CVE-2024-33066

Oct. 16, 2024, 7:49 p.m.

9.8
Critical

Description

Memory corruption while redirecting log file to any file location with any file name.

Product(s) Impacted

Vendor Product Versions
Qualcomm
  • Snapdragon X65 5g Modem-rf System Firmware
  • Snapdragon X65 5g Modem-rf System
  • Sdx65m Firmware
  • Sdx65m
  • Sdx55 Firmware
  • Sdx55
  • Qxm8083 Firmware
  • Qxm8083
  • Qcn9274 Firmware
  • Qcn9274
  • Qcn9160 Firmware
  • Qcn9160
  • Qcn9100 Firmware
  • Qcn9100
  • Qcn9074 Firmware
  • Qcn9074
  • Qcn9072 Firmware
  • Qcn9072
  • Qcn9070 Firmware
  • Qcn9070
  • Qcn9024 Firmware
  • Qcn9024
  • Qcn9022 Firmware
  • Qcn9022
  • Qcn9000 Firmware
  • Qcn9000
  • Qcn6432 Firmware
  • Qcn6432
  • Qcn6422 Firmware
  • Qcn6422
  • Qcn6412 Firmware
  • Qcn6412
  • Qcn6402 Firmware
  • Qcn6402
  • Qcn6132 Firmware
  • Qcn6132
  • Qcn6122 Firmware
  • Qcn6122
  • Qcn6112 Firmware
  • Qcn6112
  • Qcn6024 Firmware
  • Qcn6024
  • Qcn6023 Firmware
  • Qcn6023
  • Qcn5164 Firmware
  • Qcn5164
  • Qcn5154 Firmware
  • Qcn5154
  • Qcn5152 Firmware
  • Qcn5152
  • Qcn5124 Firmware
  • Qcn5124
  • Qcn5122 Firmware
  • Qcn5122
  • Qcn5052 Firmware
  • Qcn5052
  • Qcn5024 Firmware
  • Qcn5024
  • Qcn5022 Firmware
  • Qcn5022
  • Qcf8001 Firmware
  • Qcf8001
  • Qcf8000 Firmware
  • Qcf8000
  • Qca9889 Firmware
  • Qca9889
  • Qca9888 Firmware
  • Qca9888
  • Qca8386 Firmware
  • Qca8386
  • Qca8085 Firmware
  • Qca8085
  • Qca8084 Firmware
  • Qca8084
  • Qca8082 Firmware
  • Qca8082
  • Qca8081 Firmware
  • Qca8081
  • Qca8075 Firmware
  • Qca8075
  • Qca4024 Firmware
  • Qca4024
  • Ipq9574 Firmware
  • Ipq9574
  • Ipq9554 Firmware
  • Ipq9554
  • Ipq9008 Firmware
  • Ipq9008
  • Ipq8174 Firmware
  • Ipq8174
  • Ipq8173 Firmware
  • Ipq8173
  • Ipq8078a Firmware
  • Ipq8078a
  • Ipq8078 Firmware
  • Ipq8078
  • Ipq8076a Firmware
  • Ipq8076a
  • Ipq8076 Firmware
  • Ipq8076
  • Ipq8074a Firmware
  • Ipq8074a
  • Ipq8072a Firmware
  • Ipq8072a
  • Ipq8071a Firmware
  • Ipq8071a
  • Ipq8070a Firmware
  • Ipq8070a
  • Ipq6028 Firmware
  • Ipq6028
  • Ipq6018 Firmware
  • Ipq6018
  • Ipq6010 Firmware
  • Ipq6010
  • Ipq6000 Firmware
  • Ipq6000
  • Ipq5332 Firmware
  • Ipq5332
  • Ipq5312 Firmware
  • Ipq5312
  • Ipq5302 Firmware
  • Ipq5302
  • Ipq5300 Firmware
  • Ipq5300
  • Ipq5028 Firmware
  • Ipq5028
  • Ipq5010 Firmware
  • Ipq5010
  • Immersive Home 326 Platform Firmware
  • Immersive Home 326 Platform
  • Immersive Home 3210 Platform Firmware
  • Immersive Home 3210 Platform
  • Immersive Home 318 Platform Firmware
  • Immersive Home 318 Platform
  • Immersive Home 316 Platform Firmware
  • Immersive Home 316 Platform
  • Immersive Home 216 Platform Firmware
  • Immersive Home 216 Platform
  • Immersive Home 214 Platform Firmware
  • Immersive Home 214 Platform
  • Csr8811 Firmware
  • Csr8811
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -

Weaknesses

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

*CPE(s)

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o qualcomm snapdragon_x65_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x65_5g_modem-rf_system - / / / / / / /
o qualcomm sdx65m_firmware - / / / / / / /
h qualcomm sdx65m - / / / / / / /
o qualcomm sdx55_firmware - / / / / / / /
h qualcomm sdx55 - / / / / / / /
o qualcomm qxm8083_firmware - / / / / / / /
h qualcomm qxm8083 - / / / / / / /
o qualcomm qcn9274_firmware - / / / / / / /
h qualcomm qcn9274 - / / / / / / /
o qualcomm qcn9160_firmware - / / / / / / /
h qualcomm qcn9160 - / / / / / / /
o qualcomm qcn9100_firmware - / / / / / / /
h qualcomm qcn9100 - / / / / / / /
o qualcomm qcn9074_firmware - / / / / / / /
h qualcomm qcn9074 - / / / / / / /
o qualcomm qcn9072_firmware - / / / / / / /
h qualcomm qcn9072 - / / / / / / /
o qualcomm qcn9070_firmware - / / / / / / /
h qualcomm qcn9070 - / / / / / / /
o qualcomm qcn9024_firmware - / / / / / / /
h qualcomm qcn9024 - / / / / / / /
o qualcomm qcn9022_firmware - / / / / / / /
h qualcomm qcn9022 - / / / / / / /
o qualcomm qcn9000_firmware - / / / / / / /
h qualcomm qcn9000 - / / / / / / /
o qualcomm qcn6432_firmware - / / / / / / /
h qualcomm qcn6432 - / / / / / / /
o qualcomm qcn6422_firmware - / / / / / / /
h qualcomm qcn6422 - / / / / / / /
o qualcomm qcn6412_firmware - / / / / / / /
h qualcomm qcn6412 - / / / / / / /
o qualcomm qcn6402_firmware - / / / / / / /
h qualcomm qcn6402 - / / / / / / /
o qualcomm qcn6132_firmware - / / / / / / /
h qualcomm qcn6132 - / / / / / / /
o qualcomm qcn6122_firmware - / / / / / / /
h qualcomm qcn6122 - / / / / / / /
o qualcomm qcn6112_firmware - / / / / / / /
h qualcomm qcn6112 - / / / / / / /
o qualcomm qcn6024_firmware - / / / / / / /
h qualcomm qcn6024 - / / / / / / /
o qualcomm qcn6023_firmware - / / / / / / /
h qualcomm qcn6023 - / / / / / / /
o qualcomm qcn5164_firmware - / / / / / / /
h qualcomm qcn5164 - / / / / / / /
o qualcomm qcn5154_firmware - / / / / / / /
h qualcomm qcn5154 - / / / / / / /
o qualcomm qcn5152_firmware - / / / / / / /
h qualcomm qcn5152 - / / / / / / /
o qualcomm qcn5124_firmware - / / / / / / /
h qualcomm qcn5124 - / / / / / / /
o qualcomm qcn5122_firmware - / / / / / / /
h qualcomm qcn5122 - / / / / / / /
o qualcomm qcn5052_firmware - / / / / / / /
h qualcomm qcn5052 - / / / / / / /
o qualcomm qcn5024_firmware - / / / / / / /
h qualcomm qcn5024 - / / / / / / /
o qualcomm qcn5022_firmware - / / / / / / /
h qualcomm qcn5022 - / / / / / / /
o qualcomm qcf8001_firmware - / / / / / / /
h qualcomm qcf8001 - / / / / / / /
o qualcomm qcf8000_firmware - / / / / / / /
h qualcomm qcf8000 - / / / / / / /
o qualcomm qca9889_firmware - / / / / / / /
h qualcomm qca9889 - / / / / / / /
o qualcomm qca9888_firmware - / / / / / / /
h qualcomm qca9888 - / / / / / / /
o qualcomm qca8386_firmware - / / / / / / /
h qualcomm qca8386 - / / / / / / /
o qualcomm qca8085_firmware - / / / / / / /
h qualcomm qca8085 - / / / / / / /
o qualcomm qca8084_firmware - / / / / / / /
h qualcomm qca8084 - / / / / / / /
o qualcomm qca8082_firmware - / / / / / / /
h qualcomm qca8082 - / / / / / / /
o qualcomm qca8081_firmware - / / / / / / /
h qualcomm qca8081 - / / / / / / /
o qualcomm qca8075_firmware - / / / / / / /
h qualcomm qca8075 - / / / / / / /
o qualcomm qca4024_firmware - / / / / / / /
h qualcomm qca4024 - / / / / / / /
o qualcomm ipq9574_firmware - / / / / / / /
h qualcomm ipq9574 - / / / / / / /
o qualcomm ipq9554_firmware - / / / / / / /
h qualcomm ipq9554 - / / / / / / /
o qualcomm ipq9008_firmware - / / / / / / /
h qualcomm ipq9008 - / / / / / / /
o qualcomm ipq8174_firmware - / / / / / / /
h qualcomm ipq8174 - / / / / / / /
o qualcomm ipq8173_firmware - / / / / / / /
h qualcomm ipq8173 - / / / / / / /
o qualcomm ipq8078a_firmware - / / / / / / /
h qualcomm ipq8078a - / / / / / / /
o qualcomm ipq8078_firmware - / / / / / / /
h qualcomm ipq8078 - / / / / / / /
o qualcomm ipq8076a_firmware - / / / / / / /
h qualcomm ipq8076a - / / / / / / /
o qualcomm ipq8076_firmware - / / / / / / /
h qualcomm ipq8076 - / / / / / / /
o qualcomm ipq8074a_firmware - / / / / / / /
h qualcomm ipq8074a - / / / / / / /
o qualcomm ipq8072a_firmware - / / / / / / /
h qualcomm ipq8072a - / / / / / / /
o qualcomm ipq8071a_firmware - / / / / / / /
h qualcomm ipq8071a - / / / / / / /
o qualcomm ipq8070a_firmware - / / / / / / /
h qualcomm ipq8070a - / / / / / / /
o qualcomm ipq6028_firmware - / / / / / / /
h qualcomm ipq6028 - / / / / / / /
o qualcomm ipq6018_firmware - / / / / / / /
h qualcomm ipq6018 - / / / / / / /
o qualcomm ipq6010_firmware - / / / / / / /
h qualcomm ipq6010 - / / / / / / /
o qualcomm ipq6000_firmware - / / / / / / /
h qualcomm ipq6000 - / / / / / / /
o qualcomm ipq5332_firmware - / / / / / / /
h qualcomm ipq5332 - / / / / / / /
o qualcomm ipq5312_firmware - / / / / / / /
h qualcomm ipq5312 - / / / / / / /
o qualcomm ipq5302_firmware - / / / / / / /
h qualcomm ipq5302 - / / / / / / /
o qualcomm ipq5300_firmware - / / / / / / /
h qualcomm ipq5300 - / / / / / / /
o qualcomm ipq5028_firmware - / / / / / / /
h qualcomm ipq5028 - / / / / / / /
o qualcomm ipq5010_firmware - / / / / / / /
h qualcomm ipq5010 - / / / / / / /
o qualcomm immersive_home_326_platform_firmware - / / / / / / /
h qualcomm immersive_home_326_platform - / / / / / / /
o qualcomm immersive_home_3210_platform_firmware - / / / / / / /
h qualcomm immersive_home_3210_platform - / / / / / / /
o qualcomm immersive_home_318_platform_firmware - / / / / / / /
h qualcomm immersive_home_318_platform - / / / / / / /
o qualcomm immersive_home_316_platform_firmware - / / / / / / /
h qualcomm immersive_home_316_platform - / / / / / / /
o qualcomm immersive_home_216_platform_firmware - / / / / / / /
h qualcomm immersive_home_216_platform - / / / / / / /
o qualcomm immersive_home_214_platform_firmware - / / / / / / /
h qualcomm immersive_home_214_platform - / / / / / / /
o qualcomm csr8811_firmware - / / / / / / /
h qualcomm csr8811 - / / / / / / /

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html

Tags

CWE-20
product-security@qualcomm.com
NVD-CWE-noinfo
2024-10-07
CVE-2024-33066

CVSS Score

9.8 / 10

CVSS Data

  • Attack Vector: NETWORK
  • Attack Complexity: LOW
  • Privileges Required: NONE
  • Scope: UNCHANGED
  • Confidentiality Impact: HIGH
  • Integrity Impact: HIGH
  • Availability Impact: HIGH
    • View Vector String

    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Date

  • Published: Oct. 7, 2024, 1:15 p.m.
  • Last Modified: Oct. 16, 2024, 7:49 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@qualcomm.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.