Description
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.
Reserved 2024-06-16 | Published 2025-02-03 | Updated 2025-02-03 | Assigner
qualcommHIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Problem types
CWE-126 Buffer Over-read
Product status
Default status
unaffected
AR8035
affected
FastConnect 7800
affected
QCA6584AU
affected
QCA6698AQ
affected
QCA8081
affected
QCA8337
affected
QCC710
affected
QCN6224
affected
QCN6274
affected
QFW7114
affected
QFW7124
affected
SDM429W
affected
SDX80M
affected
SM7675
affected
SM7675P
affected
SM8635
affected
SM8635P
affected
Snapdragon 429 Mobile Platform
affected
Snapdragon 8 Gen 3 Mobile Platform
affected
Snapdragon Auto 5G Modem-RF Gen 2
affected
Snapdragon Wear 4100+ Platform
affected
Snapdragon X72 5G Modem-RF System
affected
Snapdragon X75 5G Modem-RF System
affected
WCD9340
affected
WCD9370
affected
WCD9375
affected
WCD9390
affected
WCD9395
affected
WCN3610
affected
WCN3620
affected
WCN3660B
affected
WCN3680B
affected
WCN3980
affected
WCN6755
affected
WSA8830
affected
WSA8832
affected
WSA8835
affected
WSA8840
affected
WSA8845
affected
WSA8845H
affected
References
docs.qualcomm.com/...itybulletin/february-2025-bulletin.html
cve.org (CVE-2024-38404)
nvd.nist.gov (CVE-2024-38404)
Download JSON
Subscribe to our newsletter to learn more about our work.