### [CVE-2021-1967](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1967)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Voice%20%26%20Music%2C%20Snapdragon%20Wearables&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=APQ8009%2C%20APQ8053%2C%20AQT1000%2C%20AR8031%2C%20AR8035%2C%20CSRA6620%2C%20CSRA6640%2C%20MDM9206%2C%20MDM9628%2C%20QCA6174A%2C%20QCA6390%2C%20QCA6391%2C%20QCA6420%2C%20QCA6421%2C%20QCA6426%2C%20QCA6430%2C%20QCA6431%2C%20QCA6436%2C%20QCA6564A%2C%20QCA6564AU%2C%20QCA6574%2C%20QCA6574A%2C%20QCA6574AU%2C%20QCA6595%2C%20QCA6595AU%2C%20QCA6696%2C%20QCA8337%2C%20QCA9367%2C%20QCA9377%2C%20QCM4290%2C%20QCM6125%2C%20QCS405%2C%20QCS410%2C%20QCS4290%2C%20QCS605%2C%20QCS610%2C%20QCS6125%2C%20QRB5165%2C%20Qualcomm215%2C%20SA6145P%2C%20SA6150P%2C%20SA6155%2C%20SA6155P%2C%20SA8145P%2C%20SA8150P%2C%20SA8155%2C%20SA8155P%2C%20SA8195P%2C%20SD%20675%2C%20SD%208C%2C%20SD%208CX%2C%20SD205%2C%20SD210%2C%20SD460%2C%20SD662%2C%20SD665%2C%20SD675%2C%20SD678%2C%20SD690%205G%2C%20SD720G%2C%20SD750G%2C%20SD765%2C%20SD765G%2C%20SD768G%2C%20SD778G%2C%20SD780G%2C%20SD820%2C%20SD855%2C%20SD865%205G%2C%20SD870%2C%20SD888%205G%2C%20SDA429W%2C%20SDX55%2C%20SDX55M%2C%20SDXR2%205G%2C%20SM6250%2C%20SM7250P%2C%20SM7325P%2C%20WCD9326%2C%20WCD9330%2C%20WCD9335%2C%20WCD9340%2C%20WCD9341%2C%20WCD9370%2C%20WCD9375%2C%20WCD9380%2C%20WCD9385%2C%20WCN3610%2C%20WCN3615%2C%20WCN3620%2C%20WCN3660B%2C%20WCN3680%2C%20WCN3680B%2C%20WCN3950%2C%20WCN3980%2C%20WCN3988%2C%20WCN3990%2C%20WCN3991%2C%20WCN3998%2C%20WCN3999%2C%20WCN6740%2C%20WCN6750%2C%20WCN6850%2C%20WCN6851%2C%20WCN6855%2C%20WCN6856%2C%20WSA8810%2C%20WSA8815%2C%20WSA8830%2C%20WSA8835%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Stack-based%20Buffer%20Overflow%20in%20WLAN&color=brightgreen)

### Description

Possible stack buffer overflow due to lack of check on the maximum number of post NAN discovery attributes while processing a NAN Match event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

#### Github
No PoCs found on GitHub currently.