Vulnerability Name:

CVE-2021-1887 (CCN-205337)

Assigned:2020-12-08
Published:2021-07-05
Updated:2021-07-15
Summary:An assertion can be reached in the WLAN subsystem while using the Wi-Fi Fine Timing Measurement protocol in Snapdragon Wired Infrastructure and Networking
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-617
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2021-1887

Source: XF
Type: UNKNOWN
qualcomm-cve20211887-dos(205337)

Source: CCN
Type: Qualcomm Web site
July 2021 Security Bulletin

Source: CONFIRM
Type: Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

Vulnerable Configuration:Configuration 1:
  • cpe:/o:qualcomm:ar7420_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ar7420:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:qualcomm:ar9380_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ar9380:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:csr8811:-:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:qualcomm:ipq4018_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4018:-:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4019:-:*:*:*:*:*:*:*

    • Configuration 6:
  • cpe:/o:qualcomm:ipq4028_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4028:-:*:*:*:*:*:*:*

    • Configuration 7:
  • cpe:/o:qualcomm:ipq4029_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq4029:-:*:*:*:*:*:*:*

    • Configuration 8:
  • cpe:/o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq8064:-:*:*:*:*:*:*:*

    • Configuration 9:
  • cpe:/o:qualcomm:ipq8065_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq8065:-:*:*:*:*:*:*:*

    • Configuration 10:
  • cpe:/o:qualcomm:ipq8069_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq8069:-:*:*:*:*:*:*:*

    • Configuration 11:
  • cpe:/o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:ipq8074:-:*:*:*:*:*:*:*

    • Configuration 12:
  • cpe:/o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca6310:-:*:*:*:*:*:*:*

    • Configuration 13:
  • cpe:/o:qualcomm:qca6320_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca6320:-:*:*:*:*:*:*:*

    • Configuration 14:
  • cpe:/o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca6335:-:*:*:*:*:*:*:*

    • Configuration 15:
  • cpe:/o:qualcomm:qca6428_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca6428:-:*:*:*:*:*:*:*

    • Configuration 16:
  • cpe:/o:qualcomm:qca6438_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca6438:-:*:*:*:*:*:*:*

    • Configuration 17:
  • cpe:/o:qualcomm:qca7500_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca7500:-:*:*:*:*:*:*:*

    • Configuration 18:
  • cpe:/o:qualcomm:qca7520_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca7520:-:*:*:*:*:*:*:*

    • Configuration 19:
  • cpe:/o:qualcomm:qca7550_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca7550:-:*:*:*:*:*:*:*

    • Configuration 20:
  • cpe:/o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9531:-:*:*:*:*:*:*:*

    • Configuration 21:
  • cpe:/o:qualcomm:qca9558_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9558:-:*:*:*:*:*:*:*

    • Configuration 22:
  • cpe:/o:qualcomm:qca9561_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9561:-:*:*:*:*:*:*:*

    • Configuration 23:
  • cpe:/o:qualcomm:qca9563_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9563:-:*:*:*:*:*:*:*

    • Configuration 24:
  • cpe:/o:qualcomm:qca9880_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9880:-:*:*:*:*:*:*:*

    • Configuration 25:
  • cpe:/o:qualcomm:qca9882_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9882:-:*:*:*:*:*:*:*

    • Configuration 26:
  • cpe:/o:qualcomm:qca9887_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9887:-:*:*:*:*:*:*:*

    • Configuration 27:
  • cpe:/o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9888:-:*:*:*:*:*:*:*

    • Configuration 28:
  • cpe:/o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9889:-:*:*:*:*:*:*:*

    • Configuration 29:
  • cpe:/o:qualcomm:qca9896_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9896:-:*:*:*:*:*:*:*

    • Configuration 30:
  • cpe:/o:qualcomm:qca9898_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9898:-:*:*:*:*:*:*:*

    • Configuration 31:
  • cpe:/o:qualcomm:qca9980_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9980:-:*:*:*:*:*:*:*

    • Configuration 32:
  • cpe:/o:qualcomm:qca9984_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9984:-:*:*:*:*:*:*:*

    • Configuration 33:
  • cpe:/o:qualcomm:qca9990_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9990:-:*:*:*:*:*:*:*

    • Configuration 34:
  • cpe:/o:qualcomm:qca9992_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9992:-:*:*:*:*:*:*:*

    • Configuration 35:
  • cpe:/o:qualcomm:qca9994_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qca9994:-:*:*:*:*:*:*:*

    • Configuration 36:
  • cpe:/o:qualcomm:qcn5024_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qcn5024:-:*:*:*:*:*:*:*

    • Configuration 37:
  • cpe:/o:qualcomm:qcn5054_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qcn5054:-:*:*:*:*:*:*:*

    • Configuration 38:
  • cpe:/o:qualcomm:qcn5501_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qcn5501:-:*:*:*:*:*:*:*

    • Configuration 39:
  • cpe:/o:qualcomm:qcn5502_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:qualcomm:qcn5502:-:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:qualcomm:snapdragon_wired_infrastructure_&_networking:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    qualcomm ar7420 firmware -
    qualcomm ar7420 -
    qualcomm ar9380 firmware -
    qualcomm ar9380 -
    qualcomm csr8811 firmware -
    qualcomm csr8811 -
    qualcomm ipq4018 firmware -
    qualcomm ipq4018 -
    qualcomm ipq4019 firmware -
    qualcomm ipq4019 -
    qualcomm ipq4028 firmware -
    qualcomm ipq4028 -
    qualcomm ipq4029 firmware -
    qualcomm ipq4029 -
    qualcomm ipq8064 firmware -
    qualcomm ipq8064 -
    qualcomm ipq8065 firmware -
    qualcomm ipq8065 -
    qualcomm ipq8069 firmware -
    qualcomm ipq8069 -
    qualcomm ipq8074 firmware -
    qualcomm ipq8074 -
    qualcomm qca6310 firmware -
    qualcomm qca6310 -
    qualcomm qca6320 firmware -
    qualcomm qca6320 -
    qualcomm qca6335 firmware -
    qualcomm qca6335 -
    qualcomm qca6428 firmware -
    qualcomm qca6428 -
    qualcomm qca6438 firmware -
    qualcomm qca6438 -
    qualcomm qca7500 firmware -
    qualcomm qca7500 -
    qualcomm qca7520 firmware -
    qualcomm qca7520 -
    qualcomm qca7550 firmware -
    qualcomm qca7550 -
    qualcomm qca9531 firmware -
    qualcomm qca9531 -
    qualcomm qca9558 firmware -
    qualcomm qca9558 -
    qualcomm qca9561 firmware -
    qualcomm qca9561 -
    qualcomm qca9563 firmware -
    qualcomm qca9563 -
    qualcomm qca9880 firmware -
    qualcomm qca9880 -
    qualcomm qca9882 firmware -
    qualcomm qca9882 -
    qualcomm qca9887 firmware -
    qualcomm qca9887 -
    qualcomm qca9888 firmware -
    qualcomm qca9888 -
    qualcomm qca9889 firmware -
    qualcomm qca9889 -
    qualcomm qca9896 firmware -
    qualcomm qca9896 -
    qualcomm qca9898 firmware -
    qualcomm qca9898 -
    qualcomm qca9980 firmware -
    qualcomm qca9980 -
    qualcomm qca9984 firmware -
    qualcomm qca9984 -
    qualcomm qca9990 firmware -
    qualcomm qca9990 -
    qualcomm qca9992 firmware -
    qualcomm qca9992 -
    qualcomm qca9994 firmware -
    qualcomm qca9994 -
    qualcomm qcn5024 firmware -
    qualcomm qcn5024 -
    qualcomm qcn5054 firmware -
    qualcomm qcn5054 -
    qualcomm qcn5501 firmware -
    qualcomm qcn5501 -
    qualcomm qcn5502 firmware -
    qualcomm qcn5502 -
    qualcomm snapdragon wired infrastructure & networking -