CVE-2024-23378

6.7MEDIUM

Key Information

Vendor
Qualcomm
Status
Srv1m Firmware
Vendor
CVE Published:
7 October 2024

Summary

Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published.

Collectors

NVD Database
.