VDB

CISA-2024-23350

CISA-2024-23350 PUBLISHED CVSS 6.5 MEDIUM

Reported by qualcomm · Published August 5, 2024

Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Qualcomm, Inc.SnapdragonAR8035, FastConnect 6900, FastConnect 7800
qualcommqcn6274_firmware0, 0
qualcommqca6698aq_firmware0, 0
qualcommqca6584au_firmware0, 0
qualcommfastconnect_7800_firmware0, 0
qualcommwsa8845_firmware0, 0
qualcommqfw7114_firmware0, 0
qualcommqfw7124_firmware0, 0
qualcommqca6174a_firmware0, 0
qualcommsnapdragon_8_gen_3_mobile_platform_firmware0, 0
qualcommwcd9395_firmware0, 0
qualcommwcd9390_firmware0, 0
qualcommqcn6224_firmware0, 0
Qualcomm, Inc.Snapdragon*, *, FastConnect 6900
qualcommqep8111_firmware0, 0
qualcommsnapdragon_x75_5g_modem-rf_system_firmware0, 0
qualcommwsa8845h_firmware0, 0
qualcommar8035_firmware0, 0
qualcommsnapdragon_x72_5g_modem-rf_system_firmware0, 0
qualcommwsa8840_firmware0, 0

…and 7 more

Timeline

  • Aug 5, 2024 CVE Published
  • Aug 5, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›