Today > | 2 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-23385

Nov. 7, 2024, 8:05 p.m.

CVSS Score

7.5 / 10

Products Impacted

Vendor Product Versions
qualcomm
  • wsa8845h_firmware
  • wsa8845h
  • wsa8845_firmware
  • wsa8845
  • wsa8840_firmware
  • wsa8840
  • wsa8835_firmware
  • wsa8835
  • wsa8832_firmware
  • wsa8832
  • wsa8830_firmware
  • wsa8830
  • wsa8815_firmware
  • wsa8815
  • wsa8810_firmware
  • wsa8810
  • wcn6755_firmware
  • wcn6755
  • wcn3988_firmware
  • wcn3988
  • wcn3980_firmware
  • wcn3980
  • wcn3950_firmware
  • wcn3950
  • wcn3680b_firmware
  • wcn3680b
  • wcn3660b_firmware
  • wcn3660b
  • wcn3620_firmware
  • wcn3620
  • wcn3615_firmware
  • wcn3615
  • wcn3610_firmware
  • wcn3610
  • wcd9395_firmware
  • wcd9395
  • wcd9390_firmware
  • wcd9390
  • wcd9385_firmware
  • wcd9385
  • wcd9380_firmware
  • wcd9380
  • wcd9375_firmware
  • wcd9375
  • wcd9370_firmware
  • wcd9370
  • wcd9360_firmware
  • wcd9360
  • wcd9340_firmware
  • wcd9340
  • wcd9326_firmware
  • wcd9326
  • snapdragon_x75_5g_modem-rf_system_firmware
  • snapdragon_x75_5g_modem-rf_system
  • snapdragon_x72_5g_modem-rf_system_firmware
  • snapdragon_x72_5g_modem-rf_system
  • snapdragon_x70_modem-rf_system_firmware
  • snapdragon_x70_modem-rf_system
  • snapdragon_x65_5g_modem-rf_system_firmware
  • snapdragon_x65_5g_modem-rf_system
  • snapdragon_x62_5g_modem-rf_system_firmware
  • snapdragon_x62_5g_modem-rf_system
  • snapdragon_x35_5g_modem-rf_system_firmware
  • snapdragon_x35_5g_modem-rf_system
  • snapdragon_wear_4100\+_platform_firmware
  • snapdragon_wear_4100\+_platform
  • snapdragon_auto_5g_modem-rf_gen_2_firmware
  • snapdragon_auto_5g_modem-rf_gen_2
  • snapdragon_8\+_gen_2_mobile_platform_firmware
  • snapdragon_8\+_gen_2_mobile_platform
  • snapdragon_8\+_gen_1_mobile_platform_firmware
  • snapdragon_8\+_gen_1_mobile_platform
  • snapdragon_8_gen_3_mobile_platform_firmware
  • snapdragon_8_gen_3_mobile_platform
  • snapdragon_8_gen_2_mobile_platform_firmware
  • snapdragon_8_gen_2_mobile_platform
  • snapdragon_8_gen_1_mobile_platform_firmware
  • snapdragon_8_gen_1_mobile_platform
  • snapdragon_695_5g_mobile_platform_firmware
  • snapdragon_695_5g_mobile_platform
  • snapdragon_480\+_5g_mobile_platform_firmware
  • snapdragon_480\+_5g_mobile_platform
  • snapdragon_480_5g_mobile_platform_firmware
  • snapdragon_480_5g_mobile_platform
  • snapdragon_439_mobile_platform_firmware
  • snapdragon_439_mobile_platform
  • snapdragon_430_mobile_platform_firmware
  • snapdragon_430_mobile_platform
  • snapdragon_429_mobile_platform_firmware
  • snapdragon_429_mobile_platform
  • snapdragon_425_mobile_platform_firmware
  • snapdragon_425_mobile_platform
  • snapdragon_4_gen_1_mobile_platform_firmware
  • snapdragon_4_gen_1_mobile_platform
  • snapdragon_212_mobile_platform_firmware
  • snapdragon_212_mobile_platform
  • snapdragon_210_processor_firmware
  • snapdragon_210_processor
  • snapdragon_208_processor_firmware
  • snapdragon_208_processor
  • smart_audio_200_platform_firmware
  • smart_audio_200_platform
  • sm8635_firmware
  • sm8635
  • sm8550p_firmware
  • sm8550p
  • sm6370_firmware
  • sm6370
  • sg8275p_firmware
  • sg8275p
  • sdx71m_firmware
  • sdx71m
  • sdx61_firmware
  • sdx61
  • sdx57m_firmware
  • sdx57m
  • sdx55_firmware
  • sdx55
  • sdm429w_firmware
  • sdm429w
  • 205_mobile_platform_firmware
  • 205_mobile_platform
  • qfw7124_firmware
  • qfw7124
  • qfw7114_firmware
  • qfw7114
  • qep8111_firmware
  • qep8111
  • qcs8550_firmware
  • qcs8550
  • qcs4490_firmware
  • qcs4490
  • qcn9024_firmware
  • qcn9024
  • qcn6274_firmware
  • qcn6274
  • qcn6224_firmware
  • qcn6224
  • qcn6024_firmware
  • qcn6024
  • qcm8550_firmware
  • qcm8550
  • qcm4490_firmware
  • qcm4490
  • qcc710_firmware
  • qcc710
  • qca8337_firmware
  • qca8337
  • qca8081_firmware
  • qca8081
  • qca6698aq_firmware
  • qca6698aq
  • qca6696_firmware
  • qca6696
  • qca6595au_firmware
  • qca6595au
  • qca6584au_firmware
  • qca6584au
  • qca6574au_firmware
  • qca6574au
  • qca6574a_firmware
  • qca6574a
  • qca6174a_firmware
  • qca6174a
  • msm8608_firmware
  • msm8608
  • msm8209_firmware
  • msm8209
  • msm8108_firmware
  • msm8108
  • fsm10056_firmware
  • fsm10056
  • fsm10055_firmware
  • fsm10055
  • fastconnect_7800_firmware
  • fastconnect_7800
  • fastconnect_6900_firmware
  • fastconnect_6900
  • fastconnect_6700_firmware
  • fastconnect_6700
  • fastconnect_6200_firmware
  • fastconnect_6200
  • ar8035_firmware
  • ar8035
  • apq8037_firmware
  • apq8037
  • apq8017_firmware
  • apq8017
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -

Description

Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.

Weaknesses

CWE-617
Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

CWE ID: 617

Date

Published: Nov. 4, 2024, 10:15 a.m.

Last Modified: Nov. 7, 2024, 8:05 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@qualcomm.com

CPEs

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o qualcomm wsa8845h_firmware - / / / / / / /
h qualcomm wsa8845h - / / / / / / /
o qualcomm wsa8845_firmware - / / / / / / /
h qualcomm wsa8845 - / / / / / / /
o qualcomm wsa8840_firmware - / / / / / / /
h qualcomm wsa8840 - / / / / / / /
o qualcomm wsa8835_firmware - / / / / / / /
h qualcomm wsa8835 - / / / / / / /
o qualcomm wsa8832_firmware - / / / / / / /
h qualcomm wsa8832 - / / / / / / /
o qualcomm wsa8830_firmware - / / / / / / /
h qualcomm wsa8830 - / / / / / / /
o qualcomm wsa8815_firmware - / / / / / / /
h qualcomm wsa8815 - / / / / / / /
o qualcomm wsa8810_firmware - / / / / / / /
h qualcomm wsa8810 - / / / / / / /
o qualcomm wcn6755_firmware - / / / / / / /
h qualcomm wcn6755 - / / / / / / /
o qualcomm wcn3988_firmware - / / / / / / /
h qualcomm wcn3988 - / / / / / / /
o qualcomm wcn3980_firmware - / / / / / / /
h qualcomm wcn3980 - / / / / / / /
o qualcomm wcn3950_firmware - / / / / / / /
h qualcomm wcn3950 - / / / / / / /
o qualcomm wcn3680b_firmware - / / / / / / /
h qualcomm wcn3680b - / / / / / / /
o qualcomm wcn3660b_firmware - / / / / / / /
h qualcomm wcn3660b - / / / / / / /
o qualcomm wcn3620_firmware - / / / / / / /
h qualcomm wcn3620 - / / / / / / /
o qualcomm wcn3615_firmware - / / / / / / /
h qualcomm wcn3615 - / / / / / / /
o qualcomm wcn3610_firmware - / / / / / / /
h qualcomm wcn3610 - / / / / / / /
o qualcomm wcd9395_firmware - / / / / / / /
h qualcomm wcd9395 - / / / / / / /
o qualcomm wcd9390_firmware - / / / / / / /
h qualcomm wcd9390 - / / / / / / /
o qualcomm wcd9385_firmware - / / / / / / /
h qualcomm wcd9385 - / / / / / / /
o qualcomm wcd9380_firmware - / / / / / / /
h qualcomm wcd9380 - / / / / / / /
o qualcomm wcd9375_firmware - / / / / / / /
h qualcomm wcd9375 - / / / / / / /
o qualcomm wcd9370_firmware - / / / / / / /
h qualcomm wcd9370 - / / / / / / /
o qualcomm wcd9360_firmware - / / / / / / /
h qualcomm wcd9360 - / / / / / / /
o qualcomm wcd9340_firmware - / / / / / / /
h qualcomm wcd9340 - / / / / / / /
o qualcomm wcd9326_firmware - / / / / / / /
h qualcomm wcd9326 - / / / / / / /
o qualcomm snapdragon_x75_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x75_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_x72_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x72_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_x70_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x70_modem-rf_system - / / / / / / /
o qualcomm snapdragon_x65_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x65_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_x62_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x62_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_x35_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x35_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_wear_4100\+_platform_firmware - / / / / / / /
h qualcomm snapdragon_wear_4100\+_platform - / / / / / / /
o qualcomm snapdragon_auto_5g_modem-rf_gen_2_firmware - / / / / / / /
h qualcomm snapdragon_auto_5g_modem-rf_gen_2 - / / / / / / /
o qualcomm snapdragon_8\+_gen_2_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_8\+_gen_2_mobile_platform - / / / / / / /
o qualcomm snapdragon_8\+_gen_1_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_8\+_gen_1_mobile_platform - / / / / / / /
o qualcomm snapdragon_8_gen_3_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_8_gen_3_mobile_platform - / / / / / / /
o qualcomm snapdragon_8_gen_2_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_8_gen_2_mobile_platform - / / / / / / /
o qualcomm snapdragon_8_gen_1_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_8_gen_1_mobile_platform - / / / / / / /
o qualcomm snapdragon_695_5g_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_695_5g_mobile_platform - / / / / / / /
o qualcomm snapdragon_480\+_5g_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_480\+_5g_mobile_platform - / / / / / / /
o qualcomm snapdragon_480_5g_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_480_5g_mobile_platform - / / / / / / /
o qualcomm snapdragon_439_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_439_mobile_platform - / / / / / / /
o qualcomm snapdragon_430_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_430_mobile_platform - / / / / / / /
o qualcomm snapdragon_429_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_429_mobile_platform - / / / / / / /
o qualcomm snapdragon_425_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_425_mobile_platform - / / / / / / /
o qualcomm snapdragon_4_gen_1_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_4_gen_1_mobile_platform - / / / / / / /
o qualcomm snapdragon_212_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_212_mobile_platform - / / / / / / /
o qualcomm snapdragon_210_processor_firmware - / / / / / / /
h qualcomm snapdragon_210_processor - / / / / / / /
o qualcomm snapdragon_208_processor_firmware - / / / / / / /
h qualcomm snapdragon_208_processor - / / / / / / /
o qualcomm smart_audio_200_platform_firmware - / / / / / / /
h qualcomm smart_audio_200_platform - / / / / / / /
o qualcomm sm8635_firmware - / / / / / / /
h qualcomm sm8635 - / / / / / / /
o qualcomm sm8550p_firmware - / / / / / / /
h qualcomm sm8550p - / / / / / / /
o qualcomm sm6370_firmware - / / / / / / /
h qualcomm sm6370 - / / / / / / /
o qualcomm sg8275p_firmware - / / / / / / /
h qualcomm sg8275p - / / / / / / /
o qualcomm sdx71m_firmware - / / / / / / /
h qualcomm sdx71m - / / / / / / /
o qualcomm sdx61_firmware - / / / / / / /
h qualcomm sdx61 - / / / / / / /
o qualcomm sdx57m_firmware - / / / / / / /
h qualcomm sdx57m - / / / / / / /
o qualcomm sdx55_firmware - / / / / / / /
h qualcomm sdx55 - / / / / / / /
o qualcomm sdm429w_firmware - / / / / / / /
h qualcomm sdm429w - / / / / / / /
o qualcomm 205_mobile_platform_firmware - / / / / / / /
h qualcomm 205_mobile_platform - / / / / / / /
o qualcomm qfw7124_firmware - / / / / / / /
h qualcomm qfw7124 - / / / / / / /
o qualcomm qfw7114_firmware - / / / / / / /
h qualcomm qfw7114 - / / / / / / /
o qualcomm qep8111_firmware - / / / / / / /
h qualcomm qep8111 - / / / / / / /
o qualcomm qcs8550_firmware - / / / / / / /
h qualcomm qcs8550 - / / / / / / /
o qualcomm qcs4490_firmware - / / / / / / /
h qualcomm qcs4490 - / / / / / / /
o qualcomm qcn9024_firmware - / / / / / / /
h qualcomm qcn9024 - / / / / / / /
o qualcomm qcn6274_firmware - / / / / / / /
h qualcomm qcn6274 - / / / / / / /
o qualcomm qcn6224_firmware - / / / / / / /
h qualcomm qcn6224 - / / / / / / /
o qualcomm qcn6024_firmware - / / / / / / /
h qualcomm qcn6024 - / / / / / / /
o qualcomm qcm8550_firmware - / / / / / / /
h qualcomm qcm8550 - / / / / / / /
o qualcomm qcm4490_firmware - / / / / / / /
h qualcomm qcm4490 - / / / / / / /
o qualcomm qcc710_firmware - / / / / / / /
h qualcomm qcc710 - / / / / / / /
o qualcomm qca8337_firmware - / / / / / / /
h qualcomm qca8337 - / / / / / / /
o qualcomm qca8081_firmware - / / / / / / /
h qualcomm qca8081 - / / / / / / /
o qualcomm qca6698aq_firmware - / / / / / / /
h qualcomm qca6698aq - / / / / / / /
o qualcomm qca6696_firmware - / / / / / / /
h qualcomm qca6696 - / / / / / / /
o qualcomm qca6595au_firmware - / / / / / / /
h qualcomm qca6595au - / / / / / / /
o qualcomm qca6584au_firmware - / / / / / / /
h qualcomm qca6584au - / / / / / / /
o qualcomm qca6574au_firmware - / / / / / / /
h qualcomm qca6574au - / / / / / / /
o qualcomm qca6574a_firmware - / / / / / / /
h qualcomm qca6574a - / / / / / / /
o qualcomm qca6174a_firmware - / / / / / / /
h qualcomm qca6174a - / / / / / / /
o qualcomm msm8608_firmware - / / / / / / /
h qualcomm msm8608 - / / / / / / /
o qualcomm msm8209_firmware - / / / / / / /
h qualcomm msm8209 - / / / / / / /
o qualcomm msm8108_firmware - / / / / / / /
h qualcomm msm8108 - / / / / / / /
o qualcomm fsm10056_firmware - / / / / / / /
h qualcomm fsm10056 - / / / / / / /
o qualcomm fsm10055_firmware - / / / / / / /
h qualcomm fsm10055 - / / / / / / /
o qualcomm fastconnect_7800_firmware - / / / / / / /
h qualcomm fastconnect_7800 - / / / / / / /
o qualcomm fastconnect_6900_firmware - / / / / / / /
h qualcomm fastconnect_6900 - / / / / / / /
o qualcomm fastconnect_6700_firmware - / / / / / / /
h qualcomm fastconnect_6700 - / / / / / / /
o qualcomm fastconnect_6200_firmware - / / / / / / /
h qualcomm fastconnect_6200 - / / / / / / /
o qualcomm ar8035_firmware - / / / / / / /
h qualcomm ar8035 - / / / / / / /
o qualcomm apq8037_firmware - / / / / / / /
h qualcomm apq8037 - / / / / / / /
o qualcomm apq8017_firmware - / / / / / / /
h qualcomm apq8017 - / / / / / / /

CVSS Data

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

Base Score
7.5
Exploitability Score
3.9
Impact Score
3.6
Base Severity
HIGH
CVSS Vector String

The CVSS vector string provides an in-depth view of the vulnerability metrics.

View Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

https://docs.qualcomm.com/ product-security@qualcomm.com