Memory Corruption Vulnerability in Qualcomm's TME Processes
CVE-2024-45557
7.8HIGH
Summary
A memory corruption vulnerability exists in Qualcomm's TME processes, where improper validation of addresses from TrustZone and MPSS requests may lead to system instability or unauthorized access. This flaw highlights the importance of rigorous validation mechanisms in embedded systems to help prevent potential exploitation.
Affected Version(s)
Snapdragon Snapdragon Auto AR8035
Snapdragon Snapdragon Auto FastConnect 6700
Snapdragon Snapdragon Auto FastConnect 6900
References
CVSS V3.1
Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved