PT-2025-2703 · Qualcomm · Snapdragon+9

Published

2025-01-06

Updated

2025-01-13

CVE-2024-45547

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The issue involves memory corruption while processing an IOCTL call invoked from user-space to verify non-extension FIPS encryption and decryption functionality. This occurs when handling IOCTL calls from user-space, specifically during the checking of non-extension FIPS functionality.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2024-45547

Affected Products

Snapdragon

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Qcc2073 Firmware

Qcc2076 Firmware

Sc8380Xp Firmware

Wcd9380 Firmware

Wcd9385 Firmware

Wsa8840 Firmware

Wsa8845 Firmware

PT-2025-2703 · Qualcomm · Snapdragon+9

CVE-2024-45547

Weakness Enumeration

Related Identifiers

Affected Products

References · 7