CVE-2024-23375 — MEDIUM (6.7)

Vulnerability Description

Memory corruption during the network scan request.

CVSS Score

6.7

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qualcomm	Wsa8835 Firmware	-
Qualcomm	Wsa8835	-
Qualcomm	Wsa8830 Firmware	-
Qualcomm	Wsa8830	-
Qualcomm	Wcn3988 Firmware	-
Qualcomm	Wcn3988	-
Qualcomm	Wcn3980 Firmware	-
Qualcomm	Wcn3980	-
Qualcomm	Wcn3680B Firmware	-
Qualcomm	Wcn3680B	-
Qualcomm	Wcn3660B Firmware	-
Qualcomm	Wcn3660B	-
Qualcomm	Sw5100P Firmware	-
Qualcomm	Sw5100P	-
Qualcomm	Sw5100 Firmware	-
Qualcomm	Sw5100	-
Qualcomm	Snapdragon W5\+ Gen 1 Wearable Platform Firmware	-
Qualcomm	Snapdragon W5\+ Gen 1 Wearable Platform	-
Qualcomm	Sa8195P Firmware	-
Qualcomm	Sa8195P	-

Related Weaknesses (CWE)

CWE-120

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-Vendor Advisory

FAQ

What is CVE-2024-23375?

CVE-2024-23375 is a vulnerability with a CVSS score of 6.7 (MEDIUM). Memory corruption during the network scan request.

How severe is CVE-2024-23375?

CVE-2024-23375 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-23375?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Wsa8835 Firmware, Qualcomm Wsa8835, Qualcomm Wsa8830 Firmware, Qualcomm Wsa8830, Qualcomm Wcn3988 Firmware.