CVE-2024-49847

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue is related to a transient Denial of Service (DOS) that occurs during the processing of a registration acceptance Over-The-Air (OTA) message due to incorrect ciphering key data. This problem arises from the incorrect handling of ciphering key data, which leads to a temporary disruption in service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Buffer Over-read

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-126CWE-125

Related Identifiers

CVE-2024-49847

Affected Products

Snapdragon

Ar8035 Firmware

Fastconnect 7800 Firmware

Qca6574Au Firmware

Qca6584Au Firmware

Qca6595Au Firmware

Qca6678Aq Firmware

Qca6688Aq Firmware

Qca6698Aq Firmware

Qca8081 Firmware

Qca8337 Firmware

Qcc710 Firmware

Qcn6224 Firmware

Qcn6274 Firmware

Qfw7114 Firmware

Qfw7124 Firmware

Sdm429W Firmware

Sdx80M Firmware

Sm7675 Firmware

Sm8635 Firmware

Sm8650Q Firmware

Sm8750 Firmware

Snapdragon 429 Mobile Firmware

Snapdragon 8 Gen 3 Mobile Firmware

Snapdragon Auto 5G Modem-Rf Gen 2 Firmware

Snapdragon Wear 4100+ Firmware

Snapdragon X72 5G Modem-Rf System Firmware

Snapdragon X75 5G Modem-Rf System Firmware

Wcd9340 Firmware

Wcd9370 Firmware

Wcd9375 Firmware

Wcd9390 Firmware

Wcd9395 Firmware

Wcn3610 Firmware

Wcn3620 Firmware

Wcn3660B Firmware

Wcn3680B Firmware

Wcn3980 Firmware

Wcn6755 Firmware

Wsa8830 Firmware

Wsa8832 Firmware

Wsa8835 Firmware

Wsa8840 Firmware

Wsa8845 Firmware

CVE-2024-49847

Weakness Enumeration

Related Identifiers

Affected Products

References · 5