Memory Corruption Vulnerability in Qualcomm Products
CVE-2024-45565

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 May 2025

Summary

A vulnerability has been identified in Qualcomm products wherein a memory corruption issue arises when a blob structure is altered by user-space after it has undergone kernel verification. This flaw could allow attackers to exploit the system, potentially leading to unauthorized access or execution of malicious code, thereby compromising the integrity and security of the affected devices.

Affected Version(s)

Snapdragon Snapdragon Wearables SDM429W

Snapdragon Snapdragon Wearables Snapdragon 429 Mobile Platform

Snapdragon Snapdragon Wearables WCN3620

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 6, 2025
Vulnerability Reserved
Sep 2, 2024