ГлавнаяУязвимости → CVE-2024-45555
8.4высокая

CVE-2024-45555

Описание

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.

Затрагиваемое ПО
Qualcomm Msm8996au firmwareQualcomm Msm8996auQualcomm Qam8255p firmwareQualcomm Qam8255pQualcomm Qam8295p firmwareQualcomm Qam8295pQualcomm Qam8620p firmwareQualcomm Qam8620pQualcomm Qam8650p firmwareQualcomm Qam8650pQualcomm Qam8775p firmwareQualcomm Qam8775pQualcomm Qamsrv1h firmwareQualcomm Qamsrv1hQualcomm Qamsrv1m firmwareQualcomm Qamsrv1mQualcomm Qca6564a firmwareQualcomm Qca6564aQualcomm Qca6564au firmwareQualcomm Qca6564auQualcomm Qca6574a firmwareQualcomm Qca6574aQualcomm Qca6574au firmwareQualcomm Qca6574auQualcomm Qca6584au firmware
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html