CVE-2021-1887

An assertion can be reached in the WLAN subsystem while using the Wi-Fi Fine Timing Measurement protocol in Snapdragon Wired Infrastructure and Networking

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:ar7420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar7420:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:ar9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar9380:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csr8811:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:ipq4018_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq4018:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:ipq4028_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq4028:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:ipq4029_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq4029:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:ipq8065_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8065:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:ipq8069_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8069:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6310:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qca6320_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6320:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6335:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:qca6428_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6428:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:qca6438_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6438:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:qca7500_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca7500:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:qca7520_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca7520:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:qca7550_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca7550:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:qca9558_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9558:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:qca9561_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9561:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:qca9563_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9563:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:qca9880_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9880:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:qca9882_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9882:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:qca9887_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9887:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9888:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9889:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:qca9896_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9896:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:qca9898_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9898:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:qca9980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9980:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:qca9984_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9984:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:qca9990_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9990:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:qca9992_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9992:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:qca9994_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9994:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:qcn5024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5024:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:qcn5054_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5054:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:qcn5501_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5501:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:qcn5502_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5502:-:*:*:*:*:*:*:*

History

15 Jul 2021, 20:11

Type	Values Removed	Values Added
CWE		CWE-617
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 5.0 v3 : 7.5
CPE		cpe:2.3:h:qualcomm:qca9990:-:::::::* cpe:2.3:h:qualcomm:qca6310:-:::::::* cpe:2.3:h:qualcomm:qca6438:-:::::::* cpe:2.3:o:qualcomm:qca9992_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9561:-:::::::* cpe:2.3:h:qualcomm:csr8811:-:::::::* cpe:2.3:h:qualcomm:ipq8065:-:::::::* cpe:2.3:o:qualcomm:qca9531_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9898:-:::::::* cpe:2.3:h:qualcomm:qca9882:-:::::::* cpe:2.3:h:qualcomm:qcn5502:-:::::::* cpe:2.3:o:qualcomm:qca9990_firmware:-:::::::* cpe:2.3:o:qualcomm:ipq4028_firmware:-:::::::* cpe:2.3:o:qualcomm:qca7520_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9898_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5501:-:::::::* cpe:2.3:o:qualcomm:qca6335_firmware:-:::::::* cpe:2.3:o:qualcomm:ipq4029_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9563:-:::::::* cpe:2.3:o:qualcomm:qca9880_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq4019:-:::::::* cpe:2.3:o:qualcomm:ipq8064_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9563_firmware:-:::::::* cpe:2.3:h:qualcomm:ar7420:-:::::::* cpe:2.3:o:qualcomm:ar7420_firmware:-:::::::* cpe:2.3:o:qualcomm:ipq4018_firmware:-:::::::* cpe:2.3:h:qualcomm:qca7550:-:::::::* cpe:2.3:o:qualcomm:qca9980_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5054:-:::::::* cpe:2.3:o:qualcomm:qca9896_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9558_firmware:-:::::::* cpe:2.3:o:qualcomm:qca7500_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9889:-:::::::* cpe:2.3:o:qualcomm:ipq8065_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9531:-:::::::* cpe:2.3:o:qualcomm:qca6320_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn5502_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9888:-:::::::* cpe:2.3:h:qualcomm:qca6335:-:::::::* cpe:2.3:h:qualcomm:qca9887:-:::::::* cpe:2.3:o:qualcomm:qca6428_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5024:-:::::::* cpe:2.3:h:qualcomm:qca9984:-:::::::* cpe:2.3:o:qualcomm:qca7550_firmware:-:::::::* cpe:2.3:o:qualcomm:csr8811_firmware:-:::::::* cpe:2.3:h:qualcomm:qca7520:-:::::::* cpe:2.3:h:qualcomm:ipq8064:-:::::::* cpe:2.3:h:qualcomm:qca9896:-:::::::* cpe:2.3:h:qualcomm:qca9980:-:::::::* cpe:2.3:h:qualcomm:qca7500:-:::::::* cpe:2.3:h:qualcomm:ipq4028:-:::::::* cpe:2.3:o:qualcomm:qca6438_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9561_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9992:-:::::::* cpe:2.3:h:qualcomm:ipq4029:-:::::::* cpe:2.3:o:qualcomm:ipq8069_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9994_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn5024_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9558:-:::::::* cpe:2.3:h:qualcomm:ar9380:-:::::::* cpe:2.3:o:qualcomm:qca6310_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9882_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9887_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9889_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq4018:-:::::::* cpe:2.3:o:qualcomm:ipq4019_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn5054_firmware:-:::::::* cpe:2.3:o:qualcomm:ar9380_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9888_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9880:-:::::::* cpe:2.3:h:qualcomm:ipq8074:-:::::::* cpe:2.3:h:qualcomm:qca6320:-:::::::* cpe:2.3:h:qualcomm:qca9994:-:::::::* cpe:2.3:o:qualcomm:qcn5501_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq8069:-:::::::* cpe:2.3:o:qualcomm:ipq8074_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9984_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6428:-:::::::*
References	~~(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin -~~	(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin - Vendor Advisory

13 Jul 2021, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-07-13 06:15

Updated : 2024-02-04 21:47

NVD link : CVE-2021-1887

Mitre link : CVE-2021-1887

CVE.ORG link : CVE-2021-1887

JSON object : View

Products Affected

qualcomm

qca6428_firmware
ipq4019
qcn5501
qca6320
qca9558_firmware
csr8811_firmware
qca6310
qca9882
qca9882_firmware
ar9380
qca9531
qca6428
qcn5502_firmware
ipq8064
qca9896
qca9898
qca6310_firmware
qca9984_firmware
qca9531_firmware
qca9984
qca6335_firmware
qca9880_firmware
qcn5502
qca9896_firmware
qca9994_firmware
qca9992_firmware
ipq8065
qca6335
ipq8069_firmware
ipq4028
qca9558
qca6438
ipq4028_firmware
qca9563_firmware
qca9887_firmware
ipq4019_firmware
qca9994
qca9561
ipq4029_firmware
qca9887
ipq4018_firmware
qcn5501_firmware
ipq8064_firmware
qca9563
qca7500_firmware
qca6320_firmware
qca9889
qcn5024
csr8811
ar9380_firmware
qca7520
qca9561_firmware
ar7420
ipq4029
qca9992
qca6438_firmware
qca7550
ipq8074_firmware
qcn5024_firmware
qcn5054_firmware
qcn5054
ipq4018
qca9880
qca9990_firmware
qca9990
qca9980
ipq8074
qca9888_firmware
qca7500
ipq8065_firmware
qca9980_firmware
qca9888
qca9889_firmware
qca7520_firmware
qca7550_firmware
ipq8069
ar7420_firmware
qca9898_firmware

CWE

CWE-617

Reachable Assertion

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2021-1887

7.5^/10

5.0^/10

Attach tags to `CVE-2021-1887`