1. Home
  2. CVE Database
  3. CVE-2024-38403
HIGH · 7.5

CVE-2024-38403

Transient DOS while parsing BTM ML IE when per STA profile is not included.

Vulnerability Description

Transient DOS while parsing BTM ML IE when per STA profile is not included.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
QualcommWsa8845H Firmware-
QualcommWsa8845H-
QualcommWsa8845 Firmware-
QualcommWsa8845-
QualcommWsa8840 Firmware-
QualcommWsa8840-
QualcommWsa8835 Firmware-
QualcommWsa8835-
QualcommWsa8832 Firmware-
QualcommWsa8832-
QualcommWsa8830 Firmware-
QualcommWsa8830-
QualcommWcn7881 Firmware-
QualcommWcn7881-
QualcommWcn7880 Firmware-
QualcommWcn7880-
QualcommWcn7861 Firmware-
QualcommWcn7861-
QualcommWcn7860 Firmware-
QualcommWcn7860-

Related Weaknesses (CWE)

CWE-126CWE-125

References

FAQ

What is CVE-2024-38403?

CVE-2024-38403 is a vulnerability with a CVSS score of 7.5 (HIGH). Transient DOS while parsing BTM ML IE when per STA profile is not included.

How severe is CVE-2024-38403?

CVE-2024-38403 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-38403?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Wsa8845H Firmware, Qualcomm Wsa8845H, Qualcomm Wsa8845 Firmware, Qualcomm Wsa8845, Qualcomm Wsa8840 Firmware.