Information Disclosure Vulnerability in Qualcomm Video Conferencing Software
CVE-2024-45552

8.2HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 7 April 2025

Summary

An information disclosure vulnerability may arise during video calls if a device experiences a reset caused by a non-conforming RTCP packet, which does not comply with RFC standards. This issue can lead to sensitive data exposure during communications when devices mishandle such packets.

Affected Version(s)

Snapdragon Snapdragon Auto APQ8064AU

Snapdragon Snapdragon Auto FastConnect 6200

Snapdragon Snapdragon Auto FastConnect 6700

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Sep 2, 2024