DOS Attack Detected While Processing SCAN RNR IE

CVE-2024-33015
7.5HIGH

Key Information

Vendor
Qualcomm
Status
Snapdragon
Vendor
CVE Published:
5 August 2024

Summary

Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.

Affected Version(s)

Snapdragon = AR8035

Snapdragon = CSR8811

Snapdragon = FastConnect 6200

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre Database
.