CVE-2024-45573 Use of Out-of-range Pointer Offset in Display

🗓️ 03 Feb 2025 16:51:29Reported by qualcommType

Memory corruption due to out-of-range pointer offset in display ID during test pattern generation.

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerability of embedded software developed by Qualcomm, related to the pointer shifting beyond the allocated memory space, allows a malicious actor to cause a system failure.	14 May 202500:00	–	bdu_fstec
Circl	CVE-2024-45573	3 Feb 202517:16	–	circl
CNNVD	Qualcomm Chipsets 安全漏洞	3 Feb 202500:00	–	cnnvd
CVE	CVE-2024-45573	3 Feb 202516:51	–	cve
EUVD	EUVD-2024-41758	3 Oct 202520:07	–	euvd
NVD	CVE-2024-45573	3 Feb 202517:15	–	nvd
RedhatCVE	CVE-2024-45573	7 Feb 202509:44	–	redhatcve
Vulnrichment	CVE-2024-45573 Use of Out-of-range Pointer Offset in Display	3 Feb 202516:51	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Compute",
      "Snapdragon Industrial IOT",
      "Snapdragon Wearables"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "FastConnect 6700"
      },
      {
        "status": "affected",
        "version": "FastConnect 6900"
      },
      {
        "status": "affected",
        "version": "FastConnect 7800"
      },
      {
        "status": "affected",
        "version": "QCM5430"
      },
      {
        "status": "affected",
        "version": "QCM6490"
      },
      {
        "status": "affected",
        "version": "QCS5430"
      },
      {
        "status": "affected",
        "version": "QCS6490"
      },
      {
        "status": "affected",
        "version": "Qualcomm Video Collaboration VC3 Platform"
      },
      {
        "status": "affected",
        "version": "SC8380XP"
      },
      {
        "status": "affected",
        "version": "SDM429W"
      },
      {
        "status": "affected",
        "version": "Snapdragon 429 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 7c+ Gen 3 Compute"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)"
      },
      {
        "status": "affected",
        "version": "WCD9370"
      },
      {
        "status": "affected",
        "version": "WCD9375"
      },
      {
        "status": "affected",
        "version": "WCD9380"
      },
      {
        "status": "affected",
        "version": "WCD9385"
      },
      {
        "status": "affected",
        "version": "WCN3620"
      },
      {
        "status": "affected",
        "version": "WCN3660B"
      },
      {
        "status": "affected",
        "version": "WSA8830"
      },
      {
        "status": "affected",
        "version": "WSA8835"
      },
      {
        "status": "affected",
        "version": "WSA8840"
      },
      {
        "status": "affected",
        "version": "WSA8845"
      },
      {
        "status": "affected",
        "version": "WSA8845H"
      }
    ]
  }
]

Source	Link
docs	www.docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html

03 Feb 2025 16:51Current

CVSS 3.17.8

EPSS0.00115

CWE-823