Vulnerability Description
Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Fastconnect 6900 Firmware | - |
| Qualcomm | Fastconnect 6900 | All versions |
| Qualcomm | Fastconnect 7800 Firmware | - |
| Qualcomm | Fastconnect 7800 | All versions |
| Qualcomm | Qmp1000 Firmware | - |
| Qualcomm | Qmp1000 | All versions |
| Qualcomm | Sdm429W Firmware | - |
| Qualcomm | Sdm429W | All versions |
| Qualcomm | Sm8735 Firmware | - |
| Qualcomm | Sm8735 | All versions |
| Qualcomm | Sm8750 Firmware | - |
| Qualcomm | Sm8750 | All versions |
| Qualcomm | Sm8750P Firmware | - |
| Qualcomm | Sm8750P | All versions |
| Qualcomm | Snapdragon 429 Firmware | - |
| Qualcomm | Snapdragon 429 | All versions |
| Qualcomm | Snapdragon 8 Gen 3 Firmware | - |
| Qualcomm | Snapdragon 8 Gen 3 | All versions |
| Qualcomm | Snapdragon Ar1 Gen 1 Firmware | - |
| Qualcomm | Snapdragon Ar1 Gen 1 | All versions |
Related Weaknesses (CWE)
References
- https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2025-buPatchVendor Advisory
FAQ
What is CVE-2024-45580?
CVE-2024-45580 is a vulnerability with a CVSS score of 7.8 (HIGH). Memory corruption while handling multuple IOCTL calls from userspace for remote invocation.
How severe is CVE-2024-45580?
CVE-2024-45580 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-45580?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 6900, Qualcomm Fastconnect 7800 Firmware, Qualcomm Fastconnect 7800, Qualcomm Qmp1000 Firmware.