Skip to main content

Ar8035 Firmware CVE-2024-45557

HIGH
Use of Out-of-range Pointer Offset (CWE-823)
2025-04-07 product-security@qualcomm.com
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 28, 2026 - 18:35 vuln.today
CVE Published
Apr 07, 2025 - 11:15 nvd
HIGH 7.8

DescriptionCVE.org

Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation.

AnalysisAI

Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-823. Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation. Affected products include: Qualcomm Ar8035 Firmware, Qualcomm Fastconnect 6700 Firmware, Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 7800 Firmware, Qualcomm Qca6174A Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2026-21385 HIGH POC
7.8 Mar 02

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memo

CVE-2025-21450 CRITICAL
9.1 Jul 08

Cryptographic issue occurs due to use of insecure connection method while downloading.

CVE-2025-47345 HIGH
8.4 Jan 07

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

CVE-2024-49846 HIGH
8.2 May 06

Memory corruption while decoding of OTA messages from T3448 IE. Rated high severity (CVSS 8.2), this vulnerability is re

CVE-2025-21468 HIGH
7.8 May 06

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to w

CVE-2025-21453 HIGH
7.8 May 06

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential f

CVE-2024-49845 HIGH
7.8 May 06

Memory corruption during the FRS UDS generation process. Rated high severity (CVSS 7.8), this vulnerability is low attac

CVE-2024-49844 HIGH
7.8 May 06

Memory corruption while triggering commands in the PlayReady Trusted application. Rated high severity (CVSS 7.8), this v

CVE-2024-49841 HIGH
7.8 May 06

Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. Rated high se

CVE-2024-49835 HIGH
7.8 May 06

Memory corruption while reading secure file. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity

CVE-2024-49842 HIGH
7.8 May 06

Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. Rated high se

CVE-2024-53024 HIGH
7.8 Mar 03

Memory corruption in display driver while detaching a device. Rated high severity (CVSS 7.8), this vulnerability is low

Share

CVE-2024-45557 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy