GSD-2021-1905 — Vulnetix

GSD-2021-1905 PUBLISHED CVSS 8.399999618530273 HIGH

Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Risk Scores

CVSS v3.1

8.399999618530273

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Qualcomm, Inc.	Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables	*

Timeline

Dec 6, 2019 CVE Published
Nov 8, 2021 PoC Published
Nov 20, 2021 PoC Published
Nov 14, 2024 PoC Published
Dec 24, 2024 PoC Published
Feb 23, 2025 PoC Published
Feb 2, 2026 PoC Published

References

https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin url
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-1905 advisory

Open in Interactive Console →