Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.
History

Wed, 16 Oct 2024 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm qam8295p
Qualcomm qca6584au
Qualcomm qca6595
Qualcomm qca6688aq
Qualcomm qca6696
Qualcomm qca6698aq
Qualcomm qcm6125
Qualcomm qcs6125
Qualcomm qualcomm Video Collaboration Vc1 Platform
Qualcomm sa8295p
Qualcomm sg4150p
Qualcomm snapdragon 680 4g Mobile Platform
Qualcomm snapdragon 685 4g Mobile Platform \(sm6225-ad\)
Qualcomm snapdragon 685 4g Mobile Platform \(sm6225-ad\) Firmware
Qualcomm snapdragon Auto 5g Modem-rf Gen 2
Qualcomm wcd9370
Qualcomm wcd9375
Qualcomm wcn3950
Qualcomm wcn3980
Qualcomm wsa8810
Qualcomm wsa8815
Weaknesses CWE-119
CPEs cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6688aq:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcm6125:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs6125:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qualcomm_video_collaboration_vc1_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sg4150p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_680_4g_mobile_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_685_4g_mobile_platform_\(sm6225-ad\):-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_auto_5g_modem-rf_gen_2:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm qam8295p
Qualcomm qca6584au
Qualcomm qca6595
Qualcomm qca6688aq
Qualcomm qca6696
Qualcomm qca6698aq
Qualcomm qcm6125
Qualcomm qcs6125
Qualcomm qualcomm Video Collaboration Vc1 Platform
Qualcomm sa8295p
Qualcomm sg4150p
Qualcomm snapdragon 680 4g Mobile Platform
Qualcomm snapdragon 685 4g Mobile Platform \(sm6225-ad\)
Qualcomm snapdragon 685 4g Mobile Platform \(sm6225-ad\) Firmware
Qualcomm snapdragon Auto 5g Modem-rf Gen 2
Qualcomm wcd9370
Qualcomm wcd9375
Qualcomm wcn3950
Qualcomm wcn3980
Qualcomm wsa8810
Qualcomm wsa8815

Mon, 07 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm
Qualcomm qam8295p Firmware
Qualcomm qca6584au Firmware
Qualcomm qca6595 Firmware
Qualcomm qca6688aq Firmware
Qualcomm qca6696 Firmware
Qualcomm qca6698aq Firmware
Qualcomm qcm6125 Firmware
Qualcomm qcs6125 Firmware
Qualcomm qualcomm Video Collaboration Vc1 Platform Firmware
Qualcomm sa8295p Firmware
Qualcomm sg4150p Firmware
Qualcomm snapdragon 680 4g Mobile Platform Firmware
Qualcomm snapdragon Auto 5g Modem-rf Gen 2 Firmware
Qualcomm wcd9370 Firmware
Qualcomm wcd9375 Firmware
Qualcomm wcn3950 Firmware
Qualcomm wcn3980 Firmware
Qualcomm wsa8810 Firmware
Qualcomm wsa8815 Firmware
CPEs cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6688aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcs6125_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qualcomm_video_collaboration_vc1_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sg4150p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_680_4g_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm
Qualcomm qam8295p Firmware
Qualcomm qca6584au Firmware
Qualcomm qca6595 Firmware
Qualcomm qca6688aq Firmware
Qualcomm qca6696 Firmware
Qualcomm qca6698aq Firmware
Qualcomm qcm6125 Firmware
Qualcomm qcs6125 Firmware
Qualcomm qualcomm Video Collaboration Vc1 Platform Firmware
Qualcomm sa8295p Firmware
Qualcomm sg4150p Firmware
Qualcomm snapdragon 680 4g Mobile Platform Firmware
Qualcomm snapdragon Auto 5g Modem-rf Gen 2 Firmware
Qualcomm wcd9370 Firmware
Qualcomm wcd9375 Firmware
Qualcomm wcn3950 Firmware
Qualcomm wcn3980 Firmware
Qualcomm wsa8810 Firmware
Qualcomm wsa8815 Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 07 Oct 2024 13:15:00 +0000

Type Values Removed Values Added
Description Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.
Title Untrusted Pointer Dereference in DSP Service
Weaknesses CWE-822
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2024-10-07T12:58:42.341Z

Updated: 2024-10-07T13:19:44.091Z

Reserved: 2023-12-12T06:07:46.903Z

Link: CVE-2024-21455

cve-icon Vulnrichment

Updated: 2024-10-07T13:19:29.592Z

cve-icon NVD

Status : Analyzed

Published: 2024-10-07T13:15:10.360

Modified: 2024-10-16T20:30:53.093

Link: CVE-2024-21455

cve-icon Redhat

No data.