cve/2021/CVE-2021-1895.md

### [CVE-2021-1895](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1895)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Voice%20%26%20Music&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=APQ8009%2C%20APQ8053%2C%20MDM9206%2C%20PM215%2C%20PM8909%2C%20PM8916%2C%20PM8953%2C%20PMD9607%2C%20PMI8952%2C%20QCA9367%2C%20QCA9377%2C%20Qualcomm215%2C%20SMB1358%2C%20SMB1360%2C%20SMB231%2C%20WCD9326%2C%20WCD9330%2C%20WCN3615%2C%20WCN3660B%2C%20WCN3680%2C%20WCN3680B%2C%20WSA8810%2C%20WSA8815%2C%20WTR2965%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Integer%20Overflow%20to%20Buffer%20Overflow%20in%20Boot&color=brightgreen)

### Description

Possible integer overflow due to improper length check while flashing an image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin

#### Github
No PoCs found on GitHub currently.