CVE-2021-1924

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon (affected versions not specified)

Description: The issue is related to information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT. This affects various Qualcomm Snapdragon products, including Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables, and Snapdragon Wired Infrastructure and Networking.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.