CVE-2024-45556

MEDIUM
2025-04-07 [email protected]
6.5
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

2
Analysis Generated
Mar 28, 2026 - 18:35 vuln.today
CVE Published
Apr 07, 2025 - 11:15 nvd
MEDIUM 6.5

Tags

Information Disclosure Fastconnect 6900 Firmware Fastconnect 7800 Firmware Immersive Home 3210 Platform Firmware Immersive Home 326 Platform Firmware Ipq5300 Firmware Ipq5302 Firmware Ipq5312 Firmware Ipq5332 Firmware Ipq9008 Firmware Ipq9048 Firmware Ipq9554 Firmware Ipq9570 Firmware Ipq9574 Firmware Qca0000 Firmware Qca8075 Firmware Qca8081 Firmware Qca8082 Firmware Qca8084 Firmware Qca8085 Firmware Qca8386 Firmware Qcf8000 Firmware Qcf8000sfp Firmware Qcf8001 Firmware Qcn5124 Firmware Qcn6224 Firmware Qcn6402 Firmware Qcn6412 Firmware Qcn6422 Firmware Qcn6432 Firmware Qcn9000 Firmware Qcn9012 Firmware Qcn9013 Firmware Qcn9024 Firmware Qcn9074 Firmware Qcn9160 Firmware Qcn9274 Firmware Qxm8083 Firmware Sd 8 Gen1 5g Firmware Sdm429w Firmware Sdx65m Firmware Snapdragon 429 Mobile Platform Firmware Snapdragon Ar1 Gen 1 Platform Firmware Snapdragon Ar1 Gen 1 Platform Luna1 Firmware Snapdragon Ar2 Gen 1 Platform Firmware Snapdragon Wear 4100 Platform Firmware Snapdragon X65 5g Modem Rf System Firmware Ssg2115p Firmware Ssg2125p Firmware Sxr1230p Firmware Sxr2230p Firmware Sxr2250p Firmware Wcd9380 Firmware Wcd9385 Firmware Wcn3620 Firmware Wcn3660b Firmware Wcn3680b Firmware Wcn3980 Firmware Wsa8830 Firmware Wsa8832 Firmware Wsa8835 Firmware

Description

Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.

Analysis

Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Technical Context

This vulnerability is classified under CWE-1262. Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR. Affected products include: Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 7800 Firmware, Qualcomm Immersive Home 3210 Platform Firmware, Qualcomm Immersive Home 326 Platform Firmware, Qualcomm Ipq5300 Firmware.

Affected Products

Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 7800 Firmware, Qualcomm Immersive Home 3210 Platform Firmware, Qualcomm Immersive Home 326 Platform Firmware, Qualcomm Ipq5300 Firmware.

Remediation

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Priority Score

33
Low Medium High Critical
KEV: 0
EPSS: +0.1
CVSS: +32
POC: 0

Share

CVE-2024-45556 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy