PT-2025-2868 · Qualcomm · Qualcomm

Published

2025-02-03

Updated

2025-03-12

CVE-2024-49838

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions Qualcomm (affected versions not specified)

Description The issue concerns information disclosure when parsing the OCI IE with an invalid length. This could potentially lead to sensitive data exposure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Over-read

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-126CWE-125

Related Identifiers

CVE-2024-49838

Affected Products

Qualcomm

PT-2025-2868 · Qualcomm · Qualcomm

CVE-2024-49838

Weakness Enumeration

Related Identifiers

Affected Products

References · 6