Vulnerability Description
Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Fastconnect 6900 Firmware | - |
| Qualcomm | Fastconnect 6900 | All versions |
| Qualcomm | Fastconnect 7800 Firmware | - |
| Qualcomm | Fastconnect 7800 | All versions |
| Qualcomm | Qam8295P Firmware | - |
| Qualcomm | Qam8295P | All versions |
| Qualcomm | Qca6574Au Firmware | - |
| Qualcomm | Qca6574Au | All versions |
| Qualcomm | Qca6696 Firmware | - |
| Qualcomm | Qca6696 | All versions |
| Qualcomm | Qca9367 Firmware | - |
| Qualcomm | Qca9367 | All versions |
| Qualcomm | Qca9377 Firmware | - |
| Qualcomm | Qca9377 | All versions |
| Qualcomm | Qcs8550 Firmware | - |
| Qualcomm | Qcs8550 | All versions |
| Qualcomm | Sa6145P Firmware | - |
| Qualcomm | Sa6145P | All versions |
| Qualcomm | Sa6150P Firmware | - |
| Qualcomm | Sa6150P | All versions |
Related Weaknesses (CWE)
References
- https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-buPatchVendor Advisory
FAQ
What is CVE-2024-43061?
CVE-2024-43061 is a vulnerability with a CVSS score of 7.8 (HIGH). Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive.
How severe is CVE-2024-43061?
CVE-2024-43061 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-43061?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 6900, Qualcomm Fastconnect 7800 Firmware, Qualcomm Fastconnect 7800, Qualcomm Qam8295P Firmware.