Memory Corruption Vulnerability in Qualcomm Products
CVE-2024-45548

7.8HIGH

Key Information:

Vendor

Qualcomm
Status
Snapdragon
Vendor
CVE Published:
6 January 2025

What is CVE-2024-45548?

A memory corruption issue arises when Qualcomm products are processing FIPS encryption or decryption validation through IOCTL calls. This vulnerability can potentially be exploited to compromise system stability and integrity. Users and system administrators should remain vigilant and apply necessary security updates to affected Qualcomm chipsets to ensure robust protection against exploitation tactics.

Affected Version(s)

Snapdragon Snapdragon Compute FastConnect 6900

Snapdragon Snapdragon Compute FastConnect 7800

Snapdragon Snapdragon Compute QCC2073

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2024-45548 : Memory Corruption Vulnerability in Qualcomm Products