#VU55507 Use-after-free in Qualcomm products - CVE-2021-1947

Cybersecurity Help s.r.o.

Published: 2021-08-03

Vulnerability identifier: #VU55507

Vulnerability risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-1947

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vendor: Qualcomm

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in kernel graphics driver. A local user can run a specially crafted program to trigger a use-after-free error and execute arbitrary code elevated privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

APQ8009W: All versions

APQ8053: All versions

AR9380: All versions

IPQ8064: All versions

IPQ8065: All versions

IPQ8068: All versions

IPQ8069: All versions

MSM8909W: All versions

MSM8953: All versions

QCA6320: All versions

QCA6390: All versions

QCA6391: All versions

QCA6426: All versions

QCA8337: All versions

QCA9531: All versions

QCA9558: All versions

QCA9561: All versions

QCA9563: All versions

QCA9880: All versions

QCA9882: All versions

QCA9886: All versions

QCA9887: All versions

QCA9888: All versions

QCA9889: All versions

QCA9896: All versions

QCA9898: All versions

QCA9980: All versions

QCA9982: All versions

QCA9984: All versions

QCA9990: All versions

QCA9992: All versions

QCA9994: All versions

QCM2290: All versions

QCM4290: All versions

QCM6125: All versions

QCS2290: All versions

QCS4290: All versions

QCS6125: All versions

QET4101: All versions

QRB5165: All versions

QSW8573: All versions

SD429: All versions

SD460: All versions

SD660: All versions

SD662: All versions

SD665: All versions

SD6905G: All versions

SD750G: All versions

SD765: All versions

SD765G: All versions

SD768G: All versions

SD855: All versions

SD8655G: All versions

SD870: All versions

SDA429W: All versions

SDM429W: All versions

SDM830: All versions

SDX55: All versions

SDX55M: All versions

SM4125: All versions

SM7250: All versions

WCD9326: All versions

WCD9335: All versions

WCD9340: All versions

WCD9341: All versions

WCD9370: All versions

WCD9375: All versions

WCD9380: All versions

WCD9385: All versions

WCN3610: All versions

WCN3615: All versions

WCN3620: All versions

WCN3660B: All versions

WCN3680B: All versions

WCN3910: All versions

WCN3950: All versions

WCN3980: All versions

WCN3988: All versions

WCN3990: All versions

WCN3991: All versions

WCN3998: All versions

WCN6850: All versions

WCN6851: All versions

WSA8810: All versions

WSA8815: All versions

WSA8830: All versions

WSA8835: All versions

External links
https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin
https://source.codeaurora.org/quic/le/kernel/msm-4.19/commit/?id=cb82ed90520b6801e6b0ec6bac6821cd347e3de7
https://source.codeaurora.org/quic/le/kernel/msm-4.19/commit/?id=70c13b73f1ea7a30a730ced48a59d366898677bc
https://source.codeaurora.org/quic/le/kernel/msm-4.19/commit/?id=a637a43b7995cf905f1d0d059b418ee57e60aa67
https://source.codeaurora.org/quic/le/kernel/msm-4.19/commit/?id=851a03f61d90566e37408240b2f71ed34f8cc73a

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Qualcomm chipsets