ГлавнаяУязвимости → CVE-2024-21474
8.4высокая

CVE-2024-21474

Описание

Memory corruption when size of buffer from previous call is used without validation or re-initialization.

Затрагиваемое ПО
Qualcomm Ar8035 firmwareQualcomm Ar8035Qualcomm Fastconnect 6900 firmwareQualcomm Fastconnect 6900Qualcomm Fastconnect 7800 firmwareQualcomm Fastconnect 7800Qualcomm Qam8295p firmwareQualcomm Qam8295pQualcomm Qca6574au firmwareQualcomm Qca6574auQualcomm Qca6595 firmwareQualcomm Qca6595Qualcomm Qca6696 firmwareQualcomm Qca6696Qualcomm Qca6698aq firmwareQualcomm Qca6698aqQualcomm Qca8081 firmwareQualcomm Qca8081Qualcomm Qca8337 firmwareQualcomm Qca8337Qualcomm Sa8295p firmwareQualcomm Sa8295pQualcomm Sa8530p firmwareQualcomm Sa8530pQualcomm Sa8540p firmware
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.htmlhttps://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html