Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
History

Thu, 07 Nov 2024 20:00:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm fastconnect 6700
Qualcomm fastconnect 6900
Qualcomm fastconnect 7800
Qualcomm qcc2073
Qualcomm qcc2076
Qualcomm qcm5430
Qualcomm qcm6490
Qualcomm qcs5430
Qualcomm qcs6490
Qualcomm sc8380xp
Qualcomm sdm429w
Qualcomm snapdragon 429 Mobile Platform
Qualcomm snapdragon 8cx Gen 3 Compute Platform
Qualcomm snapdragon 8cx Gen 3 Compute Platform Firmware
Qualcomm video Collaboration Vc3 Platform
Qualcomm video Collaboration Vc3 Platform Firmware
Qualcomm wcd9370
Qualcomm wcd9375
Qualcomm wcd9380
Qualcomm wcd9385
Qualcomm wcn3620
Qualcomm wcn3660b
Qualcomm wsa8830
Qualcomm wsa8835
Qualcomm wsa8840
Qualcomm wsa8845
Qualcomm wsa8845h
Weaknesses CWE-787
CPEs cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcc2073:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcc2076:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcm5430:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcm6490:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs5430:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs6490:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sc8380xp:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_429_mobile_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:video_collaboration_vc3_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3620:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm fastconnect 6700
Qualcomm fastconnect 6900
Qualcomm fastconnect 7800
Qualcomm qcc2073
Qualcomm qcc2076
Qualcomm qcm5430
Qualcomm qcm6490
Qualcomm qcs5430
Qualcomm qcs6490
Qualcomm sc8380xp
Qualcomm sdm429w
Qualcomm snapdragon 429 Mobile Platform
Qualcomm snapdragon 8cx Gen 3 Compute Platform
Qualcomm snapdragon 8cx Gen 3 Compute Platform Firmware
Qualcomm video Collaboration Vc3 Platform
Qualcomm video Collaboration Vc3 Platform Firmware
Qualcomm wcd9370
Qualcomm wcd9375
Qualcomm wcd9380
Qualcomm wcd9385
Qualcomm wcn3620
Qualcomm wcn3660b
Qualcomm wsa8830
Qualcomm wsa8835
Qualcomm wsa8840
Qualcomm wsa8845
Qualcomm wsa8845h

Mon, 04 Nov 2024 11:15:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm
Qualcomm fastconnect 6700 Firmware
Qualcomm fastconnect 6900 Firmware
Qualcomm fastconnect 7800 Firmware
Qualcomm qcc2073 Firmware
Qualcomm qcc2076 Firmware
Qualcomm qcm5430 Firmware
Qualcomm qcm6490 Firmware
Qualcomm qcs5430 Firmware
Qualcomm qcs6490 Firmware
Qualcomm qualcomm Video Collaboration Vc3 Platform Firmware
Qualcomm sc8380xp Firmware
Qualcomm sdm429w Firmware
Qualcomm snapdragon 429 Mobile Platform Firmware
Qualcomm wcd9370 Firmware
Qualcomm wcd9375 Firmware
Qualcomm wcd9380 Firmware
Qualcomm wcd9385 Firmware
Qualcomm wcn3620 Firmware
Qualcomm wcn3660b Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8835 Firmware
Qualcomm wsa8840 Firmware
Qualcomm wsa8845 Firmware
Qualcomm wsa8845h Firmware
CPEs cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcc2073_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcc2076_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcm5430_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcm6490_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcs5430_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qcs6490_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qualcomm_video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_429_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3620_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm
Qualcomm fastconnect 6700 Firmware
Qualcomm fastconnect 6900 Firmware
Qualcomm fastconnect 7800 Firmware
Qualcomm qcc2073 Firmware
Qualcomm qcc2076 Firmware
Qualcomm qcm5430 Firmware
Qualcomm qcm6490 Firmware
Qualcomm qcs5430 Firmware
Qualcomm qcs6490 Firmware
Qualcomm qualcomm Video Collaboration Vc3 Platform Firmware
Qualcomm sc8380xp Firmware
Qualcomm sdm429w Firmware
Qualcomm snapdragon 429 Mobile Platform Firmware
Qualcomm wcd9370 Firmware
Qualcomm wcd9375 Firmware
Qualcomm wcd9380 Firmware
Qualcomm wcd9385 Firmware
Qualcomm wcn3620 Firmware
Qualcomm wcn3660b Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8835 Firmware
Qualcomm wsa8840 Firmware
Qualcomm wsa8845 Firmware
Qualcomm wsa8845h Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 04 Nov 2024 10:15:00 +0000

Type Values Removed Values Added
Description Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
Title Stack-based Buffer Overflow in WLAN Windows Host
Weaknesses CWE-121
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2024-11-04T10:04:53.283Z

Updated: 2024-11-16T04:55:25.671Z

Reserved: 2024-06-16T00:50:18.903Z

Link: CVE-2024-38410

cve-icon Vulnrichment

Updated: 2024-11-04T11:03:17.474Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-04T10:15:07.933

Modified: 2024-11-07T19:41:06.217

Link: CVE-2024-38410

cve-icon Redhat

No data.