CVE-2024-43047

Oct. 9, 2024, 2:39 p.m.

7.8
High

Description

Memory corruption while maintaining memory maps of HLOS memory.

Product(s) Impacted

Vendor Product Versions
Qualcomm
  • Fastconnect 6700 Firmware
  • Fastconnect 6700
  • Fastconnect 6800 Firmware
  • Fastconnect 6800
  • Fastconnect 6900 Firmware
  • Fastconnect 6900
  • Fastconnect 7800 Firmware
  • Fastconnect 7800
  • Qam8295p Firmware
  • Qam8295p
  • Qca6174a Firmware
  • Qca6174a
  • Qca6391 Firmware
  • Qca6391
  • Qca6426 Firmware
  • Qca6426
  • Qca6436 Firmware
  • Qca6436
  • Qca6574au Firmware
  • Qca6574au
  • Qca6584au Firmware
  • Qca6584au
  • Qca6595 Firmware
  • Qca6595
  • Qca6595au Firmware
  • Qca6595au
  • Qca6688aq Firmware
  • Qca6688aq
  • Qca6696 Firmware
  • Qca6696
  • Qca6698aq Firmware
  • Qca6698aq
  • Qcs410 Firmware
  • Qcs410
  • Qcs610 Firmware
  • Qcs610
  • Qcs6490 Firmware
  • Qcs6490
  • Video Collaboration Vc1 Firmware
  • Video Collaboration Vc1
  • Video Collaboration Vc3 Firmware
  • Video Collaboration Vc3
  • Sa4150p Firmware
  • Sa4150p
  • Sa4155p Firmware
  • Sa4155p
  • Sa6145p Firmware
  • Sa6145p
  • Sa6150p Firmware
  • Sa6150p
  • Sa6155p Firmware
  • Sa6155p
  • Sa8145p Firmware
  • Sa8145p
  • Sa8150p Firmware
  • Sa8150p
  • Sa8155p Firmware
  • Sa8155p
  • Sa8195p Firmware
  • Sa8195p
  • Sa8295p Firmware
  • Sa8295p
  • Sd660 Firmware
  • Sd660
  • Sd865 5g Firmware
  • Sd865 5g
  • Sg4150p Firmware
  • Sg4150p
  • Snapdragon 660 Mobile Firmware
  • Snapdragon 660 Mobile
  • Snapdragon 680 4g Mobile Firmware
  • Snapdragon 680 4g Mobile
  • Snapdragon 685 4g Mobile Firmware
  • Snapdragon 685 4g Mobile
  • Snapdragon 8 Gen 1 Mobile Firmware
  • Snapdragon 8 Gen 1 Mobile
  • Snapdragon 865 5g Mobile Firmware
  • Snapdragon 865 5g Mobile
  • Snapdragon 865\+ 5g Mobile Firmware
  • Snapdragon 865\+ 5g Mobile
  • Snapdragon 870 5g Mobile Firmware
  • Snapdragon 870 5g Mobile
  • Snapdragon 888 5g Mobile Firmware
  • Snapdragon 888 5g Mobile
  • Snapdragon 888\+ 5g Mobile Firmware
  • Snapdragon 888\+ 5g Mobile
  • Snapdragon Auto 5g Modem-rf Firmware
  • Snapdragon Auto 5g Modem-rf
  • Snapdragon Auto 5g Modem-rf Gen 2 Firmware
  • Snapdragon Auto 5g Modem-rf Gen 2
  • Snapdragon X55 5g Modem-rf Firmware
  • Snapdragon X55 5g Modem-rf
  • Snapdragon Xr2 5g Firmware
  • Snapdragon Xr2 5g
  • Sw5100 Firmware
  • Sw5100
  • Sw5100p Firmware
  • Sw5100p
  • Sxr2130 Firmware
  • Sxr2130
  • Wcd9335 Firmware
  • Wcd9335
  • Wcd9341 Firmware
  • Wcd9341
  • Wcd9370 Firmware
  • Wcd9370
  • Wcd9375 Firmware
  • Wcd9375
  • Wcd9380 Firmware
  • Wcd9380
  • Wcd9385 Firmware
  • Wcd9385
  • Wcn3950 Firmware
  • Wcn3950
  • Wcn3980 Firmware
  • Wcn3980
  • Wcn3988 Firmware
  • Wcn3988
  • Wcn3990 Firmware
  • Wcn3990
  • Wsa8810 Firmware
  • Wsa8810
  • Wsa8815 Firmware
  • Wsa8815
  • Wsa8830 Firmware
  • Wsa8830
  • Wsa8835 Firmware
  • Wsa8835
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-416
Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o qualcomm fastconnect_6700_firmware - / / / / / / /
h qualcomm fastconnect_6700 - / / / / / / /
o qualcomm fastconnect_6800_firmware - / / / / / / /
h qualcomm fastconnect_6800 - / / / / / / /
o qualcomm fastconnect_6900_firmware - / / / / / / /
h qualcomm fastconnect_6900 - / / / / / / /
o qualcomm fastconnect_7800_firmware - / / / / / / /
h qualcomm fastconnect_7800 - / / / / / / /
o qualcomm qam8295p_firmware - / / / / / / /
h qualcomm qam8295p - / / / / / / /
o qualcomm qca6174a_firmware - / / / / / / /
h qualcomm qca6174a - / / / / / / /
o qualcomm qca6391_firmware - / / / / / / /
h qualcomm qca6391 - / / / / / / /
o qualcomm qca6426_firmware - / / / / / / /
h qualcomm qca6426 - / / / / / / /
o qualcomm qca6436_firmware - / / / / / / /
h qualcomm qca6436 - / / / / / / /
o qualcomm qca6574au_firmware - / / / / / / /
h qualcomm qca6574au - / / / / / / /
o qualcomm qca6584au_firmware - / / / / / / /
h qualcomm qca6584au - / / / / / / /
o qualcomm qca6595_firmware - / / / / / / /
h qualcomm qca6595 - / / / / / / /
o qualcomm qca6595au_firmware - / / / / / / /
h qualcomm qca6595au - / / / / / / /
o qualcomm qca6688aq_firmware - / / / / / / /
h qualcomm qca6688aq - / / / / / / /
o qualcomm qca6696_firmware - / / / / / / /
h qualcomm qca6696 - / / / / / / /
o qualcomm qca6698aq_firmware - / / / / / / /
h qualcomm qca6698aq - / / / / / / /
o qualcomm qcs410_firmware - / / / / / / /
h qualcomm qcs410 - / / / / / / /
o qualcomm qcs610_firmware - / / / / / / /
h qualcomm qcs610 - / / / / / / /
o qualcomm qcs6490_firmware - / / / / / / /
h qualcomm qcs6490 - / / / / / / /
o qualcomm video_collaboration_vc1_firmware - / / / / / / /
h qualcomm video_collaboration_vc1 - / / / / / / /
o qualcomm video_collaboration_vc3_firmware - / / / / / / /
h qualcomm video_collaboration_vc3 - / / / / / / /
o qualcomm sa4150p_firmware - / / / / / / /
h qualcomm sa4150p - / / / / / / /
o qualcomm sa4155p_firmware - / / / / / / /
h qualcomm sa4155p - / / / / / / /
o qualcomm sa6145p_firmware - / / / / / / /
h qualcomm sa6145p - / / / / / / /
o qualcomm sa6150p_firmware - / / / / / / /
h qualcomm sa6150p - / / / / / / /
o qualcomm sa6155p_firmware - / / / / / / /
h qualcomm sa6155p - / / / / / / /
o qualcomm sa8145p_firmware - / / / / / / /
h qualcomm sa8145p - / / / / / / /
o qualcomm sa8150p_firmware - / / / / / / /
h qualcomm sa8150p - / / / / / / /
o qualcomm sa8155p_firmware - / / / / / / /
h qualcomm sa8155p - / / / / / / /
o qualcomm sa8195p_firmware - / / / / / / /
h qualcomm sa8195p - / / / / / / /
o qualcomm sa8295p_firmware - / / / / / / /
h qualcomm sa8295p - / / / / / / /
o qualcomm sd660_firmware - / / / / / / /
h qualcomm sd660 - / / / / / / /
o qualcomm sd865_5g_firmware - / / / / / / /
h qualcomm sd865_5g - / / / / / / /
o qualcomm sg4150p_firmware - / / / / / / /
h qualcomm sg4150p - / / / / / / /
o qualcomm snapdragon_660_mobile_firmware - / / / / / / /
h qualcomm snapdragon_660_mobile - / / / / / / /
o qualcomm snapdragon_680_4g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_680_4g_mobile - / / / / / / /
o qualcomm snapdragon_685_4g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_685_4g_mobile - / / / / / / /
o qualcomm snapdragon_8_gen_1_mobile_firmware - / / / / / / /
h qualcomm snapdragon_8_gen_1_mobile - / / / / / / /
o qualcomm snapdragon_865_5g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_865_5g_mobile - / / / / / / /
o qualcomm snapdragon_865\+_5g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_865\+_5g_mobile - / / / / / / /
o qualcomm snapdragon_870_5g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_870_5g_mobile - / / / / / / /
o qualcomm snapdragon_888_5g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_888_5g_mobile - / / / / / / /
o qualcomm snapdragon_888\+_5g_mobile_firmware - / / / / / / /
h qualcomm snapdragon_888\+_5g_mobile - / / / / / / /
o qualcomm snapdragon_auto_5g_modem-rf_firmware - / / / / / / /
h qualcomm snapdragon_auto_5g_modem-rf - / / / / / / /
o qualcomm snapdragon_auto_5g_modem-rf_gen_2_firmware - / / / / / / /
h qualcomm snapdragon_auto_5g_modem-rf_gen_2 - / / / / / / /
o qualcomm snapdragon_x55_5g_modem-rf_firmware - / / / / / / /
h qualcomm snapdragon_x55_5g_modem-rf - / / / / / / /
o qualcomm snapdragon_xr2_5g_firmware - / / / / / / /
h qualcomm snapdragon_xr2_5g - / / / / / / /
o qualcomm sw5100_firmware - / / / / / / /
h qualcomm sw5100 - / / / / / / /
o qualcomm sw5100p_firmware - / / / / / / /
h qualcomm sw5100p - / / / / / / /
o qualcomm sxr2130_firmware - / / / / / / /
h qualcomm sxr2130 - / / / / / / /
o qualcomm wcd9335_firmware - / / / / / / /
h qualcomm wcd9335 - / / / / / / /
o qualcomm wcd9341_firmware - / / / / / / /
h qualcomm wcd9341 - / / / / / / /
o qualcomm wcd9370_firmware - / / / / / / /
h qualcomm wcd9370 - / / / / / / /
o qualcomm wcd9375_firmware - / / / / / / /
h qualcomm wcd9375 - / / / / / / /
o qualcomm wcd9380_firmware - / / / / / / /
h qualcomm wcd9380 - / / / / / / /
o qualcomm wcd9385_firmware - / / / / / / /
h qualcomm wcd9385 - / / / / / / /
o qualcomm wcn3950_firmware - / / / / / / /
h qualcomm wcn3950 - / / / / / / /
o qualcomm wcn3980_firmware - / / / / / / /
h qualcomm wcn3980 - / / / / / / /
o qualcomm wcn3988_firmware - / / / / / / /
h qualcomm wcn3988 - / / / / / / /
o qualcomm wcn3990_firmware - / / / / / / /
h qualcomm wcn3990 - / / / / / / /
o qualcomm wsa8810_firmware - / / / / / / /
h qualcomm wsa8810 - / / / / / / /
o qualcomm wsa8815_firmware - / / / / / / /
h qualcomm wsa8815 - / / / / / / /
o qualcomm wsa8830_firmware - / / / / / / /
h qualcomm wsa8830 - / / / / / / /
o qualcomm wsa8835_firmware - / / / / / / /
h qualcomm wsa8835 - / / / / / / /

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html

Tags

CWE-416
product-security@qualcomm.com
2024-10-07
CVE-2024-43047

CVSS Score

7.8 / 10

CVSS Data - 3.1

  • Attack Vector: LOCAL
  • Attack Complexity: LOW
  • Privileges Required: LOW
  • Scope: UNCHANGED
  • Confidentiality Impact: HIGH
  • Integrity Impact: HIGH
  • Availability Impact: HIGH

    • CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

    View Vector String

Timeline

Published: Oct. 7, 2024, 1:15 p.m.
Last Modified: Oct. 9, 2024, 2:39 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@qualcomm.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.