Uncontrolled Resource Consumption in Qualcomm SMMU Drivers
CVE-2024-43064

7.5HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 January 2025

What is CVE-2024-43064?

This vulnerability is associated with uncontrolled resource consumption when a driver, application, or System Memory Management Unit (SMMU) client attempts to access global registers through the SMMU. This can potentially lead to a denial of service, impacting the performance and availability of affected Qualcomm products.

Affected Version(s)

Snapdragon Snapdragon Auto QAM8255P

Snapdragon Snapdragon Auto QAM8295P

Snapdragon Snapdragon Auto QAM8620P

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 6, 2025
Vulnerability Reserved
Aug 5, 2024

CVE-2024-43064 Data

JSON