CVE-2021-1918 MEDIUM

CVE-2021-1918

Vendor Qualcomm, Inc.
Product Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Published January 3, 2022
Last update May 22, 2025

CVSS base score

6.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

What the vulnerability does

01Description

Improper handling of resource allocation in virtual machines can lead to information exposure in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

Key dates

02Disclosure timeline

January 3, 2022 CVE published
May 22, 2025 Record updated