Csra6620 Firmware CVE-2024-49834
HIGH
Improper Validation of Array Index (CWE-129)
2025-02-03
product-security@qualcomm.com
Buffer Overflow
Csra6620 Firmware
Csra6640 Firmware
Fastconnect 6200 Firmware
Fastconnect 6700 Firmware
Fastconnect 6900 Firmware
Fastconnect 7800 Firmware
Flight Rb5 5g Platform Firmware
Qam8255p Firmware
Qam8650p Firmware
Qam8775p Firmware
Qamsrv1h Firmware
Qamsrv1m Firmware
Qca6391 Firmware
Qca6595 Firmware
Qca6595au Firmware
Qca6678aq Firmware
Qca6698aq Firmware
Qca6797aq Firmware
Qcm4490 Firmware
Qcm5430 Firmware
Qcm6490 Firmware
Qcm8550 Firmware
Qcn9011 Firmware
Qcn9012 Firmware
Qcn9274 Firmware
Qcs410 Firmware
Qcs4490 Firmware
Qcs5430 Firmware
Qcs610 Firmware
Qcs615 Firmware
Qcs6490 Firmware
Qcs8300 Firmware
Qcs8550 Firmware
Qcs9100 Firmware
Qrb5165m Firmware
Qrb5165n Firmware
Robotics Rb2 Firmware
Robotics Rb5 Firmware
Sa7255p Firmware
Sa7775p Firmware
Sa8255p Firmware
Sa8620p Firmware
Sa8650p Firmware
Sa8770p Firmware
Sa8775p Firmware
Sa9000p Firmware
Sd 8 Gen1 5g Firmware
Sd888 Firmware
Sdm429w Firmware
Sg8275p Firmware
Sm4635 Firmware
Sm6370 Firmware
Sm6650 Firmware
Sm7315 Firmware
Sm7325p Firmware
Sm7635 Firmware
Sm7675 Firmware
Sm7675p Firmware
Sm8550p Firmware
Sm8635 Firmware
Sm8635p Firmware
Sm8750 Firmware
Sm8750p Firmware
Smart Audio 400 Firmware
Snapdragon 4 Gen 1 Mobile Firmware
Snapdragon 4 Gen 2 Mobile Firmware
Snapdragon 429 Mobile Firmware
Snapdragon 480 5g Mobile Firmware
Snapdragon 695 5g Mobile Firmware
Snapdragon 778g 5g Mobile Firmware
Snapdragon 780g 5g Mobile Firmware
Snapdragon 782g Mobile Firmware
Snapdragon 8 Gen 1 Mobile Firmware
Snapdragon 8 Gen 2 Mobile Firmware
Snapdragon 8 Gen 3 Mobile Firmware
Snapdragon 888 5g Mobile Firmware
Snapdragon Ar1 Gen 1 Firmware
Snapdragon Ar2 Gen 1 Firmware
Srv1h Firmware
Srv1m Firmware
Ssg2115p Firmware
Ssg2125p Firmware
Sw5100 Firmware
Sw5100p Firmware
Sxr1230p Firmware
Sxr2230p Firmware
Sxr2250p Firmware
Sxr2330p Firmware
Talynplus Firmware
Video Collaboration Vc1 Platform Firmware
Video Collaboration Vc3 Platform Firmware
Wcd9335 Firmware
Wcd9341 Firmware
Wcd9370 Firmware
Wcd9375 Firmware
Wcd9378 Firmware
Wcd9380 Firmware
Wcd9385 Firmware
Wcd9390 Firmware
Wcd9395 Firmware
Wcn3620 Firmware
Wcn3660b Firmware
Wcn3950 Firmware
Wcn3980 Firmware
Wcn3988 Firmware
Wcn6650 Firmware
Wcn6740 Firmware
Wcn6755 Firmware
Wcn7860 Firmware
Wcn7861 Firmware
Wcn7880 Firmware
Wcn7881 Firmware
Wsa8810 Firmware
Wsa8815 Firmware
Wsa8830 Firmware
Wsa8832 Firmware
Wsa8835 Firmware
Wsa8840 Firmware
Wsa8845 Firmware
Wsa8845h Firmware
Snapdragon 7C Gen 3 Compute Firmware
Snapdragon W5 Gen 1 Wearable Firmware
7.8
CVSS 3.1
Share
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Lifecycle Timeline
3
Analysis Generated
Mar 28, 2026 - 18:07 vuln.today
Patch released
Mar 28, 2026 - 18:07 nvd
Patch available
CVE Published
Feb 03, 2025 - 17:15 nvd
HIGH 7.8
DescriptionNVD
Memory corruption while power-up or power-down sequence of the camera sensor.
AnalysisAI
Memory corruption while power-up or power-down sequence of the camera sensor. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.
Technical ContextAI
This vulnerability is classified under CWE-129. Memory corruption while power-up or power-down sequence of the camera sensor. Affected products include: Qualcomm Csra6620 Firmware, Qualcomm Csra6640 Firmware, Qualcomm Fastconnect 6200 Firmware, Qualcomm Fastconnect 6700 Firmware, Qualcomm Fastconnect 6900 Firmware.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
Share
External POC / Exploit Code
Leaving vuln.today
Destination URL
POC code from unknown sources may be malicious, contain backdoors, or be fake.
Always review and test exploit code in a safe, isolated environment (VM/sandbox).
Verify the source reputation and cross-reference with known databases (Exploit-DB, GitHub Security).