CVE-2024-23350

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon (affected versions not specified)

Description The issue is related to a permanent denial of service (DOS) condition that occurs when the DL NAS transport receives multiple payloads, one of which contains a SOR container with a failed integrity check, and the other is an LPP where the UE needs to send a status message to the network. This is associated with an uncontrolled reachable assertion in the Qualcomm software. The exploitation of this issue can allow a remote attacker to cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.