Vulnerability Description
Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Ar8035 Firmware | - |
| Qualcomm | Ar8035 | - |
| Qualcomm | Csr8811 Firmware | - |
| Qualcomm | Csr8811 | - |
| Qualcomm | Ipq6000 Firmware | - |
| Qualcomm | Ipq6000 | - |
| Qualcomm | Ipq6005 Firmware | - |
| Qualcomm | Ipq6005 | - |
| Qualcomm | Ipq6010 Firmware | - |
| Qualcomm | Ipq6010 | - |
| Qualcomm | Ipq6018 Firmware | - |
| Qualcomm | Ipq6018 | - |
| Qualcomm | Ipq6028 Firmware | - |
| Qualcomm | Ipq6028 | - |
| Qualcomm | Qca4024 Firmware | - |
| Qualcomm | Qca4024 | - |
| Qualcomm | Qca6390 Firmware | - |
| Qualcomm | Qca6390 | - |
| Qualcomm | Qca6391 Firmware | - |
| Qualcomm | Qca6391 | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/march-2022-bulletinVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/march-2022-bulletinVendor Advisory
FAQ
What is CVE-2021-1950?
CVE-2021-1950 is a vulnerability with a CVSS score of 7.8 (HIGH). Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdr...
How severe is CVE-2021-1950?
CVE-2021-1950 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-1950?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Ar8035 Firmware, Qualcomm Ar8035, Qualcomm Csr8811 Firmware, Qualcomm Csr8811, Qualcomm Ipq6000 Firmware.