Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.
History

Wed, 11 Dec 2024 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm qam8255p
Qualcomm qam8650p
Qualcomm qam8775p
Qualcomm qamsrv1h
Qualcomm qamsrv1m
Qualcomm sa7255p
Qualcomm sa7775p
Qualcomm sa8255p
Qualcomm sa8620p
Qualcomm sa8650p
Qualcomm sa8770p
Qualcomm sa8775p
Qualcomm sa9000p
Qualcomm snapdragon W5\+ Gen 1 Wearable Platform
Qualcomm snapdragon W5\+ Gen 1 Wearable Platform Firmware
Qualcomm srv1h
Qualcomm srv1m
Qualcomm sw5100
Qualcomm sw5100p
Qualcomm wcn3980
Qualcomm wcn3988
Qualcomm wsa8830
Qualcomm wsa8835
CPEs cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_w5\+_gen_1_wearable_platform:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_w5\+_gen_1_wearable_platform_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm qam8255p
Qualcomm qam8650p
Qualcomm qam8775p
Qualcomm qamsrv1h
Qualcomm qamsrv1m
Qualcomm sa7255p
Qualcomm sa7775p
Qualcomm sa8255p
Qualcomm sa8620p
Qualcomm sa8650p
Qualcomm sa8770p
Qualcomm sa8775p
Qualcomm sa9000p
Qualcomm snapdragon W5\+ Gen 1 Wearable Platform
Qualcomm snapdragon W5\+ Gen 1 Wearable Platform Firmware
Qualcomm srv1h
Qualcomm srv1m
Qualcomm sw5100
Qualcomm sw5100p
Qualcomm wcn3980
Qualcomm wcn3988
Qualcomm wsa8830
Qualcomm wsa8835

Mon, 02 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Qualcomm
Qualcomm qam8255p Firmware
Qualcomm qam8650p Firmware
Qualcomm qam8775p Firmware
Qualcomm qamsrv1h Firmware
Qualcomm qamsrv1m Firmware
Qualcomm sa7255p Firmware
Qualcomm sa7775p Firmware
Qualcomm sa8255p Firmware
Qualcomm sa8620p Firmware
Qualcomm sa8650p Firmware
Qualcomm sa8770p Firmware
Qualcomm sa8775p Firmware
Qualcomm sa9000p Firmware
Qualcomm srv1h Firmware
Qualcomm srv1m Firmware
Qualcomm sw5100 Firmware
Qualcomm sw5100p Firmware
Qualcomm wcn3980 Firmware
Qualcomm wcn3988 Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8835 Firmware
CPEs cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
Vendors & Products Qualcomm
Qualcomm qam8255p Firmware
Qualcomm qam8650p Firmware
Qualcomm qam8775p Firmware
Qualcomm qamsrv1h Firmware
Qualcomm qamsrv1m Firmware
Qualcomm sa7255p Firmware
Qualcomm sa7775p Firmware
Qualcomm sa8255p Firmware
Qualcomm sa8620p Firmware
Qualcomm sa8650p Firmware
Qualcomm sa8770p Firmware
Qualcomm sa8775p Firmware
Qualcomm sa9000p Firmware
Qualcomm srv1h Firmware
Qualcomm srv1m Firmware
Qualcomm sw5100 Firmware
Qualcomm sw5100p Firmware
Qualcomm wcn3980 Firmware
Qualcomm wcn3988 Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8835 Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 02 Dec 2024 10:30:00 +0000

Type Values Removed Values Added
Description Memory corruption when PAL client calls PAL service APIs by passing a random value as handle and the handle is not validated by the service.
Title Untrusted Pointer Dereference in Audio
Weaknesses CWE-822
References
Metrics cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2024-12-02T10:18:41.589Z

Updated: 2024-12-03T04:55:44.526Z

Reserved: 2024-04-23T04:42:06.931Z

Link: CVE-2024-33039

cve-icon Vulnrichment

Updated: 2024-12-02T15:42:18.935Z

cve-icon NVD

Status : Analyzed

Published: 2024-12-02T11:15:07.920

Modified: 2024-12-11T16:15:37.000

Link: CVE-2024-33039

cve-icon Redhat

No data.