What is the severity of CVE-2024-33054?

CVE-2024-33054 has been assigned a severity level that indicates potential exploitation could lead to significant system disruption.

How do I fix CVE-2024-33054?

To fix CVE-2024-33054, users should apply the latest security updates from Qualcomm and Google.

What software versions are affected by CVE-2024-33054?

CVE-2024-33054 affects multiple Qualcomm fastconnect firmware versions and Google Android software running on affected devices.

Are there any workarounds for CVE-2024-33054?

Currently, there are no known workarounds for CVE-2024-33054 other than applying the provided security updates.

Vulnerability/
CVE-2024-33054

high

7.8

CWE

120 787

2/9/2024

5/9/2024

CVE-2024-33054: Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Computer Vision

First published: Mon Sep 02 2024(Updated: )

Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
All of
qualcomm fastconnect 6700 Firmware
qualcomm fastconnect 6700
All of
qualcomm fastconnect 6900 Firmware
qualcomm fastconnect 6900
All of
qualcomm fastconnect 7800 firmware
qualcomm fastconnect 7800
All of
qualcomm qcm5430 firmware
qualcomm qcm5430
All of
Qualcomm qcm6490 firmware
Qualcomm qcm6490
All of
qualcomm qcm8550 firmware
qualcomm qcm8550
All of
qualcomm qcs5430 firmware
qualcomm qcs5430
All of
Qualcomm qcs6490 firmware
Qualcomm qcs6490
All of
qualcomm qcs8550 firmware
qualcomm qcs8550
All of
qualcomm video collaboration vc3 firmware
qualcomm video collaboration vc3
All of
qualcomm SDM429W firmware
qualcomm SDM429W
All of
qualcomm sg8275p firmware
qualcomm sg8275p
All of
qualcomm sm8550p firmware
qualcomm sm8550p
All of
qualcomm sm8635 firmware
qualcomm sm8635
All of
Qualcomm Snapdragon 429 Mobile Firmware
Qualcomm Snapdragon 429 Mobile
All of
Qualcomm Snapdragon 8 Gen 2 Firmware
Qualcomm Snapdragon 8 Gen 2
All of
Qualcomm Snapdragon 8 Gen 3 Firmware
Qualcomm Snapdragon 8 Gen 3
All of
qualcomm snapdragon 8\+ gen 2 mobile firmware
qualcomm snapdragon 8\+ gen 2 mobile
All of
Qualcomm wcd9370 firmware
Qualcomm wcd9370
All of
Qualcomm wcd9375 firmware
Qualcomm wcd9375
All of
qualcomm wcd9380 firmware
qualcomm wcd9380
All of
qualcomm wcd9385 firmware
qualcomm wcd9385
All of
qualcomm wcd9390 firmware
qualcomm wcd9390
All of
qualcomm wcd9395 firmware
qualcomm wcd9395
All of
Qualcomm wcn3620 firmware
Qualcomm wcn3620
All of
Qualcomm wcn3660b firmware
Qualcomm wcn3660b
All of
qualcomm wcn6755 firmware
qualcomm wcn6755
All of
qualcomm wsa8830 firmware
qualcomm wsa8830
All of
qualcomm wsa8832 firmware
qualcomm wsa8832
All of
qualcomm wsa8835 firmware
qualcomm wsa8835
All of
qualcomm wsa8840 firmware
qualcomm wsa8840
All of
qualcomm wsa8845 firmware
qualcomm wsa8845
All of
qualcomm wsa8845h firmware
Qualcomm Wsa8845h
Android

Remedy

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-33054?
CVE-2024-33054 has been assigned a severity level that indicates potential exploitation could lead to significant system disruption.
What is the impact of CVE-2024-33054?
The impact of CVE-2024-33054 is related to memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine.
How do I fix CVE-2024-33054?
To fix CVE-2024-33054, users should apply the latest security updates from Qualcomm and Google.
What software versions are affected by CVE-2024-33054?
CVE-2024-33054 affects multiple Qualcomm fastconnect firmware versions and Google Android software running on affected devices.
Are there any workarounds for CVE-2024-33054?
Currently, there are no known workarounds for CVE-2024-33054 other than applying the provided security updates.

agent/title
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
agent/weakness
agent/remedy
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/severity
agent/source
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/android-source
source/Android
vendor/qualcomm
canonical/qualcomm fastconnect 6700 firmware
canonical/qualcomm fastconnect 6700
canonical/qualcomm fastconnect 6900 firmware
canonical/qualcomm fastconnect 6900
canonical/qualcomm fastconnect 7800 firmware
canonical/qualcomm fastconnect 7800
canonical/qualcomm qcm5430 firmware
canonical/qualcomm qcm5430
canonical/qualcomm qcm6490 firmware
canonical/qualcomm qcm6490
canonical/qualcomm qcm8550 firmware
canonical/qualcomm qcm8550
canonical/qualcomm qcs5430 firmware
canonical/qualcomm qcs5430
canonical/qualcomm qcs6490 firmware
canonical/qualcomm qcs6490
canonical/qualcomm qcs8550 firmware
canonical/qualcomm qcs8550
canonical/qualcomm video collaboration vc3 firmware
canonical/qualcomm video collaboration vc3
canonical/qualcomm sdm429w firmware
canonical/qualcomm sdm429w
canonical/qualcomm sg8275p firmware
canonical/qualcomm sg8275p
canonical/qualcomm sm8550p firmware
canonical/qualcomm sm8550p
canonical/qualcomm sm8635 firmware
canonical/qualcomm sm8635
canonical/qualcomm snapdragon 429 mobile firmware
canonical/qualcomm snapdragon 429 mobile
canonical/qualcomm snapdragon 8 gen 2 firmware
canonical/qualcomm snapdragon 8 gen 2
canonical/qualcomm snapdragon 8 gen 3 firmware
canonical/qualcomm snapdragon 8 gen 3
canonical/qualcomm snapdragon 8\+ gen 2 mobile firmware
canonical/qualcomm snapdragon 8\+ gen 2 mobile
canonical/qualcomm wcd9370 firmware
canonical/qualcomm wcd9370
canonical/qualcomm wcd9375 firmware
canonical/qualcomm wcd9375
canonical/qualcomm wcd9380 firmware
canonical/qualcomm wcd9380
canonical/qualcomm wcd9385 firmware
canonical/qualcomm wcd9385
canonical/qualcomm wcd9390 firmware
canonical/qualcomm wcd9390
canonical/qualcomm wcd9395 firmware
canonical/qualcomm wcd9395
canonical/qualcomm wcn3620 firmware
canonical/qualcomm wcn3620
canonical/qualcomm wcn3660b firmware
canonical/qualcomm wcn3660b
canonical/qualcomm wcn6755 firmware
canonical/qualcomm wcn6755
canonical/qualcomm wsa8830 firmware
canonical/qualcomm wsa8830
canonical/qualcomm wsa8832 firmware
canonical/qualcomm wsa8832
canonical/qualcomm wsa8835 firmware
canonical/qualcomm wsa8835
canonical/qualcomm wsa8840 firmware
canonical/qualcomm wsa8840
canonical/qualcomm wsa8845 firmware
canonical/qualcomm wsa8845
canonical/qualcomm wsa8845h firmware
canonical/qualcomm wsa8845h
vendor/google
canonical/android

CVE-2024-33054: Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Computer Vision

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-33054?

What is the impact of CVE-2024-33054?

How do I fix CVE-2024-33054?

What software versions are affected by CVE-2024-33054?

Are there any workarounds for CVE-2024-33054?

Company

Resources

Contact