7.8
CVE-2024-21482
- EPSS 0.01%
- Published 01.07.2024 15:15:15
- Last modified 21.11.2024 08:54:31
- Source product-security@qualcomm.com
- Teams watchlist Login
- Open Login
Memory corruption during the secure boot process, when the `bootm` command is used, it bypasses the authentication of the kernel/rootfs image.
Data is provided by the National Vulnerability Database (NVD)
Qualcomm ≫ Csr8811 Firmware Version-
Qualcomm ≫ Immersive Home 214 Platform Firmware Version-
Qualcomm ≫ Immersive Home 216 Platform Firmware Version-
Qualcomm ≫ Immersive Home 316 Platform Firmware Version-
Qualcomm ≫ Immersive Home 318 Platform Firmware Version-
Qualcomm ≫ Immersive Home 3210 Platform Firmware Version-
Qualcomm ≫ Immersive Home 326 Platform Firmware Version-
Qualcomm ≫ Ipq5010 Firmware Version-
Qualcomm ≫ Ipq5028 Firmware Version-
Qualcomm ≫ Ipq5302 Firmware Version-
Qualcomm ≫ Ipq5312 Firmware Version-
Qualcomm ≫ Ipq5332 Firmware Version-
Qualcomm ≫ Ipq6000 Firmware Version-
Qualcomm ≫ Ipq6010 Firmware Version-
Qualcomm ≫ Ipq6018 Firmware Version-
Qualcomm ≫ Ipq6028 Firmware Version-
Qualcomm ≫ Ipq8070a Firmware Version-
Qualcomm ≫ Ipq8071a Firmware Version-
Qualcomm ≫ Ipq8072a Firmware Version-
Qualcomm ≫ Ipq8074a Firmware Version-
Qualcomm ≫ Ipq8076 Firmware Version-
Qualcomm ≫ Ipq8076a Firmware Version-
Qualcomm ≫ Ipq8078 Firmware Version-
Qualcomm ≫ Ipq8078a Firmware Version-
Qualcomm ≫ Ipq8173 Firmware Version-
Qualcomm ≫ Ipq8174 Firmware Version-
Qualcomm ≫ Ipq9008 Firmware Version-
Qualcomm ≫ Ipq9554 Firmware Version-
Qualcomm ≫ Ipq9570 Firmware Version-
Qualcomm ≫ Ipq9574 Firmware Version-
Qualcomm ≫ Qca4024 Firmware Version-
Qualcomm ≫ Qca8075 Firmware Version-
Qualcomm ≫ Qca8081 Firmware Version-
Qualcomm ≫ Qca8082 Firmware Version-
Qualcomm ≫ Qca8084 Firmware Version-
Qualcomm ≫ Qca8085 Firmware Version-
Qualcomm ≫ Qca8386 Firmware Version-
Qualcomm ≫ Qca9888 Firmware Version-
Qualcomm ≫ Qca9889 Firmware Version-
Qualcomm ≫ Qcf8000 Firmware Version-
Qualcomm ≫ Qcf8001 Firmware Version-
Qualcomm ≫ Qcn5022 Firmware Version-
Qualcomm ≫ Qcn5024 Firmware Version-
Qualcomm ≫ Qcn5052 Firmware Version-
Qualcomm ≫ Qcn5122 Firmware Version-
Qualcomm ≫ Qcn5124 Firmware Version-
Qualcomm ≫ Qcn5152 Firmware Version-
Qualcomm ≫ Qcn5154 Firmware Version-
Qualcomm ≫ Qcn5164 Firmware Version-
Qualcomm ≫ Qcn6023 Firmware Version-
Qualcomm ≫ Qcn6024 Firmware Version-
Qualcomm ≫ Qcn6112 Firmware Version-
Qualcomm ≫ Qcn6122 Firmware Version-
Qualcomm ≫ Qcn6132 Firmware Version-
Qualcomm ≫ Qcn6402 Firmware Version-
Qualcomm ≫ Qcn6412 Firmware Version-
Qualcomm ≫ Qcn6422 Firmware Version-
Qualcomm ≫ Qcn6432 Firmware Version-
Qualcomm ≫ Qcn9000 Firmware Version-
Qualcomm ≫ Qcn9022 Firmware Version-
Qualcomm ≫ Qcn9024 Firmware Version-
Qualcomm ≫ Qcn9070 Firmware Version-
Qualcomm ≫ Qcn9072 Firmware Version-
Qualcomm ≫ Qcn9074 Firmware Version-
Qualcomm ≫ Qcn9100 Firmware Version-
Qualcomm ≫ Qcn9274 Firmware Version-
Qualcomm ≫ Sdx55 Firmware Version-
Qualcomm ≫ Sdx65m Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.014 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| product-security@qualcomm.com | 6.8 | 0.9 | 5.9 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.