ||
| Qualcomm WCN3990 | ||
| Qualcomm WCN3991 Firmware | ||
| Qualcomm WCN3991 Firmware | ||
| Qualcomm wcn3998 firmware | ||
| Qualcomm wcn3998 firmware | ||
| Qualcomm WCN3999 Firmware | ||
| Qualcomm WCN3999 Firmware | ||
| Qualcomm WSA8810 | ||
| Qualcomm WSA8810 Firmware | ||
| qualcomm wsa8815 firmware | ||
| qualcomm wsa8815 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://source.codeaurora.org/quic/la/kernel/msm-4.14/commit/?id=8001ee96d68c2ba22f7eced2f44393f93a3917c0
- https://source.android.com/docs/security/bulletin/2021-07-01 (Advisory)
- http://packetstormsecurity.com/files/172856/Qualcomm-NPU-Use-After-Free-Information-Leak.html
- https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin
Frequently Asked Questions
What is CVE-2021-1940 vulnerability about?
The vulnerability CVE-2021-1940 is related to a use after free issue caused by improper handling of responses from firmware in various Qualcomm Snapdragon products.
How severe is CVE-2021-1940?
The severity of CVE-2021-1940 is rated as 7.8, which is considered high.
Which software products are affected by CVE-2021-1940?
Google Android and various firmware versions for Qualcomm Snapdragon products like Snapdragon Auto, Compute, Consumer IOT, Industrial IOT, Mobile, Voice & Music, and Wearables are affected.
Where can I find more information about CVE-2021-1940 vulnerability?
You can find more information about CVE-2021-1940 on the Qualcomm and Android security bulletin websites, as well as on Packet Storm Security.
- agent/references
- agent/first-publish-date
- agent/type
- agent/weakness
- agent/author
- agent/remedy
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/event
- agent/source
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/google
- canonical/android
- vendor/qualcomm
- canonical/qualcomm aqt1000 firmware
- canonical/qualcomm ar8031
- canonical/qualcomm ar8031 firmware
- canonical/qualcomm ar8035 firmware
- canonical/qualcomm csra6620
- canonical/qualcomm csra6640 firmware
- canonical/qualcomm fsm10055
- canonical/qualcomm fsm10055 firmware
- canonical/qualcomm fsm10056
- canonical/qualcomm fsm10056 firmware
- canonical/qualcomm qca6391 firmware
- canonical/qualcomm qca6420 firmware
- canonical/qualcomm qca6430 firmware
- canonical/qualcomm qca6564au firmware
- canonical/qualcomm qca6564 firmware
- canonical/qualcomm qca6564a
- canonical/qualcomm qca6564a firmware
- canonical/qualcomm qca6574 firmware
- canonical/qualcomm qca6574a firmware
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6584au firmware
- canonical/qualcomm qca6584
- canonical/qualcomm qca6595au firmware
- canonical/qualcomm qca6696 firmware
- canonical/qualcomm qca8337 firmware
- canonical/qualcomm qcm6125
- canonical/qualcomm qcm6125 firmware
- canonical/qualcomm qcs405 firmware
- canonical/qualcomm qcs410 firmware
- canonical/qualcomm qcs610 firmware
- canonical/qualcomm qcs6125 firmware
- canonical/qualcomm sa415m
- canonical/qualcomm sa415m firmware
- canonical/qualcomm sa515m firmware
- canonical/qualcomm sa6145p firmware
- canonical/qualcomm sa6155
- canonical/qualcomm sa6155 firmware
- canonical/qualcomm sa6155p
- canonical/qualcomm sa8155p firmware
- canonical/qualcomm sa8155 firmware
- canonical/qualcomm sa8155
- canonical/qualcomm sa8195p
- canonical/qualcomm sa8195p firmware
- canonical/qualcomm sd 675 firmware
- canonical/qualcomm snapdragon 675
- canonical/qualcomm sd 8c firmware
- canonical/qualcomm snapdragon 8c
- canonical/qualcomm sd 8cx firmware
- canonical/qualcomm snapdragon 8cx
- canonical/qualcomm sdm660 firmware
- canonical/qualcomm snapdragon 660
- canonical/qualcomm snapdragon 665
- canonical/qualcomm sd678 firmware
- canonical/qualcomm snapdragon 720g firmware
- canonical/qualcomm sd720g firmware
- canonical/qualcomm sd 730 firmware
- canonical/qualcomm snapdragon 730
- canonical/qualcomm snapdragon 855
- canonical/qualcomm sda429w firmware
- canonical/qualcomm sdx50m firmware
- canonical/qualcomm sdx55m firmware
- canonical/qualcomm sdx55 firmware
- canonical/qualcomm sm6250p firmware
- canonical/qualcomm sm6250 firmware
- canonical/qualcomm wcd9335 firmware
- canonical/qualcomm wcd9340 firmware
- canonical/qualcomm wcd9341
- canonical/qualcomm wcd9341 firmware
- canonical/qualcomm wcd9370 firmware
- canonical/qualcomm wcd9375
- canonical/qualcomm wcd9375 firmware
- canonical/qualcomm wcd9380
- canonical/qualcomm wcd9380 firmware
- canonical/qualcomm wcn3610 firmware
- canonical/qualcomm wcn3620 firmware
- canonical/qualcomm wcn3660b
- canonical/qualcomm wcn3660b firmware
- canonical/qualcomm wcn3950 firmware
- canonical/qualcomm wcn3980
- canonical/qualcomm wcn3980 firmware
- canonical/qualcomm wcn3988 firmware
- canonical/qualcomm wcn3988
- canonical/qualcomm wcn3990
- canonical/qualcomm wcn3991 firmware
- canonical/qualcomm wcn3998 firmware
- canonical/qualcomm wcn3999 firmware
- canonical/qualcomm wsa8810
- canonical/qualcomm wsa8810 firmware
- canonical/qualcomm wsa8815 firmware