### [CVE-2021-1899](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1899)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Wearables&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=APQ8009W%2C%20AQT1000%2C%20MSM8909W%2C%20QCA4020%2C%20QCA6174A%2C%20QCA6420%2C%20QCA6430%2C%20QCA9379%2C%20Qualcomm215%2C%20SD%20675%2C%20SD205%2C%20SD210%2C%20SD675%2C%20SD678%2C%20SD720G%2C%20SD730%2C%20SD855%2C%20SDA429W%2C%20SDM429W%2C%20SDX50M%2C%20SDX55%2C%20SDX55M%2C%20SM6250%2C%20WCD9326%2C%20WCD9341%2C%20WCD9370%2C%20WCD9375%2C%20WCD9380%2C%20WCN3610%2C%20WCN3615%2C%20WCN3620%2C%20WCN3660B%2C%20WCN3680%2C%20WCN3680B%2C%20WCN3950%2C%20WCN3980%2C%20WCN3988%2C%20WCN3991%2C%20WCN3998%2C%20WSA8810%2C%20WSA8815%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Over-read%20in%20Boot&color=brightgreen)

### Description

Possible buffer over read due to lack of length check while flashing meta images in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

#### Github
No PoCs found on GitHub currently.