Information disclosure when ASLR relocates the IMEM and Secure DDR portions as one chunk in virtual address space.
References
Link | Resource |
---|---|
https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
History
02 Jul 2024, 17:56
Type | Values Removed | Values Added |
---|---|---|
First Time |
Qualcomm
Qualcomm sm8550p Firmware Qualcomm wcd9380 Firmware Qualcomm wsa8845 Qualcomm sg8275p Qualcomm fastconnect 7800 Firmware Qualcomm wsa8845 Firmware Qualcomm wsa8840 Firmware Qualcomm sg8275p Firmware Qualcomm snapdragon 8\+ Gen 2 Mobile Platform Qualcomm qcm8550 Firmware Qualcomm wcd9395 Qualcomm wcd9390 Qualcomm snapdragon 8 Gen 2 Mobile Platform Qualcomm wsa8840 Qualcomm wcd9380 Qualcomm qcm8550 Qualcomm snapdragon 8\+ Gen 2 Mobile Platform Firmware Qualcomm sm8550p Qualcomm wsa8845h Firmware Qualcomm qcs8550 Qualcomm wcd9385 Firmware Qualcomm wcd9385 Qualcomm wcd9390 Firmware Qualcomm snapdragon 8 Gen 2 Mobile Platform Firmware Qualcomm qcs8550 Firmware Qualcomm fastconnect 7800 Qualcomm fastconnect 6900 Qualcomm wsa8845h Qualcomm fastconnect 6900 Firmware Qualcomm wcd9395 Firmware |
|
CPE | cpe:2.3:h:qualcomm:snapdragon_8\+_gen_2_mobile_platform:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:snapdragon_8\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:snapdragon_8_gen_2_mobile_platform:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sg8275p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcs8550_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sm8550p:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcm8550:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sg8275p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcs8550:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9390:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
Summary |
|
|
References | () https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html - Vendor Advisory |
01 Jul 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-07-01 15:15
Updated : 2024-07-02 17:56
NVD link : CVE-2024-21460
Mitre link : CVE-2024-21460
CVE.ORG link : CVE-2024-21460
JSON object : View
Products Affected
qualcomm
- wcd9395_firmware
- snapdragon_8_gen_2_mobile_platform
- snapdragon_8_gen_2_mobile_platform_firmware
- wsa8845h_firmware
- snapdragon_8\+_gen_2_mobile_platform
- sm8550p
- snapdragon_8\+_gen_2_mobile_platform_firmware
- wcd9395
- wcd9380_firmware
- fastconnect_7800
- wsa8840
- fastconnect_6900
- wcd9385
- qcm8550_firmware
- wsa8845h
- fastconnect_6900_firmware
- wsa8845
- wcd9390
- sg8275p
- wcd9380
- sg8275p_firmware
- qcs8550_firmware
- wsa8840_firmware
- fastconnect_7800_firmware
- sm8550p_firmware
- wcd9390_firmware
- wcd9385_firmware
- wsa8845_firmware
- qcs8550
- qcm8550
CWE
CWE-330
Use of Insufficiently Random Values