Vulnerability identifier: #VU57891
Vulnerability risk: High
CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-119
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
AQT1000
Mobile applications /
Mobile firmware & hardware
QCA1062
Mobile applications /
Mobile firmware & hardware
QCA1064
Mobile applications /
Mobile firmware & hardware
QCA2066
Mobile applications /
Mobile firmware & hardware
QCA6320
Mobile applications /
Mobile firmware & hardware
QCA6391
Mobile applications /
Mobile firmware & hardware
QCA6420
Mobile applications /
Mobile firmware & hardware
QCA6430
Mobile applications /
Mobile firmware & hardware
SC8280XP
Mobile applications /
Mobile firmware & hardware
SD 8CX
Mobile applications /
Mobile firmware & hardware
WCD9340
Mobile applications /
Mobile firmware & hardware
WCD9341
Mobile applications /
Mobile firmware & hardware
WCD9380
Mobile applications /
Mobile firmware & hardware
WCD9385
Mobile applications /
Mobile firmware & hardware
WCN3998
Mobile applications /
Mobile firmware & hardware
WCN6850
Mobile applications /
Mobile firmware & hardware
WCN6851
Mobile applications /
Mobile firmware & hardware
WCN6855
Mobile applications /
Mobile firmware & hardware
WCN6856
Mobile applications /
Mobile firmware & hardware
WSA8810
Mobile applications /
Mobile firmware & hardware
WSA8815
Mobile applications /
Mobile firmware & hardware
WSA8830
Mobile applications /
Mobile firmware & hardware
WSA8835
Mobile applications /
Mobile firmware & hardware
Vendor: Qualcomm
Description
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to lack of parameter length check during MBSSID scan IE parse. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
AQT1000: All versions
QCA1062: All versions
QCA1064: All versions
QCA2066: All versions
QCA6320: All versions
QCA6391: All versions
QCA6420: All versions
QCA6430: All versions
SC8280XP: All versions
SD 8CX: All versions
WCD9340: All versions
WCD9341: All versions
WCD9380: All versions
WCD9385: All versions
WCN3998: All versions
WCN6850: All versions
WCN6851: All versions
WCN6855: All versions
WCN6856: All versions
WSA8810: All versions
WSA8815: All versions
WSA8830: All versions
WSA8835: All versions
External links
http://www.qualcomm.com/company/product-security/bulletins/november-2021-bulletin
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.