Memory Corruption Vulnerability in Qualcomm Products
CVE-2024-45583
6.6MEDIUM
Summary
A vulnerability exists that allows for memory corruption when multiple IOCTL calls from user space interact with Direct Memory Access (DMA) operations. This flaw can potentially lead to unauthorized memory access, posing risks for data integrity and confidentiality across affected Qualcomm chipsets.
Affected Version(s)
Snapdragon Snapdragon Mobile FastConnect 7800
Snapdragon Snapdragon Mobile Snapdragon 8 Gen 3 Mobile Platform
Snapdragon Snapdragon Mobile WCD9390
References
CVSS V3.1
Score:
6.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved