Memory Corruption Vulnerability in Qualcomm Products
CVE-2024-38399

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Wsa8835 Firmware
Vendor: CVE Published:; 7 October 2024

What is CVE-2024-38399?

A memory corruption vulnerability affects Qualcomm products, where improper handling of user packets can lead to page faults. This condition can potentially allow unauthorized access or manipulation of memory, resulting in degraded system performance or unexpected behavior. It is critical for users and organizations utilizing Qualcomm technology to apply security updates and patches to mitigate the effects of this vulnerability.

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 7, 2024