CVE-2024-38403

MEDIUM EPSS 15.4%
Published Nov 4, 20241y ago ยท Modified Jun 17, 20262w ago
6.5 CVSS 3.1
Medium
Find Similar
Published Nov 4, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

Transient DOS while parsing BTM ML IE when per STA profile is not included.

CVSS Details

Base Score
6.5
Exploitability
2.8
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
15.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 2

CWE-125 Out-of-bounds Read Memory Safety
CWE-126

Affected Products 156

VendorProductVersionRange
qualcommwsa8845h_firmware*any
qualcommwsa8845h*any
qualcommwsa8845_firmware*any
qualcommwsa8845*any
qualcommwsa8840_firmware*any
qualcommwsa8840*any
qualcommwsa8835_firmware*any
qualcommwsa8835*any
qualcommwsa8832_firmware*any
qualcommwsa8832*any
qualcommwsa8830_firmware*any
qualcommwsa8830*any
qualcommwcn7881_firmware*any
qualcommwcn7881*any
qualcommwcn7880_firmware*any
qualcommwcn7880*any
qualcommwcn7861_firmware*any
qualcommwcn7861*any
qualcommwcn7860_firmware*any
qualcommwcn7860*any
qualcommwcn6755_firmware*any
qualcommwcn6755*any
qualcommwcn3980_firmware*any
qualcommwcn3980*any
qualcommwcn3680b_firmware*any
qualcommwcn3680b*any
qualcommwcn3660b_firmware*any
qualcommwcn3660b*any
qualcommwcn3620_firmware*any
qualcommwcn3620*any
qualcommwcn3610_firmware*any
qualcommwcn3610*any
qualcommwcd9395_firmware*any
qualcommwcd9395*any
qualcommwcd9390_firmware*any
qualcommwcd9390*any
qualcommwcd9385_firmware*any
qualcommwcd9385*any
qualcommwcd9380_firmware*any
qualcommwcd9380*any
qualcommwcd9375_firmware*any
qualcommwcd9375*any
qualcommwcd9370_firmware*any
qualcommwcd9370*any
qualcommwcd9340_firmware*any
qualcommwcd9340*any
qualcommsxr2250p_firmware*any
qualcommsxr2250p*any
qualcommsxr2230p_firmware*any
qualcommsxr2230p*any
qualcommsxr1230p_firmware*any
qualcommsxr1230p*any
qualcommssg2125p_firmware*any
qualcommssg2125p*any
qualcommssg2115p_firmware*any
qualcommssg2115p*any
qualcommsnapdragon_x75_5g_modem-rf_system_firmware*any
qualcommsnapdragon_x75_5g_modem-rf_system*any
qualcommsnapdragon_x72_5g_modem-rf_system_firmware*any
qualcommsnapdragon_x72_5g_modem-rf_system*any
qualcommsnapdragon_wear_4100\+_platform_firmware*any
qualcommsnapdragon_wear_4100\+_platform*any
qualcommsnapdragon_ar2_gen_1_platform_firmware*any
qualcommsnapdragon_ar2_gen_1_platform*any
qualcommsnapdragon_8\+_gen_2_mobile_platform_firmware*any
qualcommsnapdragon_8\+_gen_2_mobile_platform*any
qualcommsnapdragon_8_gen_3_mobile_platform_firmware*any
qualcommsnapdragon_8_gen_3_mobile_platform*any
qualcommsnapdragon_8_gen_2_mobile_platform_firmware*any
qualcommsnapdragon_8_gen_2_mobile_platform*any
qualcommsnapdragon_429_mobile_platform_firmware*any
qualcommsnapdragon_429_mobile_platform*any
qualcommsm8750p_firmware*any
qualcommsm8750p*any
qualcommsm8750_firmware*any
qualcommsm8750*any
qualcommsm8635_firmware*any
qualcommsm8635*any
qualcommsm8550p_firmware*any
qualcommsm8550p*any
qualcommsdm429w_firmware*any
qualcommsdm429w*any
qualcommsc8380xp_firmware*any
qualcommsc8380xp*any
qualcommsa9000p_firmware*any
qualcommsa9000p*any
qualcommsa8775p_firmware*any
qualcommsa8775p*any
qualcommsa8650p_firmware*any
qualcommsa8650p*any
qualcommsa8620p_firmware*any
qualcommsa8620p*any
qualcommsa8255p_firmware*any
qualcommsa8255p*any
qualcommsa7775p_firmware*any
qualcommsa7775p*any
qualcommsa7255p_firmware*any
qualcommsa7255p*any
qualcommqfw7124_firmware*any
qualcommqfw7124*any
qualcommqfw7114_firmware*any
qualcommqfw7114*any
qualcommqcn6274_firmware*any
qualcommqcn6274*any
qualcommqcn6224_firmware*any
qualcommqcn6224*any
qualcommqcm8550_firmware*any
qualcommqcm8550*any
qualcommqcc710_firmware*any
qualcommqcc710*any
qualcommqcc2076_firmware*any
qualcommqcc2076*any
qualcommqcc2073_firmware*any
qualcommqcc2073*any
qualcommqca8337_firmware*any
qualcommqca8337*any
qualcommqca8081_firmware*any
qualcommqca8081*any
qualcommqca6797aq_firmware*any
qualcommqca6797aq*any
qualcommqca6787aq_firmware*any
qualcommqca6787aq*any
qualcommqca6777aq_firmware*any
qualcommqca6777aq*any
qualcommqca6698aq_firmware*any
qualcommqca6698aq*any
qualcommqca6696_firmware*any
qualcommqca6696*any
qualcommqca6595au_firmware*any
qualcommqca6595au*any
qualcommqca6595_firmware*any
qualcommqca6595*any
qualcommqca6584au_firmware*any
qualcommqca6584au*any
qualcommqca6574au_firmware*any
qualcommqca6574au*any
qualcommqca6574a_firmware*any
qualcommqca6574a*any
qualcommqca6574_firmware*any
qualcommqca6574*any
qualcommqca6564au_firmware*any
qualcommqca6564au*any
qualcommqca6554a_firmware*any
qualcommqca6554a*any
qualcommqam8775p_firmware*any
qualcommqam8775p*any
qualcommqam8650p_firmware*any
qualcommqam8650p*any
qualcommqam8255p_firmware*any
qualcommqam8255p*any
qualcommfastconnect_7800_firmware*any
qualcommfastconnect_7800*any
qualcommfastconnect_6900_firmware*any
qualcommfastconnect_6900*any
qualcommar8035_firmware*any
qualcommar8035*any

References 1

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html
    PatchVendor Advisory

Remediation

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html
    PatchVendor Advisory