CVE-2024-23374

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file. This issue can be exploited, potentially leading to memory corruption. No information is provided about the estimated number of potentially affected devices or real-world incidents.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-121

Related Identifiers

CVE-2024-23374

Affected Products

Snapdragon

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Qca6174A Firmware

Qca6574Au Firmware

Qca6584Au Firmware

Qca6696 Firmware

Qca6698Aq Firmware

Qca9367 Firmware

Qca9377 Firmware

Sa6145P Firmware

Sa6150P Firmware

Sa6155P Firmware

Sa8145P Firmware

Sa8150P Firmware

Sa8155P Firmware

Sa8195P Firmware

Snapdragon 8 Gen 1 Mobile Platform Firmware

Snapdragon Auto 5G Modem-Rf Gen 2 Firmware

Snapdragon W5+ Gen 1 Wearable Platform Firmware

Sw5100P Firmware

Wcd9380 Firmware

Wcn3980 Firmware

Wcn3988 Firmware

Wsa8830 Firmware

Wsa8835 Firmware

CVE-2024-23374

Weakness Enumeration

Related Identifiers

Affected Products

References · 6