Information Disclosure in Qualcomm Networking Products
CVE-2024-53020

8.2HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 3 June 2025

What is CVE-2024-53020?

An information disclosure vulnerability exists in Qualcomm networking products, which could be exploited through improperly formatted RTP packets. When the system attempts to decode an RTP packet with an invalid header extension, sensitive information may be revealed, posing a security risk to affected devices and networks. It is essential to evaluate and implement the necessary remediation measures to protect against potential exploits stemming from this vulnerability.

Affected Version(s)

Snapdragon Snapdragon Auto APQ8017

Snapdragon Snapdragon Auto APQ8064AU

Snapdragon Snapdragon Auto AQT1000

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2025
Vulnerability Reserved
Nov 19, 2024