fkie_nvd - fkie_cve-2024-23378

fkie_cve-2024-23378

Vulnerability from fkie_nvd

Published

2024-10-07 13:15

Modified

2024-10-16 20:00

Severity ?

6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Summary

Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.

References

▼	URL	Tags
	product-security@qualcomm.com	https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html	Vendor Advisory

Impacted products

Vendor	Product	Version
qualcomm	srv1m_firmware	-
qualcomm	srv1m	-
qualcomm	srv1h_firmware	-
qualcomm	srv1h	-
qualcomm	snapdragon_auto_5g_modem-rf_gen_2_firmware	-
qualcomm	snapdragon_auto_5g_modem-rf_gen_2	-
qualcomm	sa9000p_firmware	-
qualcomm	sa9000p	-
qualcomm	sa8775p_firmware	-
qualcomm	sa8775p	-
qualcomm	sa8770p_firmware	-
qualcomm	sa8770p	-
qualcomm	sa8650p_firmware	-
qualcomm	sa8650p	-
qualcomm	sa8620p_firmware	-
qualcomm	sa8620p	-
qualcomm	sa8255p_firmware	-
qualcomm	sa8255p	-
qualcomm	sa7775p_firmware	-
qualcomm	sa7775p	-
qualcomm	sa7255p_firmware	-
qualcomm	sa7255p	-
qualcomm	qca6698aq_firmware	-
qualcomm	qca6698aq	-
qualcomm	qca6584au_firmware	-
qualcomm	qca6584au	-
qualcomm	qamsrv1m_firmware	-
qualcomm	qamsrv1m	-
qualcomm	qamsrv1h_firmware	-
qualcomm	qamsrv1h	-
qualcomm	qam8775p_firmware	-
qualcomm	qam8775p	-
qualcomm	qam8650p_firmware	-
qualcomm	qam8650p	-
qualcomm	qam8255p_firmware	-
qualcomm	qam8255p	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4B29E7F-8BFE-466A-B357-63F8A2160C4E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D55CC7D-2E65-4CA9-9892-B6FBCC087E6F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CD199F5-DA68-4BEB-AA99-11572DA26B4F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8ACA2D4D-FC77-4C1A-8278-1C27B3EA3303",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE5FCA7F-1FBE-42AA-B4E6-09CEA02A33EC",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:snapdragon_auto_5g_modem-rf_gen_2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E2D789BC-43F5-40FB-A191-163C01BA5FBE",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A024AB04-B213-4018-A4C1-FA467C7BA775",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2A8AB7C-5D34-4794-8C06-2193075B323F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C79595B-1259-4431-96F9-C5A24E624305",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F2F3431-9CD7-4D4F-833D-DD4D3ACF94C7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "781CCC31-C08F-499B-BE73-6C7DB70437AF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "75AFAA21-0589-4C6A-9418-34EE8A61BBAD",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0E807AA-5646-48AD-9A5C-B0B13E222AA9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "45FBB72B-B850-4E3F-ACBB-9392157FF131",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6ACE6D64-A498-482F-8270-718F4884CFFD",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6E016D6-1B83-4261-A27E-1F9873F81E14",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC6E268D-C4AF-4950-9223-39EA36D538A8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "073C1A81-D02B-4F2F-9378-CD1B2DCE0E5B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C32CA38-5D48-4108-9858-FD66E20CAF2F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1997F8B-17B8-4DE3-BCF7-726928720592",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B651F0A-34DA-400F-A376-B499BFDF8E86",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4CFF093D-98C8-470F-8330-E5126E06343A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FA1F8F4-EAF2-4704-A8A6-19AD3CA1B577",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3F7853D-09EE-476F-B48D-BB30AEB4A67D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C3DDA896-576C-44B8-85B6-F71F473F776B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE03AB2A-3ED9-4489-8E5B-4FCF8BAA8559",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9E646738-6A87-4470-9640-6A5A1DF3AF78",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8673334-5E11-4E95-B33D-3029499F71DF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC0B32F6-5EF0-4591-99D7-D0E9B09DEC5A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "49B2DF91-BE6B-4E9E-B63C-98DADD29AD6B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "58170126-928F-4AE5-B5AF-5ED4710F9BA2",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "295E75BD-2A6C-4A76-A376-A9977DDB17FF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BD37AA1A-B911-45BF-9BCC-C772FA83E657",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3723C7B1-A7E2-401F-8D6D-189350F6BCA5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B12B89EF-7B12-481E-BCBC-F12B9D16321A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record."
    },
    {
      "lang": "es",
      "value": "Corrupci\u00f3n de memoria al invocar llamadas IOCTL para el m\u00f3dulo MSM desde el espacio del usuario durante la reproducci\u00f3n y grabaci\u00f3n de audio."
    }
  ],
  "id": "CVE-2024-23378",
  "lastModified": "2024-10-16T20:00:29.503",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "product-security@qualcomm.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-10-07T13:15:11.800",
  "references": [
    {
      "source": "product-security@qualcomm.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html"
    }
  ],
  "sourceIdentifier": "product-security@qualcomm.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-120"
        }
      ],
      "source": "product-security@qualcomm.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-120"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

cve-2024-23378

Vulnerability from cvelistv5

Published

2024-10-07 12:58