Firmware Session Manager Memory Corruption Vulnerability
CVE-2024-38415

7.8HIGH

Key Information:

Vendor: Firmware Vendor
Status: Wsa8845h Firmware
Vendor: CVE Published:; 4 November 2024

🔔 Create Firmware Vendor Vulnerability Alert

What is CVE-2024-38415?

A vulnerability has been identified within Qualcomm firmware involving memory corruption during the handling of session errors. This flaw may allow an attacker to exploit affected devices by causing unintended behavior, potentially leading to unauthorized access or disruption of services. Mitigation strategies are essential to enhance firmware security and safeguard against potential breaches.

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2024