Qam8255p Firmware CVE-2024-43063
MEDIUM
Buffer Over-read (CWE-126)
2025-01-06
product-security@qualcomm.com
Buffer Overflow
Information Disclosure
Qam8255p Firmware
Qam8295p Firmware
Qam8650p Firmware
Qam8775p Firmware
Qamsrv1h Firmware
Qca6595 Firmware
Qca6595au Firmware
Qca6696 Firmware
Qca6698aq Firmware
Sa8255p Firmware
Sa8295p Firmware
Sa8540p Firmware
Sa8650p Firmware
Sa8770p Firmware
Sa8775p Firmware
Sa9000p Firmware
Srv1h Firmware
6.1
CVSS 3.1
Share
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
Low
Lifecycle Timeline
2
Analysis Generated
Mar 28, 2026 - 18:02 vuln.today
CVE Published
Jan 06, 2025 - 11:15 nvd
MEDIUM 6.1
DescriptionNVD
information disclosure while invoking the mailbox read API.
AnalysisAI
information disclosure while invoking the mailbox read API. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-126. Affected products include: Qualcomm Qam8255P Firmware, Qualcomm Qam8295P Firmware, Qualcomm Qam8650P Firmware, Qualcomm Qam8775P Firmware, Qualcomm Qamsrv1H Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
Share
External POC / Exploit Code
Leaving vuln.today
Destination URL
POC code from unknown sources may be malicious, contain backdoors, or be fake.
Always review and test exploit code in a safe, isolated environment (VM/sandbox).
Verify the source reputation and cross-reference with known databases (Exploit-DB, GitHub Security).