CVE-2024-45582

EPSS 0.03%
Veröffentlicht 03.02.2025 17:15:19
Zuletzt bearbeitet 05.02.2025 16:01:56
Quelle product-security@qualcomm.com
Teams Watchlist Login
Unerledigt Login

Memory corruption while validating number of devices in Camera kernel .

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Fastconnect 6900 Firmware Version-

Qualcomm ≫ Fastconnect 6900 Version-

Qualcomm ≫ Fastconnect 7800 Firmware Version-

Qualcomm ≫ Fastconnect 7800 Version-

Qualcomm ≫ Qcm8550 Firmware Version-

Qualcomm ≫ Qcm8550 Version-

Qualcomm ≫ Qcs6490 Firmware Version-

Qualcomm ≫ Qcs6490 Version-

Qualcomm ≫ Video Collaboration Vc3 Platform Firmware Version-

Qualcomm ≫ Video Collaboration Vc3 Platform Version-

Qualcomm ≫ Sm6650 Firmware Version-

Qualcomm ≫ Sm6650 Version-

Qualcomm ≫ Sm7635 Firmware Version-

Qualcomm ≫ Sm7635 Version-

Qualcomm ≫ Sm7675 Firmware Version-

Qualcomm ≫ Sm7675 Version-

Qualcomm ≫ Sm7675p Firmware Version-

Qualcomm ≫ Sm7675p Version-

Qualcomm ≫ Sm8550p Firmware Version-

Qualcomm ≫ Sm8550p Version-

Qualcomm ≫ Sm8635 Firmware Version-

Qualcomm ≫ Sm8635 Version-

Qualcomm ≫ Sm8635p Firmware Version-

Qualcomm ≫ Sm8635p Version-

Qualcomm ≫ Snapdragon 8 Gen 1 Mobile Firmware Version-

Qualcomm ≫ Snapdragon 8 Gen 1 Mobile Version-

Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Firmware Version-

Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Version-

Qualcomm ≫ Snapdragon 8 Gen 3 Mobile Firmware Version-

Qualcomm ≫ Snapdragon 8 Gen 3 Mobile Version-

Qualcomm ≫ Snapdragon 8+ Gen 2 Mobile Firmware Version-

Qualcomm ≫ Snapdragon 8+ Gen 2 Mobile Version-

Qualcomm ≫ Wcd9370 Firmware Version-

Qualcomm ≫ Wcd9370 Version-

Qualcomm ≫ Wcd9375 Firmware Version-

Qualcomm ≫ Wcd9375 Version-

Qualcomm ≫ Wcd9378 Firmware Version-

Qualcomm ≫ Wcd9378 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcd9390 Firmware Version-

Qualcomm ≫ Wcd9390 Version-

Qualcomm ≫ Wcd9395 Firmware Version-

Qualcomm ≫ Wcd9395 Version-

Qualcomm ≫ Wcn6450 Firmware Version-

Qualcomm ≫ Wcn6450 Version-

Qualcomm ≫ Wcn6650 Firmware Version-

Qualcomm ≫ Wcn6650 Version-

Qualcomm ≫ Wcn6755 Firmware Version-

Qualcomm ≫ Wcn6755 Version-

Qualcomm ≫ Wcn7861 Firmware Version-

Qualcomm ≫ Wcn7861 Version-

Qualcomm ≫ Wcn7881 Firmware Version-

Qualcomm ≫ Wcn7881 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8832 Firmware Version-

Qualcomm ≫ Wsa8832 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Qualcomm ≫ Wsa8840 Firmware Version-

Qualcomm ≫ Wsa8840 Version-

Qualcomm ≫ Wsa8845 Firmware Version-

Qualcomm ≫ Wsa8845 Version-

Qualcomm ≫ Wsa8845h Firmware Version-

Qualcomm ≫ Wsa8845h Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.059

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
product-security@qualcomm.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-45582

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-45582

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-45582

EUVD