Skip to main content

Qam8255p Firmware CVE-2024-21478

MEDIUM
Incorrect Type Conversion or Cast (CWE-704)
2024-06-03 product-security@qualcomm.com
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Jun 03, 2024 - 10:15 nvd
MEDIUM 5.5

DescriptionNVD

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA.

AnalysisAI

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-704. transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA. Affected products include: Qualcomm Qam8255P Firmware, Qualcomm Qam8650P Firmware, Qualcomm Qam8775P Firmware, Qualcomm Qamsrv1H Firmware, Qualcomm Qamsrv1M Firmware.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2026-21385 HIGH POC
7.8 Mar 02

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memo

CVE-2024-21480 CRITICAL
9.8 May 06

Memory corruption while playing audio file having large-sized input buffer. Rated critical severity (CVSS 9.8), this vul

CVE-2024-21463 CRITICAL
9.8 Apr 01

Memory corruption while processing Codec2 during v13k decoder pitch synthesis. Rated critical severity (CVSS 9.8), this

CVE-2023-33045 CRITICAL
9.8 Nov 07

Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. Rated critical severity

CVE-2023-33028 CRITICAL
9.8 Oct 03

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. Rated critical severity (CVSS 9.8), this vuln

CVE-2023-33030 CRITICAL
9.3 Jan 02

Memory corruption in HLOS while running playready use-case. Rated critical severity (CVSS 9.3), this vulnerability is no

CVE-2024-38408 CRITICAL
9.1 Nov 04

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. Rated critic

CVE-2024-21456 CRITICAL
9.1 Jul 01

Information Disclosure while parsing beacon frame in STA. Rated critical severity (CVSS 9.1), this vulnerability is remo

CVE-2023-28585 HIGH
8.8 Dec 05

Memory corruption while loading an ELF segment in TEE Kernel. Rated high severity (CVSS 8.8), this vulnerability is low

CVE-2023-43514 HIGH
8.4 Jan 02

Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP. Rated high se

CVE-2023-33113 HIGH
8.4 Jan 02

Memory corruption when resource manager sends the host kernel a reply message with multiple fragments. Rated high severi

CVE-2023-33094 HIGH
8.4 Jan 02

Memory corruption while running VK synchronization with KASAN enabled. Rated high severity (CVSS 8.4), this vulnerabilit

Share

CVE-2024-21478 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy