CVEs-PoC/2021/CVE-2021-1931.md

### [CVE-2021-1931](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1931)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Voice%20%26%20Music&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20Boot&color=brighgreen)

### Description

Possible buffer overflow due to improper validation of buffer length while processing fast boot commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/july-2021-bulletin

#### Github
- https://github.com/darknight1050/quest-bootloader-unlocker