Vulnerability Description
Lack of strict validation of bootmode can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Apq8096Au Firmware | - |
| Qualcomm | Apq8096Au | - |
| Qualcomm | Aqt1000 Firmware | - |
| Qualcomm | Aqt1000 | - |
| Qualcomm | Msm8996Au Firmware | - |
| Qualcomm | Msm8996Au | - |
| Qualcomm | Qca6390 Firmware | - |
| Qualcomm | Qca6390 | - |
| Qualcomm | Qca6391 Firmware | - |
| Qualcomm | Qca6391 | - |
| Qualcomm | Qca6420 Firmware | - |
| Qualcomm | Qca6420 | - |
| Qualcomm | Qca6421 Firmware | - |
| Qualcomm | Qca6421 | - |
| Qualcomm | Qca6426 Firmware | - |
| Qualcomm | Qca6426 | - |
| Qualcomm | Qca6430 Firmware | - |
| Qualcomm | Qca6430 | - |
| Qualcomm | Qca6431 Firmware | - |
| Qualcomm | Qca6431 | - |
References
- https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletinVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletinVendor Advisory
FAQ
What is CVE-2021-1929?
CVE-2021-1929 is a vulnerability with a CVSS score of 6.2 (MEDIUM). Lack of strict validation of bootmode can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...
How severe is CVE-2021-1929?
CVE-2021-1929 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-1929?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Apq8096Au Firmware, Qualcomm Apq8096Au, Qualcomm Aqt1000 Firmware, Qualcomm Aqt1000, Qualcomm Msm8996Au Firmware.