CVE-2024-45577

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue involves memory corruption that occurs when invoking IOCTL calls from userspace to the camera kernel driver in order to dump request information. This is caused by an error in the handling of these calls, leading to potential system instability or data leakage.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-20

Related Identifiers

CVE-2024-45577

Affected Products

Snapdragon

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Sdm429W Firmware

Snapdragon 429 Mobile Firmware

Snapdragon 8 Gen 1 Mobile Firmware

Wcd9380 Firmware

Wcn3620 Firmware

Wcn3660B Firmware

Wsa8830 Firmware

Wsa8835 Firmware

CVE-2024-45577

Weakness Enumeration

Related Identifiers

Affected Products

References · 4