CVE-2024-33038

HIGH EPSS 1.2%
Published Sep 2, 20241y ago ยท Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Sep 2, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
1.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 2

CWE-787 Out-of-bounds Write Memory Safety
CWE-822

Affected Products 90

VendorProductVersionRange
qualcommfastconnect_6700_firmware*any
qualcommfastconnect_6700*any
qualcommfastconnect_6900_firmware*any
qualcommfastconnect_6900*any
qualcommfastconnect_7800_firmware*any
qualcommfastconnect_7800*any
qualcommqcm4490_firmware*any
qualcommqcm4490*any
qualcommqcm5430_firmware*any
qualcommqcm5430*any
qualcommqcm6490_firmware*any
qualcommqcm6490*any
qualcommqcm8550_firmware*any
qualcommqcm8550*any
qualcommqcs4490_firmware*any
qualcommqcs4490*any
qualcommqcs5430_firmware*any
qualcommqcs5430*any
qualcommqcs6490_firmware*any
qualcommqcs6490*any
qualcommqcs8550_firmware*any
qualcommqcs8550*any
qualcommvideo_collaboration_vc3_platform_firmware*any
qualcommvideo_collaboration_vc3_platform*any
qualcommsd_8_gen1_5g_firmware*any
qualcommsd_8_gen1_5g*any
qualcommsg8275p_firmware*any
qualcommsg8275p*any
qualcommsm8550p_firmware*any
qualcommsm8550p*any
qualcommsm8635_firmware*any
qualcommsm8635*any
qualcommsnapdragon_4_gen_2_firmware*any
qualcommsnapdragon_4_gen_2*any
qualcommsnapdragon_8_gen_1_firmware*any
qualcommsnapdragon_8_gen_1*any
qualcommsnapdragon_8_gen_2_firmware*any
qualcommsnapdragon_8_gen_2*any
qualcommsnapdragon_8_gen_3_firmware*any
qualcommsnapdragon_8_gen_3*any
qualcommsnapdragon_8\+_gen_1_firmware*any
qualcommsnapdragon_8\+_gen_1*any
qualcommsnapdragon_8\+_gen_2_firmware*any
qualcommsnapdragon_8\+_gen_2*any
qualcommsnapdragon_ar2_gen_1_firmware*any
qualcommsnapdragon_ar2_gen_1*any
qualcommssg2115p_firmware*any
qualcommssg2115p*any
qualcommssg2125p_firmware*any
qualcommssg2125p*any
qualcommsxr1230p_firmware*any
qualcommsxr1230p*any
qualcommtalynplus_firmware*any
qualcommtalynplus*any
qualcommwcd9370_firmware*any
qualcommwcd9370*any
qualcommwcd9375_firmware*any
qualcommwcd9375*any
qualcommwcd9380_firmware*any
qualcommwcd9380*any
qualcommwcd9385_firmware*any
qualcommwcd9385*any
qualcommwcd9390_firmware*any
qualcommwcd9390*any
qualcommwcd9395_firmware*any
qualcommwcd9395*any
qualcommwcn3950_firmware*any
qualcommwcn3950*any
qualcommwcn3988_firmware*any
qualcommwcn3988*any
qualcommwcn6740_firmware*any
qualcommwcn6740*any
qualcommwcn6755_firmware*any
qualcommwcn6755*any
qualcommwsa8810_firmware*any
qualcommwsa8810*any
qualcommwsa8815_firmware*any
qualcommwsa8815*any
qualcommwsa8830_firmware*any
qualcommwsa8830*any
qualcommwsa8832_firmware*any
qualcommwsa8832*any
qualcommwsa8835_firmware*any
qualcommwsa8835*any
qualcommwsa8840_firmware*any
qualcommwsa8840*any
qualcommwsa8845_firmware*any
qualcommwsa8845*any
qualcommwsa8845h_firmware*any
qualcommwsa8845h*any

References 1

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html
    PatchVendor Advisory

Remediation

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html
    PatchVendor Advisory