Lucene search
QualcommVULNRICHMENT:CVE-2024-21476HistoryMay 06, 2024 - 2:32 p.m.
CVE-2024-21476 Improper Input Validation in Secure Processor
2024-05-0614:32:17
CWE-20
qualcomm
github.com
2
cve-2024-21476
input validation
secure processor
memory corruption
channel id
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.2
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
None
Automatable
No
Technical Impact
Total
Memory corruption when the channel ID passed by user is not validated and further used.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Snapdragon Compute",
"Snapdragon Connectivity",
"Snapdragon Consumer Electronics Connectivity",
"Snapdragon Mobile"
],
"product": "Snapdragon",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "AQT1000"
},
{
"status": "affected",
"version": "AR8035"
},
{
"status": "affected",
"version": "FastConnect 6200"
},
{
"status": "affected",
"version": "FastConnect 6800"
},
{
"status": "affected",
"version": "FastConnect 6900"
},
{
"status": "affected",
"version": "FastConnect 7800"
},
{
"status": "affected",
"version": "QCA1062"
},
{
"status": "affected",
"version": "QCA1064"
},
{
"status": "affected",
"version": "QCA6391"
},
{
"status": "affected",
"version": "QCA6420"
},
{
"status": "affected",
"version": "QCA6421"
},
{
"status": "affected",
"version": "QCA6426"
},
{
"status": "affected",
"version": "QCA6430"
},
{
"status": "affected",
"version": "QCA6431"
},
{
"status": "affected",
"version": "QCA6436"
},
{
"status": "affected",
"version": "QCA8337"
},
{
"status": "affected",
"version": "QSM8250"
},
{
"status": "affected",
"version": "SC8180X+SDX55"
},
{
"status": "affected",
"version": "SC8380XP"
},
{
"status": "affected",
"version": "SD865 5G"
},
{
"status": "affected",
"version": "SDX55"
},
{
"status": "affected",
"version": "Snapdragon 865 5G Mobile Platform"
},
{
"status": "affected",
"version": "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)"
},
{
"status": "affected",
"version": "Snapdragon 870 5G Mobile Platform (SM8250-AC)"
},
{
"status": "affected",
"version": "Snapdragon 888 5G Mobile Platform"
},
{
"status": "affected",
"version": "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)"
},
{
"status": "affected",
"version": "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\""
},
{
"status": "affected",
"version": "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\""
},
{
"status": "affected",
"version": "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)"
},
{
"status": "affected",
"version": "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\""
},
{
"status": "affected",
"version": "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\""
},
{
"status": "affected",
"version": "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)"
},
{
"status": "affected",
"version": "Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)"
},
{
"status": "affected",
"version": "Snapdragon X55 5G Modem-RF System"
},
{
"status": "affected",
"version": "Snapdragon XR2 5G Platform"
},
{
"status": "affected",
"version": "Snapdragon XR2+ Gen 1 Platform"
},
{
"status": "affected",
"version": "SXR2130"
},
{
"status": "affected",
"version": "WCD9340"
},
{
"status": "affected",
"version": "WCD9341"
},
{
"status": "affected",
"version": "WCD9380"
},
{
"status": "affected",
"version": "WCD9385"
},
{
"status": "affected",
"version": "WSA8810"
},
{
"status": "affected",
"version": "WSA8815"
},
{
"status": "affected",
"version": "WSA8830"
},
{
"status": "affected",
"version": "WSA8835"
},
{
"status": "affected",
"version": "WSA8840"
},
{
"status": "affected",
"version": "WSA8845"
},
{
"status": "affected",
"version": "WSA8845H"
}
]
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "aqt1000_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "ar8035_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "fastconnect_6200_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "fastconnect_6800_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "fastconnect_6900_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "fastconnect_7800_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca1062_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca1062_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca1064_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca1064_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6391_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6420_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6421_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6421_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6426_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6430_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6431_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6431_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca6436_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qca8337_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:qsm8250_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "qsm8250_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "sc8180x_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "sdx55_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "sc8380xp_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "sd865_5g_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:snapdragon_865_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "snapdragon_865_5g_mobile_platform_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:snapdragon_870_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "snapdragon_870_5g_mobile_platform_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:snapdragon_888_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "snapdragon_888_5g_mobile_platform_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:snapdragon_8cx_compute_platform_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "snapdragon_8cx_compute_platform_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:snapdragon_x55_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "snapdragon_x55_5g_modem-rf_system_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:snapdragon_xr2_5g_platform_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "snapdragon_xr2_5g_platform_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "sxr2130_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wcd9340_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wcd9341_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wcd9380_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wcd9385_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8810_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8815_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8830_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8835_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8840_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8845_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*"
],
"vendor": "qualcomm",
"product": "wsa8845h_firmware",
"versions": [
{
"status": "affected",
"version": "-"
}
],
"defaultStatus": "unknown"
}
]Related
cvelist
cvelist
CVE-2024-21476 Improper Input Validation in Secure Processor
2024-05-06 14:32:17
cve
cve
CVE-2024-21476
2024-05-06 15:15:22
nvd
nvd
CVE-2024-21476
2024-05-06 15:15:22
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.2
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
None
Automatable
No
Technical Impact
Total
Related for VULNRICHMENT:CVE-2024-21476