CVE-2024-45546

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The issue involves memory corruption during the processing of FIPS encryption or decryption IOCTL calls invoked from user-space. This can lead to unspecified consequences, but the descriptions do not provide further details on the impact or the estimated number of potentially affected devices worldwide.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Buffer Over-read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-126

Related Identifiers

CVE-2024-45546

Affected Products

Snapdragon

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Qcc2073 Firmware

Qcc2076 Firmware

Sc8380Xp Firmware

Wcd9380 Firmware

Wcd9385 Firmware

Wsa8840 Firmware

Wsa8845 Firmware

CVE-2024-45546

Weakness Enumeration

Related Identifiers

Affected Products

References · 7