CVE-2024-45566

EPSS 0.01%
Published 06.05.2025 08:31:59
Last modified 09.05.2025 19:17:38
Source product-security@qualcomm.com
Teams watchlist Login
Open Login

Memory corruption during concurrent buffer access due to modification of the reference count.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Qualcomm ≫ Fastconnect 6800 Firmware Version-

Qualcomm ≫ Fastconnect 6800 Version-

Qualcomm ≫ Fastconnect 6900 Firmware Version-

Qualcomm ≫ Fastconnect 6900 Version-

Qualcomm ≫ Fastconnect 7800 Firmware Version-

Qualcomm ≫ Fastconnect 7800 Version-

Qualcomm ≫ Qca6391 Firmware Version-

Qualcomm ≫ Qca6391 Version-

Qualcomm ≫ Qca6426 Firmware Version-

Qualcomm ≫ Qca6426 Version-

Qualcomm ≫ Qca6436 Firmware Version-

Qualcomm ≫ Qca6436 Version-

Qualcomm ≫ Sd865 5g Firmware Version-

Qualcomm ≫ Sd865 5g Version-

Qualcomm ≫ Sdm429w Firmware Version-

Qualcomm ≫ Sdm429w Version-

Qualcomm ≫ Snapdragon 429 Mobile Firmware Version-

Qualcomm ≫ Snapdragon 429 Mobile Version-

Qualcomm ≫ Snapdragon 8 Gen 1 Mobile Firmware Version-

Qualcomm ≫ Snapdragon 8 Gen 1 Mobile Version-

Qualcomm ≫ Snapdragon 865 5g Mobile Firmware Version-

Qualcomm ≫ Snapdragon 865 5g Mobile Version-

Qualcomm ≫ Snapdragon 870 5g Mobile Firmware Version-

Qualcomm ≫ Snapdragon 870 5g Mobile Version-

Qualcomm ≫ Snapdragon X55 5g Modem-rf System Firmware Version-

Qualcomm ≫ Snapdragon X55 5g Modem-rf System Version-

Qualcomm ≫ Snapdragon Xr2 5g Firmware Version-

Qualcomm ≫ Snapdragon Xr2 5g Version-

Qualcomm ≫ Sxr2130 Firmware Version-

Qualcomm ≫ Sxr2130 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcn3620 Firmware Version-

Qualcomm ≫ Wcn3620 Version-

Qualcomm ≫ Wcn3660b Firmware Version-

Qualcomm ≫ Wcn3660b Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.01%	0.019

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
product-security@qualcomm.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html

Patch

https://nvd.nist.gov/vuln/detail/CVE-2024-45566

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-45566

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-45566

EUVD