First published: Mon Jan 06 2025(Updated: )
Memory corruption while processing IOCTL call invoked from user-space to verify non extension FIPS encryption and decryption functionality.
Credit: product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Qualcomm Fastconnect 6900 Firmware | ||
Qualcomm Fastconnect 6900 | ||
All of | ||
Qualcomm Fastconnect 7800 Firmware | ||
Qualcomm Fastconnect 7800 | ||
All of | ||
Qualcomm Qcc2073 Firmware | ||
Qualcomm Qcc2073 | ||
All of | ||
Qualcomm Qcc2076 Firmware | ||
Qualcomm Qcc2076 | ||
All of | ||
Qualcomm Sc8380xp Firmware | ||
Qualcomm Sc8380xp | ||
All of | ||
Qualcomm Wcd9380 Firmware | ||
Qualcomm Wcd9380 | ||
All of | ||
Qualcomm Wcd9385 Firmware | ||
Qualcomm Wcd9385 | ||
All of | ||
Qualcomm Wsa8840 Firmware | ||
Qualcomm Wsa8840 | ||
All of | ||
Qualcomm Wsa8845 Firmware | ||
Qualcomm Wsa8845 | ||
All of | ||
Qualcomm Wsa8845h Firmware | ||
Qualcomm Wsa8845h |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2024-45547 is categorized based on its potential impact on memory corruption in affected Qualcomm firmware.
To fix CVE-2024-45547, upgrade to the latest firmware version provided by Qualcomm that addresses this vulnerability.
CVE-2024-45547 affects several Qualcomm firmware versions, specifically for Fastconnect 6900, 7800, Qcc2073, Qcc2076, Sc8380xp, Wcd9380, Wcd9385, Wsa8840, Wsa8845, and Wsa8845h.
CVE-2024-45547 is a memory corruption vulnerability triggered by an IOCTL call from user-space.
CVE-2024-45547 requires user-space interaction, which may limit its remote exploitability.