PT-2025-2640 · Qualcomm · Snapdragon+16

Published

2025-01-06

Updated

2025-01-10

CVE-2024-43063

CVSS v3.1

6.1

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions Mailbox software (affected versions not specified)

Description The issue involves information disclosure when invoking the mailbox read API. This means that sensitive information may be exposed when the API is called.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Over-read

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-126CWE-125

Related Identifiers

CVE-2024-43063

Affected Products

Snapdragon

Qam8255P Firmware

Qam8295P Firmware

Qam8650P Firmware

Qam8775P Firmware

Qamsrv1H Firmware

Qca6595Au Firmware

Qca6696 Firmware

Qca6698Aq Firmware

Sa8255P Firmware

Sa8295P Firmware

Sa8540P Firmware

Sa8650P Firmware

Sa8770P Firmware

Sa8775P Firmware

Sa9000P Firmware

Srv1H Firmware

PT-2025-2640 · Qualcomm · Snapdragon+16

CVE-2024-43063

Weakness Enumeration

Related Identifiers

Affected Products

References · 6