CVE-2024-23379

Oct. 16, 2024, 7:58 p.m.

CVSS Score

6.7 / 10

Products Impacted

Vendor	Product	Versions
qualcomm	wsa8835_firmware wsa8835 wsa8830_firmware wsa8830 wsa8815_firmware wsa8815 wsa8810_firmware wsa8810 wcn3990_firmware wcn3990 wcd9380_firmware wcd9380 wcd9341_firmware wcd9341 wcd9340_firmware wcd9340 wcd9335_firmware wcd9335 srv1m_firmware srv1m srv1h_firmware srv1h snapdragon_auto_5g_modem-rf_gen_2_firmware snapdragon_auto_5g_modem-rf_gen_2 snapdragon_835_mobile_pc_platform_firmware snapdragon_835_mobile_pc_platform snapdragon_8_gen_1_mobile_platform_firmware snapdragon_8_gen_1_mobile_platform sd835_firmware sd835 sa9000p_firmware sa9000p sa8775p_firmware sa8775p sa8770p_firmware sa8770p sa8650p_firmware sa8650p sa8620p_firmware sa8620p sa8255p_firmware sa8255p sa7775p_firmware sa7775p sa7255p_firmware sa7255p qca6698aq_firmware qca6698aq qca6584au_firmware qca6584au qca6320_firmware qca6320 qca6310_firmware qca6310 qamsrv1m_firmware qamsrv1m qamsrv1h_firmware qamsrv1h qam8775p_firmware qam8775p qam8650p_firmware qam8650p qam8255p_firmware qam8255p fastconnect_7800_firmware fastconnect_7800 fastconnect_6900_firmware fastconnect_6900	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Description

Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.

Weaknesses

CWE-415

Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

CWE ID: 415

Date

Published: Oct. 7, 2024, 1:15 p.m.

Last Modified: Oct. 16, 2024, 7:58 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@qualcomm.com

CPEs

Type	Vendor	Product	Version	Update	Edition	Language	Software Edition	Target Software	Target Hardware	Other Information
o	qualcomm	wsa8835_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wsa8835	-	/	/	/	/	/	/	/
o	qualcomm	wsa8830_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wsa8830	-	/	/	/	/	/	/	/
o	qualcomm	wsa8815_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wsa8815	-	/	/	/	/	/	/	/
o	qualcomm	wsa8810_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wsa8810	-	/	/	/	/	/	/	/
o	qualcomm	wcn3990_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wcn3990	-	/	/	/	/	/	/	/
o	qualcomm	wcd9380_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wcd9380	-	/	/	/	/	/	/	/
o	qualcomm	wcd9341_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wcd9341	-	/	/	/	/	/	/	/
o	qualcomm	wcd9340_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wcd9340	-	/	/	/	/	/	/	/
o	qualcomm	wcd9335_firmware	-	/	/	/	/	/	/	/
h	qualcomm	wcd9335	-	/	/	/	/	/	/	/
o	qualcomm	srv1m_firmware	-	/	/	/	/	/	/	/
h	qualcomm	srv1m	-	/	/	/	/	/	/	/
o	qualcomm	srv1h_firmware	-	/	/	/	/	/	/	/
h	qualcomm	srv1h	-	/	/	/	/	/	/	/
o	qualcomm	snapdragon_auto_5g_modem-rf_gen_2_firmware	-	/	/	/	/	/	/	/
h	qualcomm	snapdragon_auto_5g_modem-rf_gen_2	-	/	/	/	/	/	/	/
o	qualcomm	snapdragon_835_mobile_pc_platform_firmware	-	/	/	/	/	/	/	/
h	qualcomm	snapdragon_835_mobile_pc_platform	-	/	/	/	/	/	/	/
o	qualcomm	snapdragon_8_gen_1_mobile_platform_firmware	-	/	/	/	/	/	/	/
h	qualcomm	snapdragon_8_gen_1_mobile_platform	-	/	/	/	/	/	/	/
o	qualcomm	sd835_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sd835	-	/	/	/	/	/	/	/
o	qualcomm	sa9000p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa9000p	-	/	/	/	/	/	/	/
o	qualcomm	sa8775p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa8775p	-	/	/	/	/	/	/	/
o	qualcomm	sa8770p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa8770p	-	/	/	/	/	/	/	/
o	qualcomm	sa8650p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa8650p	-	/	/	/	/	/	/	/
o	qualcomm	sa8620p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa8620p	-	/	/	/	/	/	/	/
o	qualcomm	sa8255p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa8255p	-	/	/	/	/	/	/	/
o	qualcomm	sa7775p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa7775p	-	/	/	/	/	/	/	/
o	qualcomm	sa7255p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	sa7255p	-	/	/	/	/	/	/	/
o	qualcomm	qca6698aq_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qca6698aq	-	/	/	/	/	/	/	/
o	qualcomm	qca6584au_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qca6584au	-	/	/	/	/	/	/	/
o	qualcomm	qca6320_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qca6320	-	/	/	/	/	/	/	/
o	qualcomm	qca6310_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qca6310	-	/	/	/	/	/	/	/
o	qualcomm	qamsrv1m_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qamsrv1m	-	/	/	/	/	/	/	/
o	qualcomm	qamsrv1h_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qamsrv1h	-	/	/	/	/	/	/	/
o	qualcomm	qam8775p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qam8775p	-	/	/	/	/	/	/	/
o	qualcomm	qam8650p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qam8650p	-	/	/	/	/	/	/	/
o	qualcomm	qam8255p_firmware	-	/	/	/	/	/	/	/
h	qualcomm	qam8255p	-	/	/	/	/	/	/	/
o	qualcomm	fastconnect_7800_firmware	-	/	/	/	/	/	/	/
h	qualcomm	fastconnect_7800	-	/	/	/	/	/	/	/
o	qualcomm	fastconnect_6900_firmware	-	/	/	/	/	/	/	/
h	qualcomm	fastconnect_6900	-	/	/	/	/	/	/	/

CVSS Data

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

6.7

Exploitability Score

0.8

Impact Score

5.9

Base Severity

MEDIUM

CVSS Vector String

The CVSS vector string provides an in-depth view of the vulnerability metrics.

View Vector String

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

References

https://docs.qualcomm.com/ product-security@qualcomm.com

CVE-2024-23379

Tags

CVSS Score

Products Impacted

Description

Weaknesses

CWE-415

Double Free

Date

Status : Analyzed

Source

CPEs

CVSS Data

Attack Vector

Attack Complexity

Privileges Required

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Base Score

Exploitability Score

Impact Score

Base Severity

CVSS Vector String

References

Share