Memory corruption while Invoking IOCTL calls from user-space to validate FIPS encryption or decryption functionality.
References
| Link | Resource |
|---|---|
| https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
History
05 Feb 2025, 16:02
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
|
| First Time |
Qualcomm sc8380xp Firmware
Qualcomm Qualcomm qcc2076 Qualcomm wsa8845 Qualcomm wcd9380 Qualcomm wcd9385 Firmware Qualcomm wsa8840 Firmware Qualcomm fastconnect 7800 Qualcomm wcd9380 Firmware Qualcomm qcc2073 Qualcomm fastconnect 7800 Firmware Qualcomm wsa8845h Qualcomm wcd9385 Qualcomm wsa8840 Qualcomm wsa8845 Firmware Qualcomm qcc2073 Firmware Qualcomm fastconnect 6900 Firmware Qualcomm wsa8845h Firmware Qualcomm qcc2076 Firmware Qualcomm fastconnect 6900 Qualcomm sc8380xp |
|
| References | () https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html - Vendor Advisory | |
| CWE | CWE-119 | |
| CPE | cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcc2073_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qcc2076_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcc2073:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sc8380xp:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qcc2076:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:* |
03 Feb 2025, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-02-03 17:15
Updated : 2025-02-05 16:02
NVD link : CVE-2024-49840
Mitre link : CVE-2024-49840
CVE.ORG link : CVE-2024-49840
JSON object : View
Products Affected
qualcomm
- wsa8840_firmware
- sc8380xp_firmware
- wsa8840
- wsa8845
- sc8380xp
- wsa8845h_firmware
- fastconnect_7800
- qcc2073_firmware
- wcd9380
- qcc2073
- wcd9385
- wsa8845_firmware
- wcd9385_firmware
- fastconnect_7800_firmware
- qcc2076
- qcc2076_firmware
- wsa8845h
- fastconnect_6900_firmware
- fastconnect_6900
- wcd9380_firmware