CVE-2024-43055

HIGH
2025-03-03 [email protected]
7.8
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 28, 2026 - 18:29 vuln.today
CVE Published
Mar 03, 2025 - 11:15 nvd
HIGH 7.8

Tags

Buffer Overflow Fastconnect 6900 Firmware Fastconnect 7800 Firmware Sdm429w Firmware Snapdragon 429 Firmware Snapdragon 8 Gen 1 Firmware Sxr2230p Firmware Sxr2250p Firmware Wcd9380 Firmware Wcd9385 Firmware Wcn3620 Firmware Wcn3660b Firmware Wsa8830 Firmware Wsa8832 Firmware Wsa8835 Firmware

Description

Memory corruption while processing camera use case IOCTL call.

Analysis

Memory corruption while processing camera use case IOCTL call. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Technical Context

This vulnerability is classified as Buffer Copy without Size Check (CWE-120), which allows attackers to overflow a buffer to corrupt adjacent memory. Memory corruption while processing camera use case IOCTL call. Affected products include: Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 7800 Firmware, Qualcomm Sdm429W Firmware, Qualcomm Snapdragon 429 Firmware, Qualcomm Snapdragon 8 Gen 1 Firmware.

Affected Products

Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 7800 Firmware, Qualcomm Sdm429W Firmware, Qualcomm Snapdragon 429 Firmware, Qualcomm Snapdragon 8 Gen 1 Firmware.

Remediation

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Always validate buffer sizes before copy operations. Use bounded functions (strncpy, snprintf). Enable compiler protections.

Priority Score

39
Low Medium High Critical
KEV: 0
EPSS: +0.0
CVSS: +39
POC: 0

Share

CVE-2024-43055 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy