Snapdragon 888 5G Mobile Platform Sm8350 Ac Firmware
CVE-2024-23369
HIGH
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from Vendor (qualcomm) · only source for this CVE.
CVSS VectorVendor: qualcomm
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionCVE.org
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
AnalysisAI
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as Buffer Overflow (CWE-119), which allows attackers to corrupt memory to execute arbitrary code or crash the application. Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. Affected products include: Qualcomm Snapdragon 888\+ 5G Mobile Platform \(Sm8350-Ac\) Firmware, Qualcomm Snapdragon 865\+ 5G Mobile Platform \(Sm8250-Ab\) Firmware, Qualcomm Wsa8845H Firmware, Qualcomm Wsa8845 Firmware, Qualcomm Wsa8840 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use memory-safe languages or bounds-checking. Enable ASLR, DEP/NX, stack canaries. Use safe string functions.
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. Rated high severity (
Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network. Rated
Memory corruption during session sign renewal request calls in HLOS. Rated high severity (CVSS 7.8), this vulnerability
Memory corruption when keymaster operation imports a shared key. Rated high severity (CVSS 7.8), this vulnerability is l
Transient DOS may occur while parsing SSID in action frames. Rated high severity (CVSS 7.5), this vulnerability is remot
Transient DOS while parsing the EPTM test control message to get the test pattern. Rated high severity (CVSS 7.5), this
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Eleme
Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end
Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero. Rated high severity (CVSS
Transient DOS while parsing fragments of MBSSID IE from beacon frame. Rated high severity (CVSS 7.5), this vulnerability
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. Rated high severity (CVSS
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. Rated high severity (CV
Same weakness CWE-119 – Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today