cve/2021/CVE-2021-30321.md

### [CVE-2021-30321](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30321)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20Electronics%20Connectivity&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=AQT1000%2C%20QCA1062%2C%20QCA1064%2C%20QCA2066%2C%20QCA6320%2C%20QCA6391%2C%20QCA6420%2C%20QCA6430%2C%20SC8280XP%2C%20SD%208CX%2C%20WCD9340%2C%20WCD9341%2C%20WCD9380%2C%20WCD9385%2C%20WCN3998%2C%20WCN6850%2C%20WCN6851%2C%20WCN6855%2C%20WCN6856%2C%20WSA8810%2C%20WSA8815%2C%20WSA8830%2C%20WSA8835%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20WLAN&color=brightgreen)

### Description

Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/november-2021-bulletin

#### Github
No PoCs found on GitHub currently.