Use-after-free in Qualcomm Hardware solutions

#VU57908 Use-after-free in Qualcomm Hardware solutions

Published: 2021-11-03

Vulnerability identifier: #VU57908

Vulnerability risk: Low

CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-30263

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vendor: Qualcomm

Description

The vulnerability allows a local user to compromise vulnerable system.

The vulnerability exists due to lack of synchronization mechanism when On-Device Logging node open twice concurrently. A local administrator can trigger use-after-free error and execute arbitrary code on the target system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

AQT1000: All versions

AR8031: All versions

AR8035: All versions

CSRA6620: All versions

CSRA6640: All versions

QCA6391: All versions

QCA6420: All versions

QCA6430: All versions

QCA8337: All versions

QCM6125: All versions

QCS405: All versions

QCS6125: All versions

SD 8C: All versions

SD 8CX: All versions

SD855: All versions

SDX55: All versions

SDX55M: All versions

WCD9335: All versions

WCD9340: All versions

WCD9341: All versions

WCD9370: All versions

WCN3950: All versions

WCN3980: All versions

WCN3998: All versions

WCN3999: All versions

WSA8810: All versions

WSA8815: All versions

External links
http://www.qualcomm.com/company/product-security/bulletins/november-2021-bulletin

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Qualcomm chipsets