### [CVE-2021-30256](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30256)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=APQ8017%2C%20APQ8053%2C%20AQT1000%2C%20MSM8917%2C%20MSM8953%2C%20QCA6390%2C%20QCA6391%2C%20QCA6420%2C%20QCA6426%2C%20QCA6430%2C%20QCA6436%2C%20QCM2290%2C%20QCM4290%2C%20QCM6125%2C%20QCM6490%2C%20QCS2290%2C%20QCS4290%2C%20QCS605%2C%20QCS6125%2C%20QCS6490%2C%20Qualcomm215%2C%20SD%20636%2C%20SD%20675%2C%20SD429%2C%20SD439%2C%20SD460%2C%20SD480%2C%20SD632%2C%20SD662%2C%20SD665%2C%20SD675%2C%20SD678%2C%20SD690%205G%2C%20SD720G%2C%20SD730%2C%20SD750G%2C%20SD765%2C%20SD765G%2C%20SD768G%2C%20SD778G%2C%20SD780G%2C%20SD855%2C%20SD865%205G%2C%20SD870%2C%20SD888%2C%20SD888%205G%2C%20SDM630%2C%20SDX50M%2C%20SDX55%2C%20SDX55M%2C%20SDXR1%2C%20SDXR2%205G%2C%20SM4125%2C%20SM6250%2C%20SM7250P%2C%20SM7315%2C%20SM7325P%2C%20WCD9370%2C%20WCD9375%2C%20WCD9380%2C%20WCD9385%2C%20WCN3615%2C%20WCN3660B%2C%20WCN3680%2C%20WCN3680B%2C%20WCN3910%2C%20WCN3950%2C%20WCN3988%2C%20WCN3991%2C%20WCN3998%2C%20WCN6740%2C%20WCN6750%2C%20WCN6850%2C%20WCN6851%2C%20WCN6855%2C%20WCN6856%2C%20WSA8830%2C%20WSA8835%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20VR%20Service&color=brightgreen)

### Description

Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

#### Github
No PoCs found on GitHub currently.