### [CVE-2021-30291](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30291) ![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Wearables&color=blue) ![](https://img.shields.io/static/v1?label=Version&message=APQ8017%2C%20APQ8053%2C%20APQ8064AU%2C%20APQ8096AU%2C%20AQT1000%2C%20MSM8917%2C%20MSM8953%2C%20MSM8996AU%2C%20QCA6310%2C%20QCA6320%2C%20QCA6335%2C%20QCA6390%2C%20QCA6391%2C%20QCA6420%2C%20QCA6426%2C%20QCA6430%2C%20QCA6436%2C%20QCA6564A%2C%20QCA6564AU%2C%20QCA6574A%2C%20QCA6574AU%2C%20QCM2290%2C%20QCM4290%2C%20QCM6125%2C%20QCS2290%2C%20QCS4290%2C%20QCS603%2C%20QCS605%2C%20QCS6125%2C%20Qualcomm215%2C%20SD%20455%2C%20SD%20636%2C%20SD%20675%2C%20SD205%2C%20SD210%2C%20SD429%2C%20SD439%2C%20SD460%2C%20SD632%2C%20SD662%2C%20SD665%2C%20SD675%2C%20SD678%2C%20SD690%205G%2C%20SD720G%2C%20SD730%2C%20SD750G%2C%20SD765%2C%20SD765G%2C%20SD768G%2C%20SD778G%2C%20SD780G%2C%20SD855%2C%20SD865%205G%2C%20SD870%2C%20SD888%2C%20SD888%205G%2C%20SDM630%2C%20SDX50M%2C%20SDX55%2C%20SDX55M%2C%20SDXR1%2C%20SDXR2%205G%2C%20SM4125%2C%20SM6250%2C%20SM6250P%2C%20SM7250P%2C%20SM7315%2C%20SM7325P%2C%20WCD9370%2C%20WCD9375%2C%20WCD9380%2C%20WCD9385%2C%20WCN3610%2C%20WCN3615%2C%20WCN3660B%2C%20WCN3680%2C%20WCN3680B%2C%20WCN3910%2C%20WCN3950%2C%20WCN3988%2C%20WCN3991%2C%20WCN3998%2C%20WCN6740%2C%20WCN6750%2C%20WCN6850%2C%20WCN6851%2C%20WCN6855%2C%20WCN6856%2C%20WSA8830%2C%20WSA8835%20&color=brightgreen) ![](https://img.shields.io/static/v1?label=Vulnerability&message=Incorrect%20Calculation%20of%20Buffer%20Size%20in%20VR%20Service&color=brightgreen) ### Description Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables ### POC #### Reference - https://www.qualcomm.com/company/product-security/bulletins/october-2021-bulletin #### Github No PoCs found on GitHub currently.