What is the severity of CVE-2024-33038?

CVE-2024-33038 is categorized as a high severity vulnerability due to potential memory corruption issues.

How do I fix CVE-2024-33038?

To mitigate CVE-2024-33038, update your affected Qualcomm firmware to the latest version provided by the vendor.

What causes CVE-2024-33038?

CVE-2024-33038 occurs due to memory corruption when untrusted or corrupted pointers are passed from the DSP to the EVA.

Which devices are affected by CVE-2024-33038?

CVE-2024-33038 affects various Qualcomm firmware including devices running Android with certain versions.

Is CVE-2024-33038 exploited in the wild?

As of now, there have been no public reports indicating that CVE-2024-33038 is being actively exploited in the wild.

Vulnerability/
CVE-2024-33038

high

7.8

CWE

822 787

2/9/2024

25/3/2025

CVE-2024-33038: Untrusted Pointer Dereference in Computer Vision

First published: Mon Sep 02 2024(Updated: )

Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
All of
Qualcomm FastConnect 6700 Firmware
Qualcomm Fastconnect 6700
All of
Qualcomm FastConnect 6900 Firmware
Qualcomm Fastconnect 6900 Firmware
All of
Qualcomm FastConnect 7800 Firmware
Qualcomm Fastconnect 7800 Firmware
All of
Qualcomm QCM4490
Qualcomm QCM4490 Firmware
All of
Qualcomm QCM5430
Qualcomm QCM5430 Firmware
All of
Qualcomm QCM6490
Qualcomm QCM6490 Firmware
All of
Qualcomm QCM8550 Firmware
Qualcomm QCM8550 Firmware
All of
Qualcomm QCS4490
Qualcomm QCS4490 Firmware
All of
Qualcomm QCS5430 Firmware
Qualcomm QCS5430 Firmware
All of
Qualcomm QCS6490 Firmware
Qualcomm QCS6490 Firmware
All of
Qualcomm QCS8550 Firmware
Qualcomm QCS8550 Firmware
All of
Qualcomm Video Collaboration VC3 Platform Firmware
Qualcomm Video Collaboration VC3 Platform
All of
Qualcomm Snapdragon 8 Gen 1 Firmware
Qualcomm Snapdragon 8 Gen 1
All of
Qualcomm SG8275 Firmware
Qualcomm SG8275 Firmware
All of
Qualcomm SM8550P Firmware
Qualcomm SM8550P Firmware
All of
Qualcomm SM8635 Firmware
Qualcomm SM8635 Firmware
All of
Qualcomm Snapdragon 4 Gen 2
Qualcomm Snapdragon 4 Gen 2 Firmware
All of
Qualcomm Snapdragon 8 Gen 1 Mobile Firmware
Qualcomm Snapdragon 8 Gen 1 Mobile Firmware
All of
Qualcomm Snapdragon 8+ Gen 2 Mobile Firmware
Qualcomm Snapdragon 8 Gen 2 Firmware
All of
Qualcomm Snapdragon 8 Gen 3 Mobile Firmware
Qualcomm Snapdragon 8 Gen 3 Mobile Platform
All of
Qualcomm Snapdragon 8+ Gen 1 Firmware
Qualcomm Snapdragon 8+ Gen 1 Firmware
All of
Qualcomm Snapdragon 8+ Gen 2 Firmware
Qualcomm Snapdragon 8+ Gen 2
All of
Qualcomm Snapdragon AR2 Gen 1 Platform Firmware
Qualcomm Snapdragon Ar2 Gen 1 Firmware
All of
Qualcomm SSG2115P Firmware
Qualcomm SSG2115P Firmware
All of
Qualcomm SSG2125P
Qualcomm SSG2125P
All of
Qualcomm SXR1230P
Qualcomm SXR1230P Firmware
All of
Qualcomm TalynPlus
Qualcomm TalynPlus Firmware
All of
Qualcomm WCD9370 Firmware
Qualcomm WCD9370 Firmware
All of
Qualcomm WCD9375
Qualcomm WCD9375 Firmware
All of
Qualcomm WCD9380
Qualcomm WCD9380 Firmware
All of
Qualcomm WCD9385
Qualcomm WCD9385 Firmware
All of
Qualcomm WCD9390 Firmware
Qualcomm WCD9390 Firmware
All of
Qualcomm WCD9395 Firmware
Qualcomm WCD9395 Firmware
All of
Qualcomm WCN3950 Firmware
Qualcomm WCN3950 Firmware
All of
Qualcomm WCN3988 Firmware
Qualcomm WCN3988 Firmware
All of
Qualcomm WCN6740 Firmware
Qualcomm WCN6740 Firmware
All of
Qualcomm WCN6755 Firmware
Qualcomm WCN6755 Firmware
All of
Qualcomm WSA8810
Qualcomm WSA8810 Firmware
All of
Qualcomm WSA8815 Firmware
Qualcomm WSA8815 Firmware
All of
Qualcomm WSA8830
Qualcomm WSA8830
All of
Qualcomm WSA8832 Firmware
Qualcomm WSA8832 Firmware
All of
Qualcomm WSA8835
Qualcomm WSA8835 Firmware
All of
Qualcomm WSA8840 Firmware
Qualcomm WSA8840 Firmware
All of
Qualcomm WSA8845H
Qualcomm WSA8845 Firmware
All of
Qualcomm WSA8845 Firmware
Qualcomm WSA8845H Firmware

Remedy

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-33038?
CVE-2024-33038 is categorized as a high severity vulnerability due to potential memory corruption issues.
How do I fix CVE-2024-33038?
To mitigate CVE-2024-33038, update your affected Qualcomm firmware to the latest version provided by the vendor.
What causes CVE-2024-33038?
CVE-2024-33038 occurs due to memory corruption when untrusted or corrupted pointers are passed from the DSP to the EVA.
Which devices are affected by CVE-2024-33038?
CVE-2024-33038 affects various Qualcomm firmware including devices running Android with certain versions.
Is CVE-2024-33038 exploited in the wild?
As of now, there have been no public reports indicating that CVE-2024-33038 is being actively exploited in the wild.

agent/title
agent/type
agent/description
agent/first-publish-date
agent/author
agent/remedy
agent/weakness
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/source
agent/last-modified-date
agent/event
collector/android-source
source/Android
agent/software-canonical-lookup
collector/nvd-api
source/NVD
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
vendor/google
canonical/android
vendor/qualcomm
canonical/qualcomm fastconnect 6700 firmware
canonical/qualcomm fastconnect 6700
canonical/qualcomm fastconnect 6900 firmware
canonical/qualcomm fastconnect 7800 firmware
canonical/qualcomm qcm4490
canonical/qualcomm qcm4490 firmware
canonical/qualcomm qcm5430
canonical/qualcomm qcm5430 firmware
canonical/qualcomm qcm6490
canonical/qualcomm qcm6490 firmware
canonical/qualcomm qcm8550 firmware
canonical/qualcomm qcs4490
canonical/qualcomm qcs4490 firmware
canonical/qualcomm qcs5430 firmware
canonical/qualcomm qcs6490 firmware
canonical/qualcomm qcs8550 firmware
canonical/qualcomm video collaboration vc3 platform firmware
canonical/qualcomm video collaboration vc3 platform
canonical/qualcomm snapdragon 8 gen 1 firmware
canonical/qualcomm snapdragon 8 gen 1
canonical/qualcomm sg8275 firmware
canonical/qualcomm sm8550p firmware
canonical/qualcomm sm8635 firmware
canonical/qualcomm snapdragon 4 gen 2
canonical/qualcomm snapdragon 4 gen 2 firmware
canonical/qualcomm snapdragon 8 gen 1 mobile firmware
canonical/qualcomm snapdragon 8+ gen 2 mobile firmware
canonical/qualcomm snapdragon 8 gen 2 firmware
canonical/qualcomm snapdragon 8 gen 3 mobile firmware
canonical/qualcomm snapdragon 8 gen 3 mobile platform
canonical/qualcomm snapdragon 8+ gen 1 firmware
canonical/qualcomm snapdragon 8+ gen 2 firmware
canonical/qualcomm snapdragon 8+ gen 2
canonical/qualcomm snapdragon ar2 gen 1 platform firmware
canonical/qualcomm snapdragon ar2 gen 1 firmware
canonical/qualcomm ssg2115p firmware
canonical/qualcomm ssg2125p
canonical/qualcomm sxr1230p
canonical/qualcomm sxr1230p firmware
canonical/qualcomm talynplus
canonical/qualcomm talynplus firmware
canonical/qualcomm wcd9370 firmware
canonical/qualcomm wcd9375
canonical/qualcomm wcd9375 firmware
canonical/qualcomm wcd9380
canonical/qualcomm wcd9380 firmware
canonical/qualcomm wcd9385
canonical/qualcomm wcd9385 firmware
canonical/qualcomm wcd9390 firmware
canonical/qualcomm wcd9395 firmware
canonical/qualcomm wcn3950 firmware
canonical/qualcomm wcn3988 firmware
canonical/qualcomm wcn6740 firmware
canonical/qualcomm wcn6755 firmware
canonical/qualcomm wsa8810
canonical/qualcomm wsa8810 firmware
canonical/qualcomm wsa8815 firmware
canonical/qualcomm wsa8830
canonical/qualcomm wsa8832 firmware
canonical/qualcomm wsa8835
canonical/qualcomm wsa8835 firmware
canonical/qualcomm wsa8840 firmware
canonical/qualcomm wsa8845h
canonical/qualcomm wsa8845 firmware
canonical/qualcomm wsa8845h firmware