Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.
History

Wed, 16 Oct 2024 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm qam8255p
Qualcomm qam8650p
Qualcomm qam8775p
Qualcomm qamsrv1h
Qualcomm qamsrv1m
Qualcomm qca6584au
Qualcomm qca6698aq
Qualcomm sa7255p
Qualcomm sa7775p
Qualcomm sa8255p
Qualcomm sa8620p
Qualcomm sa8650p
Qualcomm sa8770p
Qualcomm sa8775p
Qualcomm sa9000p
Qualcomm snapdragon Auto 5g Modem-rf Gen 2
Qualcomm srv1h
Qualcomm srv1m
CPEs cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_auto_5g_modem-rf_gen_2:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm qam8255p
Qualcomm qam8650p
Qualcomm qam8775p
Qualcomm qamsrv1h
Qualcomm qamsrv1m
Qualcomm qca6584au
Qualcomm qca6698aq
Qualcomm sa7255p
Qualcomm sa7775p
Qualcomm sa8255p
Qualcomm sa8620p
Qualcomm sa8650p
Qualcomm sa8770p
Qualcomm sa8775p
Qualcomm sa9000p
Qualcomm snapdragon Auto 5g Modem-rf Gen 2
Qualcomm srv1h
Qualcomm srv1m

Mon, 07 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm
Qualcomm qam8255p Firmware
Qualcomm qam8650p Firmware
Qualcomm qam8775p Firmware
Qualcomm qamsrv1h Firmware
Qualcomm qamsrv1m Firmware
Qualcomm qca6584au Firmware
Qualcomm qca6698aq Firmware
Qualcomm sa7255p Firmware
Qualcomm sa7775p Firmware
Qualcomm sa8255p Firmware
Qualcomm sa8620p Firmware
Qualcomm sa8650p Firmware
Qualcomm sa8770p Firmware
Qualcomm sa8775p Firmware
Qualcomm sa9000p Firmware
Qualcomm snapdragon Auto 5g Modem-rf Gen 2 Firmware
Qualcomm srv1h Firmware
Qualcomm srv1m Firmware
CPEs cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm
Qualcomm qam8255p Firmware
Qualcomm qam8650p Firmware
Qualcomm qam8775p Firmware
Qualcomm qamsrv1h Firmware
Qualcomm qamsrv1m Firmware
Qualcomm qca6584au Firmware
Qualcomm qca6698aq Firmware
Qualcomm sa7255p Firmware
Qualcomm sa7775p Firmware
Qualcomm sa8255p Firmware
Qualcomm sa8620p Firmware
Qualcomm sa8650p Firmware
Qualcomm sa8770p Firmware
Qualcomm sa8775p Firmware
Qualcomm sa9000p Firmware
Qualcomm snapdragon Auto 5g Modem-rf Gen 2 Firmware
Qualcomm srv1h Firmware
Qualcomm srv1m Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 07 Oct 2024 13:15:00 +0000

Type Values Removed Values Added
Description Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.
Title Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
Weaknesses CWE-120
References
Metrics cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2024-10-07T12:58:48.334Z

Updated: 2024-10-07T13:22:23.308Z

Reserved: 2024-01-16T03:27:26.435Z

Link: CVE-2024-23378

cve-icon Vulnrichment

Updated: 2024-10-07T13:22:11.352Z

cve-icon NVD

Status : Analyzed

Published: 2024-10-07T13:15:11.800

Modified: 2024-10-16T20:00:29.503

Link: CVE-2024-23378

cve-icon Redhat

No data.