CVEs-PoC/2021/CVE-2021-1966.md

### [CVE-2021-1966](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1966)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Compute%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Voice%20%26%20Music&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=AQT1000%2C%20AR8031%2C%20AR8035%2C%20CSRA6620%2C%20CSRA6640%2C%20FSM10055%2C%20FSM10056%2C%20QCA6390%2C%20QCA6391%2C%20QCA6420%2C%20QCA6430%2C%20QCA6574%2C%20QCA6574A%2C%20QCA6574AU%2C%20QCA6595%2C%20QCA6595AU%2C%20QCA6696%2C%20QCA8337%2C%20QCM6125%2C%20QCS405%2C%20QCS410%2C%20QCS610%2C%20QCS6125%2C%20SA6145P%2C%20SA6150P%2C%20SA6155%2C%20SA6155P%2C%20SA8145P%2C%20SA8150P%2C%20SA8155%2C%20SA8155P%2C%20SA8195P%2C%20SD%208C%2C%20SD%208CX%2C%20SD665%2C%20SD690%205G%2C%20SD750G%2C%20SD765%2C%20SD765G%2C%20SD768G%2C%20SD855%2C%20SD865%205G%2C%20SD870%2C%20SDX55%2C%20SDX55M%2C%20SM7250P%2C%20WCD9335%2C%20WCD9340%2C%20WCD9341%2C%20WCD9370%2C%20WCD9375%2C%20WCD9380%2C%20WCD9385%2C%20WCN3950%2C%20WCN3980%2C%20WCN3988%2C%20WCN3991%2C%20WCN3998%2C%20WCN3999%2C%20WCN6850%2C%20WCN6851%2C%20WSA8810%2C%20WSA8815%2C%20WSA8830%2C%20WSA8835%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20Display&color=brightgreen)

### Description

Possible buffer overflow due to lack of length check of source and destination buffer before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin

#### Github
No PoCs found on GitHub currently.