CVE-2024-21453

EPSS 0.12%
Published 01.04.2024 15:15:48
Last modified 11.08.2025 15:06:17
Source product-security@qualcomm.com
Teams watchlist Login
Open Login

Transient DOS while decoding message of size that exceeds the available system memory.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Qualcomm ≫ C-v2x 9150 Firmware Version-

Qualcomm ≫ C-v2x 9150 Version-

Qualcomm ≫ Qcs410 Firmware Version-

Qualcomm ≫ Qcs410 Version-

Qualcomm ≫ Qcs610 Firmware Version-

Qualcomm ≫ Qcs610 Version-

Qualcomm ≫ Video Collaboration Vc1 Platform Firmware Version-

Qualcomm ≫ Video Collaboration Vc1 Platform Version-

Qualcomm ≫ Video Collaboration Vc3 Platform Firmware Version-

Qualcomm ≫ Video Collaboration Vc3 Platform Version-

Qualcomm ≫ Snapdragon Auto 5g Modem-rf Firmware Version-

Qualcomm ≫ Snapdragon Auto 5g Modem-rf Version-

Qualcomm ≫ Snapdragon Auto 4g Modem Firmware Version-

Qualcomm ≫ Snapdragon Auto 4g Modem Version-

Qualcomm ≫ Wcd9341 Firmware Version-

Qualcomm ≫ Wcd9341 Version-

Qualcomm ≫ Wcd9370 Firmware Version-

Qualcomm ≫ Wcd9370 Version-

Qualcomm ≫ Wcn3950 Firmware Version-

Qualcomm ≫ Wcn3950 Version-

Qualcomm ≫ Wcn3980 Firmware Version-

Qualcomm ≫ Wcn3980 Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.324

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
product-security@qualcomm.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-21453

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-21453

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-21453

EUVD