Information Disclosure in MQ Channels Affects Qualcomm Products
CVE-2024-45549

7.7HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 7 April 2025

Summary

A vulnerability has been identified that allows for information disclosure during the creation of MQ channels in Qualcomm products. This weakness could potentially expose sensitive data to unauthorized parties, emphasizing the need for security measures to protect against data leaks while utilizing these channels. Organizations using affected products should evaluate their security practices and apply relevant patches or mitigations.

Affected Version(s)

Snapdragon Snapdragon Auto AR8035

Snapdragon Snapdragon Auto FastConnect 6700

Snapdragon Snapdragon Auto FastConnect 6800

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Sep 2, 2024