Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver.
History

Thu, 07 Nov 2024 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm fastconnect 6900
Qualcomm fastconnect 7800
Qualcomm qca6391
Qualcomm qcm8550
Qualcomm qcs7230
Qualcomm qcs8250
Qualcomm qcs8550
Qualcomm sd 8 Gen1 5g
Qualcomm sg8275
Qualcomm sg8275p
Qualcomm sm7525
Qualcomm sm7550
Qualcomm sm8550p
Qualcomm snapdragon 8\+ Gen 2 Mobile Platform
Qualcomm snapdragon 8\+ Gen 2 Mobile Platform Firmware
Qualcomm snapdragon 8 Gen 2 Mobile Platform
Qualcomm snapdragon Ar2 Gen 1 Platform
Qualcomm ssg2115p
Qualcomm ssg2125p
Qualcomm sxr1230p
Qualcomm sxr2230p
Qualcomm sxr2250p
Qualcomm video Collaboration Vc5 Platform
Qualcomm video Collaboration Vc5 Platform Firmware
Qualcomm wcd9370
Qualcomm wcd9371
Qualcomm wcd9375
Qualcomm wcd9378
Qualcomm wcd9380
Qualcomm wcd9385
Qualcomm wcd9390
Qualcomm wcd9395
Qualcomm wcn6650
Qualcomm wcn6755
Qualcomm wcn7880
Qualcomm wsa8830
Qualcomm wsa8832
Qualcomm wsa8835
Qualcomm wsa8840
Qualcomm wsa8845
Qualcomm wsa8845h
Weaknesses NVD-CWE-Other
CPEs cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcm8550:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs7230:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs8250:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs8550:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd_8_gen1_5g:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sg8275:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sg8275p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sm7525:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sm7550:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sm8550p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_8\+_gen_2_mobile_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_8_gen_2_mobile_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_ar2_gen_1_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:ssg2115p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:ssg2125p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr1230p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:video_collaboration_vc5_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9371:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9378:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9390:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn6650:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn6755:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn7880:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_8\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:video_collaboration_vc5_platform_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm fastconnect 6900
Qualcomm fastconnect 7800
Qualcomm qca6391
Qualcomm qcm8550
Qualcomm qcs7230
Qualcomm qcs8250
Qualcomm qcs8550
Qualcomm sd 8 Gen1 5g
Qualcomm sg8275
Qualcomm sg8275p
Qualcomm sm7525
Qualcomm sm7550
Qualcomm sm8550p
Qualcomm snapdragon 8\+ Gen 2 Mobile Platform
Qualcomm snapdragon 8\+ Gen 2 Mobile Platform Firmware
Qualcomm snapdragon 8 Gen 2 Mobile Platform
Qualcomm snapdragon Ar2 Gen 1 Platform
Qualcomm ssg2115p
Qualcomm ssg2125p
Qualcomm sxr1230p
Qualcomm sxr2230p
Qualcomm sxr2250p
Qualcomm video Collaboration Vc5 Platform
Qualcomm video Collaboration Vc5 Platform Firmware
Qualcomm wcd9370
Qualcomm wcd9371
Qualcomm wcd9375
Qualcomm wcd9378
Qualcomm wcd9380
Qualcomm wcd9385
Qualcomm wcd9390
Qualcomm wcd9395
Qualcomm wcn6650
Qualcomm wcn6755
Qualcomm wcn7880
Qualcomm wsa8830
Qualcomm wsa8832
Qualcomm wsa8835
Qualcomm wsa8840
Qualcomm wsa8845
Qualcomm wsa8845h

Mon, 04 Nov 2024 14:15:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm
Qualcomm fastconnect 6900 Firmware
Qualcomm fastconnect 7800 Firmware
Qualcomm qca6391 Firmware
Qualcomm qcm8550 Firmware
Qualcomm qcs7230 Firmware
Qualcomm qcs8250 Firmware
Qualcomm qcs8550 Firmware
Qualcomm qualcomm Video Collaboration Vc5 Platform Firmware
Qualcomm sd 8 Gen1 5g Firmware
Qualcomm sg8275 Firmware
Qualcomm sg8275p Firmware
Qualcomm sm7525 Firmware
Qualcomm sm7550 Firmware
Qualcomm sm8550p Firmware
Qualcomm snapdragon 8 Gen 2 Mobile Platform Firmware
Qualcomm snapdragon Ar2 Gen 1 Platform Firmware
Qualcomm ssg2115p Firmware
Qualcomm ssg2125p Firmware
Qualcomm sxr1230p Firmware
Qualcomm sxr2230p Firmware
Qualcomm sxr2250p Firmware
Qualcomm wcd9370 Firmware
Qualcomm wcd9371 Firmware
Qualcomm wcd9375 Firmware
Qualcomm wcd9378 Firmware
Qualcomm wcd9380 Firmware
Qualcomm wcd9385 Firmware
Qualcomm wcd9390 Firmware
Qualcomm wcd9395 Firmware
Qualcomm wcn6650 Firmware
Qualcomm wcn6755 Firmware
Qualcomm wcn7880 Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8832 Firmware
Qualcomm wsa8835 Firmware
Qualcomm wsa8840 Firmware
Qualcomm wsa8845 Firmware
Qualcomm wsa8845h Firmware
CPEs cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcs7230_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcs8250_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcs8550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qualcomm_video_collaboration_vc5_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sg8275_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sg8275p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sm7525_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sm7550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_ar2_gen_1_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:ssg2115p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:ssg2125p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr1230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9371_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9378_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn6650_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn6755_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn7880_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm
Qualcomm fastconnect 6900 Firmware
Qualcomm fastconnect 7800 Firmware
Qualcomm qca6391 Firmware
Qualcomm qcm8550 Firmware
Qualcomm qcs7230 Firmware
Qualcomm qcs8250 Firmware
Qualcomm qcs8550 Firmware
Qualcomm qualcomm Video Collaboration Vc5 Platform Firmware
Qualcomm sd 8 Gen1 5g Firmware
Qualcomm sg8275 Firmware
Qualcomm sg8275p Firmware
Qualcomm sm7525 Firmware
Qualcomm sm7550 Firmware
Qualcomm sm8550p Firmware
Qualcomm snapdragon 8 Gen 2 Mobile Platform Firmware
Qualcomm snapdragon Ar2 Gen 1 Platform Firmware
Qualcomm ssg2115p Firmware
Qualcomm ssg2125p Firmware
Qualcomm sxr1230p Firmware
Qualcomm sxr2230p Firmware
Qualcomm sxr2250p Firmware
Qualcomm wcd9370 Firmware
Qualcomm wcd9371 Firmware
Qualcomm wcd9375 Firmware
Qualcomm wcd9378 Firmware
Qualcomm wcd9380 Firmware
Qualcomm wcd9385 Firmware
Qualcomm wcd9390 Firmware
Qualcomm wcd9395 Firmware
Qualcomm wcn6650 Firmware
Qualcomm wcn6755 Firmware
Qualcomm wcn7880 Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8832 Firmware
Qualcomm wsa8835 Firmware
Qualcomm wsa8840 Firmware
Qualcomm wsa8845 Firmware
Qualcomm wsa8845h Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 04 Nov 2024 10:15:00 +0000

Type Values Removed Values Added
Description Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver.
Title Use of Out-of-range Pointer Offset in ComputerVision
Weaknesses CWE-823
References
Metrics cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2024-11-04T10:04:32.745Z

Updated: 2024-11-08T04:55:09.987Z

Reserved: 2024-01-16T03:27:26.435Z

Link: CVE-2024-23377

cve-icon Vulnrichment

Updated: 2024-11-04T14:08:41.703Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-04T10:15:04.100

Modified: 2024-11-07T19:59:06.997

Link: CVE-2024-23377

cve-icon Redhat

No data.