We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-38404

Buffer Over-read in Multi Mode Call Processor



Description

Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.

Reserved 2024-06-16 | Published 2025-02-03 | Updated 2025-02-03 | Assigner qualcomm


HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-126 Buffer Over-read

Product status

Default status
unaffected

AR8035
affected

FastConnect 7800
affected

QCA6584AU
affected

QCA6698AQ
affected

QCA8081
affected

QCA8337
affected

QCC710
affected

QCN6224
affected

QCN6274
affected

QFW7114
affected

QFW7124
affected

SDM429W
affected

SDX80M
affected

SM7675
affected

SM7675P
affected

SM8635
affected

SM8635P
affected

Snapdragon 429 Mobile Platform
affected

Snapdragon 8 Gen 3 Mobile Platform
affected

Snapdragon Auto 5G Modem-RF Gen 2
affected

Snapdragon Wear 4100+ Platform
affected

Snapdragon X72 5G Modem-RF System
affected

Snapdragon X75 5G Modem-RF System
affected

WCD9340
affected

WCD9370
affected

WCD9375
affected

WCD9390
affected

WCD9395
affected

WCN3610
affected

WCN3620
affected

WCN3660B
affected

WCN3680B
affected

WCN3980
affected

WCN6755
affected

WSA8830
affected

WSA8832
affected

WSA8835
affected

WSA8840
affected

WSA8845
affected

WSA8845H
affected

References

docs.qualcomm.com/...itybulletin/february-2025-bulletin.html

cve.org (CVE-2024-38404)

nvd.nist.gov (CVE-2024-38404)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-38404

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.