Description
Information disclosure while processing IO control commands.
Reserved 2024-06-16 | Published 2025-02-03 | Updated 2025-02-03 | Assigner
qualcommMEDIUM: 6.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
Problem types
CWE-126 Buffer Over-read
Product status
Default status
unaffected
AR8035
affected
C-V2X 9150
affected
FastConnect 6900
affected
FastConnect 7800
affected
QAM8295P
affected
QCA6574AU
affected
QCA6584AU
affected
QCA6696
affected
QCA6698AQ
affected
QCA8081
affected
QCA8337
affected
QCA9367
affected
QCA9377
affected
QCC710
affected
QCN6224
affected
QCN6274
affected
QCN9074
affected
QCS410
affected
QCS610
affected
QFW7114
affected
QFW7124
affected
Qualcomm Video Collaboration VC1 Platform
affected
Qualcomm Video Collaboration VC3 Platform
affected
SA6145P
affected
SA6150P
affected
SA6155P
affected
SA8145P
affected
SA8150P
affected
SA8155P
affected
SA8195P
affected
SA8295P
affected
SA8530P
affected
SA8540P
affected
SA9000P
affected
SDM429W
affected
Snapdragon 429 Mobile Platform
affected
Snapdragon 8 Gen 1 Mobile Platform
affected
Snapdragon Auto 5G Modem-RF Gen 2
affected
Snapdragon X72 5G Modem-RF System
affected
Snapdragon X75 5G Modem-RF System
affected
SW5100
affected
SW5100P
affected
WCD9340
affected
WCD9341
affected
WCD9370
affected
WCD9380
affected
WCN3620
affected
WCN3660B
affected
WCN3680B
affected
WCN3950
affected
WCN3980
affected
WCN3988
affected
WSA8810
affected
WSA8815
affected
WSA8830
affected
WSA8835
affected
References
docs.qualcomm.com/...itybulletin/february-2025-bulletin.html
cve.org (CVE-2024-38417)
nvd.nist.gov (CVE-2024-38417)
Download JSON
Subscribe to our newsletter to learn more about our work.