Cryptographic Configuration Flaw in Linux Affects Qualcomm Products
CVE-2024-45556

6.5MEDIUM

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 7 April 2025

Summary

A cryptographic issue has been identified in Qualcomm's access control configuration for Linux, potentially allowing unauthorized reading of key registers in the TCSR module. This vulnerability could lead to exposure of sensitive information if not addressed promptly, emphasizing the essential need for robust security measures in configuration settings.

Affected Version(s)

Snapdragon Snapdragon CCW FastConnect 6900

Snapdragon Snapdragon CCW FastConnect 7800

Snapdragon Snapdragon CCW Immersive Home 3210 Platform

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Sep 2, 2024