Memory Corruption in Qualcomm MCDM Driver Affects Essential Applications
CVE-2024-45550

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 January 2025

Summary

A memory corruption issue has been identified in the Qualcomm MCDM driver, triggered by any application that invokes IOCTL calls. This vulnerability may lead to unexpected behavior or system instability when executing all MCDM driver IOCTL commands, potentially compromising application integrity.

Affected Version(s)

Snapdragon Snapdragon Compute FastConnect 6900

Snapdragon Snapdragon Compute FastConnect 7800

Snapdragon Snapdragon Compute SC8380XP

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 6, 2025
Vulnerability Reserved
Sep 2, 2024

Collectors

NVD DatabaseMitre Database