Skip to main content

Qcs8550 Firmware CVE-2024-33061

MEDIUM
Buffer Over-read (CWE-126)
2025-01-06 product-security@qualcomm.com
Buffer Overflow Information Disclosure Qcs8550 Firmware Sw5100 Firmware Sw5100p Firmware Wcn3660b Firmware Wcn3680b Firmware Wcn3980 Firmware Wcn3988 Firmware Wsa8830 Firmware Wsa8835 Firmware
6.8
CVSS 3.1
Share

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
Low

Lifecycle Timeline

3
Analysis Generated
Mar 28, 2026 - 18:02 vuln.today
Patch released
Mar 28, 2026 - 18:02 nvd
Patch available
CVE Published
Jan 06, 2025 - 11:15 nvd
MEDIUM 6.8

DescriptionNVD

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

AnalysisAI

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity.

Technical ContextAI

This vulnerability is classified under CWE-126. Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process. Affected products include: Qualcomm Qcs8550 Firmware, Qualcomm Sw5100 Firmware, Qualcomm Sw5100P Firmware, Qualcomm Wcn3660B Firmware, Qualcomm Wcn3680B Firmware.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2024-33061 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy