ГлавнаяУязвимости → CVE-2024-38404
7.5высокая

CVE-2024-38404

Описание

Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.

Затрагиваемое ПО
Qualcomm Ar8035 firmwareQualcomm Ar8035Qualcomm Fastconnect 7800 firmwareQualcomm Fastconnect 7800Qualcomm Qca6584au firmwareQualcomm Qca6584auQualcomm Qca6698aq firmwareQualcomm Qca6698aqQualcomm Qca8081 firmwareQualcomm Qca8081Qualcomm Qca8337 firmwareQualcomm Qca8337Qualcomm Qcc710 firmwareQualcomm Qcc710Qualcomm Qcn6224 firmwareQualcomm Qcn6224Qualcomm Qcn6274 firmwareQualcomm Qcn6274Qualcomm Qfw7114 firmwareQualcomm Qfw7114Qualcomm Qfw7124 firmwareQualcomm Qfw7124Qualcomm Sdm429w firmwareQualcomm Sdm429wQualcomm Sdx80m firmware
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html