Memory Corruption Vulnerability in Kernel Could Lead to Race Condition

CVE-2024-33040

6.7MEDIUM

Key Information

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 2 December 2024

Summary

Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access.

Affected Version(s)

Snapdragon = FastConnect 6800

Snapdragon = FastConnect 6900

Snapdragon = FastConnect 7800

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Dec 2, 2024
Vulnerability Reserved.
Apr 23, 2024

Collectors

NVD DatabaseMitre Database