1. Home
  2. CVE Database
  3. CVE-2024-33061
MEDIUM · 6.8

CVE-2024-33061

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

Vulnerability Description

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
LOW

Affected Products

VendorProductVersions
QualcommQcs8550 Firmware-
QualcommQcs8550-
QualcommSw5100 Firmware-
QualcommSw5100-
QualcommSw5100P Firmware-
QualcommSw5100P-
QualcommWcn3660B Firmware-
QualcommWcn3660B-
QualcommWcn3680B Firmware-
QualcommWcn3680B-
QualcommWcn3980 Firmware-
QualcommWcn3980-
QualcommWcn3988 Firmware-
QualcommWcn3988-
QualcommWsa8830 Firmware-
QualcommWsa8830-
QualcommWsa8835 Firmware-
QualcommWsa8835-

Related Weaknesses (CWE)

CWE-126CWE-125

References

FAQ

What is CVE-2024-33061?

CVE-2024-33061 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

How severe is CVE-2024-33061?

CVE-2024-33061 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-33061?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Qcs8550 Firmware, Qualcomm Qcs8550, Qualcomm Sw5100 Firmware, Qualcomm Sw5100, Qualcomm Sw5100P Firmware.