CVE-2024-49830

HIGH EPSS 0.7%
Published May 6, 20251y ago ยท Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published May 6, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

Memory corruption while processing an IOCTL call to set mixer controls.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
0.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-120

Affected Products 24

VendorProductVersionRange
qualcommqca6574au_firmware*any
qualcommqca6574au*any
qualcommqca6595au_firmware*any
qualcommqca6595au*any
qualcommqca6678aq_firmware*any
qualcommqca6678aq*any
qualcommqca6688aq_firmware*any
qualcommqca6688aq*any
qualcommqca6698aq_firmware*any
qualcommqca6698aq*any
qualcommqca9367_firmware*any
qualcommqca9367*any
qualcommqca9377_firmware*any
qualcommqca9377*any
qualcommsdm429w_firmware*any
qualcommsdm429w*any
qualcommsnapdragon_429_mobile_firmware*any
qualcommsnapdragon_429_mobile*any
qualcommsnapdragon_auto_5g_modem-rf_gen_2_firmware*any
qualcommsnapdragon_auto_5g_modem-rf_gen_2*any
qualcommwcn3620_firmware*any
qualcommwcn3620*any
qualcommwcn3660b_firmware*any
qualcommwcn3660b*any

References 1

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html
    PatchVendor Advisory

Remediation

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html
    PatchVendor Advisory