CVE-2024-45557

HIGH

7.8

Description

Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation.

Details CVE

Score CVSS v3.17.8

SeveriteHIGH

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisLOW

Interaction utilisateurNONE

Publie4/7/2025

Derniere modification8/19/2025

Sourcenvd

Observations honeypot0

Produits affectes

qualcomm:ar8035qualcomm:ar8035_firmwarequalcomm:fastconnect_6700qualcomm:fastconnect_6700_firmwarequalcomm:fastconnect_6900qualcomm:fastconnect_6900_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:qca6174aqualcomm:qca6174a_firmwarequalcomm:qca6584auqualcomm:qca6584au_firmwarequalcomm:qca6698aqqualcomm:qca6698aq_firmwarequalcomm:qca8081qualcomm:qca8081_firmwarequalcomm:qca8337qualcomm:qca8337_firmwarequalcomm:qcc710qualcomm:qcc710_firmwarequalcomm:qcm4490qualcomm:qcm4490_firmwarequalcomm:qcn6224qualcomm:qcn6224_firmwarequalcomm:qcn6274qualcomm:qcn6274_firmwarequalcomm:qcs4490qualcomm:qcs4490_firmwarequalcomm:qdu1000qualcomm:qdu1000_firmwarequalcomm:qdu1010qualcomm:qdu1010_firmwarequalcomm:qdu1110qualcomm:qdu1110_firmwarequalcomm:qdu1210qualcomm:qdu1210_firmwarequalcomm:qdx1010qualcomm:qdx1010_firmwarequalcomm:qdx1011qualcomm:qdx1011_firmwarequalcomm:qep8111qualcomm:qep8111_firmwarequalcomm:qfw7114qualcomm:qfw7114_firmwarequalcomm:qfw7124qualcomm:qfw7124_firmwarequalcomm:qru1032qualcomm:qru1032_firmwarequalcomm:qru1052qualcomm:qru1052_firmwarequalcomm:qru1062qualcomm:qru1062_firmwarequalcomm:sc8380xpqualcomm:sc8380xp_firmwarequalcomm:sd_8_gen1_5gqualcomm:sd_8_gen1_5g_firmwarequalcomm:sm8635qualcomm:sm8635_firmwarequalcomm:snapdragon_4_gen_2_mobile_platformqualcomm:snapdragon_4_gen_2_mobile_platform_firmwarequalcomm:snapdragon_8\+_gen_1_mobile_platformqualcomm:snapdragon_8\+_gen_1_mobile_platform_firmwarequalcomm:snapdragon_8_gen_1_mobile_platformqualcomm:snapdragon_8_gen_1_mobile_platform_firmwarequalcomm:snapdragon_8_gen_3_mobile_platformqualcomm:snapdragon_8_gen_3_mobile_platform_firmwarequalcomm:snapdragon_ar2_gen_1_platformqualcomm:snapdragon_ar2_gen_1_platform_firmwarequalcomm:snapdragon_auto_5g_modem-rf_gen_2qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmwarequalcomm:snapdragon_x35_5g_modem-rf_systemqualcomm:snapdragon_x35_5g_modem-rf_system_firmwarequalcomm:snapdragon_x72_5g_modem-rf_systemqualcomm:snapdragon_x72_5g_modem-rf_system_firmwarequalcomm:snapdragon_x75_5g_modem-rf_systemqualcomm:snapdragon_x75_5g_modem-rf_system_firmwarequalcomm:ssg2115pqualcomm:ssg2115p_firmwarequalcomm:ssg2125pqualcomm:ssg2125p_firmwarequalcomm:sxr1230pqualcomm:sxr1230p_firmwarequalcomm:sxr2230pqualcomm:sxr2230p_firmwarequalcomm:talynplusqualcomm:talynplus_firmwarequalcomm:wcd9340qualcomm:wcd9340_firmwarequalcomm:wcd9370qualcomm:wcd9370_firmwarequalcomm:wcd9375qualcomm:wcd9375_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcd9385qualcomm:wcd9385_firmwarequalcomm:wcd9390qualcomm:wcd9390_firmwarequalcomm:wcd9395qualcomm:wcd9395_firmwarequalcomm:wcn3950qualcomm:wcn3950_firmwarequalcomm:wcn3988qualcomm:wcn3988_firmwarequalcomm:wcn6755qualcomm:wcn6755_firmwarequalcomm:wsa8810qualcomm:wsa8810_firmwarequalcomm:wsa8815qualcomm:wsa8815_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8832qualcomm:wsa8832_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmware

Faiblesses (CWE)

CWE-823

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html(product-security@qualcomm.com)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.