CVE-2024-33037

Dec. 11, 2024, 4:15 p.m.

6.1
Medium

Description

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.

Product(s) Impacted

Vendor Product Versions
Qualcomm
  • C-v2x 9150 Firmware
  • C-v2x 9150
  • Fastconnect 6800 Firmware
  • Fastconnect 6800
  • Fastconnect 6900 Firmware
  • Fastconnect 6900
  • Qam8295p Firmware
  • Qam8295p
  • Qca6174a Firmware
  • Qca6174a
  • Qca6391 Firmware
  • Qca6391
  • Qca6426 Firmware
  • Qca6426
  • Qca6436 Firmware
  • Qca6436
  • Qca6574au Firmware
  • Qca6574au
  • Qca6696 Firmware
  • Qca6696
  • Qca8337 Firmware
  • Qca8337
  • Qcn9074 Firmware
  • Qcn9074
  • Qcs410 Firmware
  • Qcs410
  • Qcs610 Firmware
  • Qcs610
  • Qsm8250 Firmware
  • Qsm8250
  • Video Collaboration Vc1 Platform Firmware
  • Video Collaboration Vc1 Platform
  • Video Collaboration Vc3 Platform Firmware
  • Video Collaboration Vc3 Platform
  • Sa6145p Firmware
  • Sa6145p
  • Sa6150p Firmware
  • Sa6150p
  • Sa6155p Firmware
  • Sa6155p
  • Sa8145p Firmware
  • Sa8145p
  • Sa8150p Firmware
  • Sa8150p
  • Sa8155p Firmware
  • Sa8155p
  • Sa8195p Firmware
  • Sa8195p
  • Sa8295p Firmware
  • Sa8295p
  • Sa8530p Firmware
  • Sa8530p
  • Sa8540p Firmware
  • Sa8540p
  • Sa9000p Firmware
  • Sa9000p
  • Sd865 5g Firmware
  • Sd865 5g
  • Sdx55 Firmware
  • Sdx55
  • Snapdragon 865 5g Mobile Platform Firmware
  • Snapdragon 865 5g Mobile Platform
  • Snapdragon 865\+ 5g Mobile Platform Firmware
  • Snapdragon 865\+ 5g Mobile Platform
  • Snapdragon 870 5g Mobile Platform Firmware
  • Snapdragon 870 5g Mobile Platform
  • Snapdragon W5\+ Gen 1 Wearable Platform Firmware
  • Snapdragon W5\+ Gen 1 Wearable Platform
  • Snapdragon X55 5g Modem-rf System Firmware
  • Snapdragon X55 5g Modem-rf System
  • Snapdragon Xr2 5g Platform Firmware
  • Snapdragon Xr2 5g Platform
  • Sw5100 Firmware
  • Sw5100
  • Sw5100p Firmware
  • Sw5100p
  • Sxr2130 Firmware
  • Sxr2130
  • Wcd9341 Firmware
  • Wcd9341
  • Wcd9370 Firmware
  • Wcd9370
  • Wcd9380 Firmware
  • Wcd9380
  • Wcn3660b Firmware
  • Wcn3660b
  • Wcn3680b Firmware
  • Wcn3680b
  • Wcn3950 Firmware
  • Wcn3950
  • Wcn3980 Firmware
  • Wcn3980
  • Wcn3988 Firmware
  • Wcn3988
  • Wsa8810 Firmware
  • Wsa8810
  • Wsa8815 Firmware
  • Wsa8815
  • Wsa8830 Firmware
  • Wsa8830
  • Wsa8835 Firmware
  • Wsa8835
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -

Weaknesses

CWE-126
Buffer Over-read
The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.

*CPE(s)

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o qualcomm c-v2x_9150_firmware - / / / / / / /
h qualcomm c-v2x_9150 - / / / / / / /
o qualcomm fastconnect_6800_firmware - / / / / / / /
h qualcomm fastconnect_6800 - / / / / / / /
o qualcomm fastconnect_6900_firmware - / / / / / / /
h qualcomm fastconnect_6900 - / / / / / / /
o qualcomm qam8295p_firmware - / / / / / / /
h qualcomm qam8295p - / / / / / / /
o qualcomm qca6174a_firmware - / / / / / / /
h qualcomm qca6174a - / / / / / / /
o qualcomm qca6391_firmware - / / / / / / /
h qualcomm qca6391 - / / / / / / /
o qualcomm qca6426_firmware - / / / / / / /
h qualcomm qca6426 - / / / / / / /
o qualcomm qca6436_firmware - / / / / / / /
h qualcomm qca6436 - / / / / / / /
o qualcomm qca6574au_firmware - / / / / / / /
h qualcomm qca6574au - / / / / / / /
o qualcomm qca6696_firmware - / / / / / / /
h qualcomm qca6696 - / / / / / / /
o qualcomm qca8337_firmware - / / / / / / /
h qualcomm qca8337 - / / / / / / /
o qualcomm qcn9074_firmware - / / / / / / /
h qualcomm qcn9074 - / / / / / / /
o qualcomm qcs410_firmware - / / / / / / /
h qualcomm qcs410 - / / / / / / /
o qualcomm qcs610_firmware - / / / / / / /
h qualcomm qcs610 - / / / / / / /
o qualcomm qsm8250_firmware - / / / / / / /
h qualcomm qsm8250 - / / / / / / /
o qualcomm video_collaboration_vc1_platform_firmware - / / / / / / /
h qualcomm video_collaboration_vc1_platform - / / / / / / /
o qualcomm video_collaboration_vc3_platform_firmware - / / / / / / /
h qualcomm video_collaboration_vc3_platform - / / / / / / /
o qualcomm sa6145p_firmware - / / / / / / /
h qualcomm sa6145p - / / / / / / /
o qualcomm sa6150p_firmware - / / / / / / /
h qualcomm sa6150p - / / / / / / /
o qualcomm sa6155p_firmware - / / / / / / /
h qualcomm sa6155p - / / / / / / /
o qualcomm sa8145p_firmware - / / / / / / /
h qualcomm sa8145p - / / / / / / /
o qualcomm sa8150p_firmware - / / / / / / /
h qualcomm sa8150p - / / / / / / /
o qualcomm sa8155p_firmware - / / / / / / /
h qualcomm sa8155p - / / / / / / /
o qualcomm sa8195p_firmware - / / / / / / /
h qualcomm sa8195p - / / / / / / /
o qualcomm sa8295p_firmware - / / / / / / /
h qualcomm sa8295p - / / / / / / /
o qualcomm sa8530p_firmware - / / / / / / /
h qualcomm sa8530p - / / / / / / /
o qualcomm sa8540p_firmware - / / / / / / /
h qualcomm sa8540p - / / / / / / /
o qualcomm sa9000p_firmware - / / / / / / /
h qualcomm sa9000p - / / / / / / /
o qualcomm sd865_5g_firmware - / / / / / / /
h qualcomm sd865_5g - / / / / / / /
o qualcomm sdx55_firmware - / / / / / / /
h qualcomm sdx55 - / / / / / / /
o qualcomm snapdragon_865_5g_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_865_5g_mobile_platform - / / / / / / /
o qualcomm snapdragon_865\+_5g_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_865\+_5g_mobile_platform - / / / / / / /
o qualcomm snapdragon_870_5g_mobile_platform_firmware - / / / / / / /
h qualcomm snapdragon_870_5g_mobile_platform - / / / / / / /
o qualcomm snapdragon_w5\+_gen_1_wearable_platform_firmware - / / / / / / /
h qualcomm snapdragon_w5\+_gen_1_wearable_platform - / / / / / / /
o qualcomm snapdragon_x55_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x55_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_xr2_5g_platform_firmware - / / / / / / /
h qualcomm snapdragon_xr2_5g_platform - / / / / / / /
o qualcomm sw5100_firmware - / / / / / / /
h qualcomm sw5100 - / / / / / / /
o qualcomm sw5100p_firmware - / / / / / / /
h qualcomm sw5100p - / / / / / / /
o qualcomm sxr2130_firmware - / / / / / / /
h qualcomm sxr2130 - / / / / / / /
o qualcomm wcd9341_firmware - / / / / / / /
h qualcomm wcd9341 - / / / / / / /
o qualcomm wcd9370_firmware - / / / / / / /
h qualcomm wcd9370 - / / / / / / /
o qualcomm wcd9380_firmware - / / / / / / /
h qualcomm wcd9380 - / / / / / / /
o qualcomm wcn3660b_firmware - / / / / / / /
h qualcomm wcn3660b - / / / / / / /
o qualcomm wcn3680b_firmware - / / / / / / /
h qualcomm wcn3680b - / / / / / / /
o qualcomm wcn3950_firmware - / / / / / / /
h qualcomm wcn3950 - / / / / / / /
o qualcomm wcn3980_firmware - / / / / / / /
h qualcomm wcn3980 - / / / / / / /
o qualcomm wcn3988_firmware - / / / / / / /
h qualcomm wcn3988 - / / / / / / /
o qualcomm wsa8810_firmware - / / / / / / /
h qualcomm wsa8810 - / / / / / / /
o qualcomm wsa8815_firmware - / / / / / / /
h qualcomm wsa8815 - / / / / / / /
o qualcomm wsa8830_firmware - / / / / / / /
h qualcomm wsa8830 - / / / / / / /
o qualcomm wsa8835_firmware - / / / / / / /
h qualcomm wsa8835 - / / / / / / /

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html

Tags

product-security@qualcomm.com
CWE-126
2024-12-02
CVE-2024-33037

CVSS Score

6.1 / 10

CVSS Data

  • Attack Vector: LOCAL
  • Attack Complexity: LOW
  • Privileges Required: LOW
  • Scope: UNCHANGED
  • Confidentiality Impact: HIGH
  • Integrity Impact: NONE
  • Availability Impact: LOW
    • View Vector String

    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

Date

  • Published: Dec. 2, 2024, 11:15 a.m.
  • Last Modified: Dec. 11, 2024, 4:15 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@qualcomm.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.