Vulnerabilities > CVE-2024-38424 - Use After Free vulnerability in Qualcomm products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

qualcomm

CWE-416

NVD

Published: 2024-11-04

Updated: 2024-11-07

Summary

Memory corruption during GNSS HAL process initialization.

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Snapdragon W5+ GEN 1 Wearable Platform Firmware - Qualcomm Snapdragon 8+ GEN 2 Mobile Platform Firmware - Qualcomm Snapdragon 8+ GEN 1 Mobile Platform Firmware - Qualcomm Snapdragon 480+ 5G Mobile Platform (Sm4350 Ac) Firmware - Qualcomm Wsa8845H Firmware - Qualcomm Wsa8845 Firmware - Qualcomm Wsa8840 Firmware - Qualcomm Wsa8835 Firmware - Qualcomm Wsa8832 Firmware - Qualcomm Wsa8830 Firmware - Qualcomm Wsa8815 Firmware - Qualcomm Wsa8810 Firmware - Qualcomm Wcn7881 Firmware - Qualcomm Wcn7880 Firmware - Qualcomm Wcn7861 Firmware - Qualcomm Wcn7860 Firmware - Qualcomm Wcn6755 Firmware - Qualcomm Wcn6740 Firmware - Qualcomm Wcn3990 Firmware - Qualcomm Wcn3988 Firmware - Qualcomm Wcn3980 Firmware - Qualcomm Wcn3950 Firmware - Qualcomm Wcn3660B Firmware - Qualcomm Wcn3620 Firmware - Qualcomm Wcd9395 Firmware - Qualcomm Wcd9390 Firmware - Qualcomm Wcd9385 Firmware - Qualcomm Wcd9380 Firmware - Qualcomm Wcd9378 Firmware - Qualcomm Wcd9375 Firmware - Qualcomm Wcd9370 Firmware - Qualcomm Wcd9341 Firmware - Qualcomm Wcd9340 Firmware - Qualcomm Wcd9335 Firmware - Qualcomm Vision Intelligence 400 Platform Firmware - Qualcomm Talynplus Firmware - Qualcomm Sxr2250P Firmware - Qualcomm Sxr2230P Firmware - Qualcomm Sw5100P Firmware - Qualcomm Sw5100 Firmware - Qualcomm Srv1M Firmware - Qualcomm Srv1L Firmware - Qualcomm Srv1H Firmware - Qualcomm Snapdragon X75 5G Modem RF System Firmware - Qualcomm Snapdragon X72 5G Modem RF System Firmware - Qualcomm Snapdragon X35 5G Modem RF System Firmware - Qualcomm Snapdragon Auto 5G Modem RF GEN 2 Firmware - Qualcomm Snapdragon 8 GEN 3 Mobile Platform Firmware - Qualcomm Snapdragon 8 GEN 2 Mobile Platform Firmware - Qualcomm Snapdragon 8 GEN 1 Mobile Platform Firmware - Qualcomm Snapdragon 695 5G Mobile Platform Firmware - Qualcomm Snapdragon 685 4G Mobile Platform (Sm6225 Ad) Firmware - Qualcomm Snapdragon 680 4G Mobile Platform Firmware - Qualcomm Snapdragon 662 Mobile Platform Firmware - Qualcomm Snapdragon 480 5G Mobile Platform Firmware - Qualcomm Snapdragon 460 Mobile Platform Firmware - Qualcomm Snapdragon 429 Mobile Platform Firmware - Qualcomm Snapdragon 4 GEN 2 Mobile Platform Firmware - Qualcomm Snapdragon 4 GEN 1 Mobile Platform Firmware - Qualcomm Sm8750P Firmware - Qualcomm Sm8750 Firmware - Qualcomm Sm8635 Firmware - Qualcomm Sm8550P Firmware - Qualcomm Sm4635 Firmware - Qualcomm Sg8275P Firmware - Qualcomm Sg4150P Firmware - Qualcomm Sdm429W Firmware - Qualcomm SD 8 Gen1 5G Firmware - Qualcomm Sa9000P Firmware - Qualcomm Sa8775P Firmware - Qualcomm Sa8770P Firmware - Qualcomm Sa8650P Firmware - Qualcomm Sa8620P Firmware - Qualcomm Sa8255P Firmware - Qualcomm Sa8195P Firmware - Qualcomm Sa8155P Firmware - Qualcomm Sa7775P Firmware - Qualcomm Sa7255P Firmware - Qualcomm Sa6155P Firmware - Qualcomm Video Collaboration VC3 Platform Firmware - Qualcomm Video Collaboration VC1 Platform Firmware - Qualcomm Qfw7124 Firmware - Qualcomm Qfw7114 Firmware - Qualcomm Qep8111 Firmware - Qualcomm Qcs8550 Firmware - Qualcomm Qcs6490 Firmware - Qualcomm Qcs6125 Firmware - Qualcomm Qcs4490 Firmware - Qualcomm Qcn6274 Firmware - Qualcomm Qcn6224 Firmware - Qualcomm Qcm8550 Firmware - Qualcomm Qcm6125 Firmware - Qualcomm Qcm4490 Firmware - Qualcomm Qcm4325 Firmware - Qualcomm Qcc710 Firmware - Qualcomm Qca8337 Firmware - Qualcomm Qca8081 Firmware - Qualcomm Qca6797Aq Firmware - Qualcomm Qca6698Aq Firmware - Qualcomm Qca6696 Firmware - Qualcomm Qca6688Aq Firmware - Qualcomm Qca6595Au Firmware - Qualcomm Qca6595 Firmware - Qualcomm Qca6584Au Firmware - Qualcomm Qca6574Au Firmware - Qualcomm Qca6574A Firmware - Qualcomm Qca6574 Firmware - Qualcomm Qca6174A Firmware - Qualcomm Qamsrv1M Firmware - Qualcomm Qamsrv1H Firmware - Qualcomm Qam8775P Firmware - Qualcomm Qam8650P Firmware - Qualcomm Qam8620P Firmware - Qualcomm Qam8255P Firmware - Qualcomm Fastconnect 7800 Firmware - Qualcomm Fastconnect 6900 Firmware - Qualcomm Fastconnect 6700 Firmware - Qualcomm Fastconnect 6200 Firmware - Qualcomm Ar8035 Firmware -	119
Hardware	Qualcomm Qualcomm Snapdragon W5+ GEN 1 Wearable Platform - Qualcomm Snapdragon 8+ GEN 2 Mobile Platform - Qualcomm Snapdragon 8+ GEN 1 Mobile Platform - Qualcomm Snapdragon 480+ 5G Mobile Platform (Sm4350 Ac) - Qualcomm Wsa8845H - Qualcomm Wsa8845 - Qualcomm Wsa8840 - Qualcomm Wsa8835 - Qualcomm Wsa8832 - Qualcomm Wsa8830 - Qualcomm Wsa8815 - Qualcomm Wsa8810 - Qualcomm Wcn7881 - Qualcomm Wcn7880 - Qualcomm Wcn7861 - Qualcomm Wcn7860 - Qualcomm Wcn6755 - Qualcomm Wcn6740 - Qualcomm Wcn3990 - Qualcomm Wcn3988 - Qualcomm Wcn3980 - Qualcomm Wcn3950 - Qualcomm Wcn3660B - Qualcomm Wcn3620 - Qualcomm Wcd9395 - Qualcomm Wcd9390 - Qualcomm Wcd9385 - Qualcomm Wcd9380 - Qualcomm Wcd9378 - Qualcomm Wcd9375 - Qualcomm Wcd9370 - Qualcomm Wcd9341 - Qualcomm Wcd9340 - Qualcomm Wcd9335 - Qualcomm Vision Intelligence 400 Platform - Qualcomm Talynplus - Qualcomm Sxr2250P - Qualcomm Sxr2230P - Qualcomm Sw5100P - Qualcomm Sw5100 - Qualcomm Srv1M - Qualcomm Srv1L - Qualcomm Srv1H - Qualcomm Snapdragon X75 5G Modem RF System - Qualcomm Snapdragon X72 5G Modem RF System - Qualcomm Snapdragon X35 5G Modem RF System - Qualcomm Snapdragon Auto 5G Modem RF GEN 2 - Qualcomm Snapdragon 8 GEN 3 Mobile Platform - Qualcomm Snapdragon 8 GEN 2 Mobile Platform - Qualcomm Snapdragon 8 GEN 1 Mobile Platform - Qualcomm Snapdragon 695 5G Mobile Platform - Qualcomm Snapdragon 685 4G Mobile Platform (Sm6225 Ad) - Qualcomm Snapdragon 680 4G Mobile Platform - Qualcomm Snapdragon 662 Mobile Platform - Qualcomm Snapdragon 480 5G Mobile Platform - Qualcomm Snapdragon 460 Mobile Platform - Qualcomm Snapdragon 429 Mobile Platform - Qualcomm Snapdragon 4 GEN 2 Mobile Platform - Qualcomm Snapdragon 4 GEN 1 Mobile Platform - Qualcomm Sm8750P - Qualcomm Sm8750 - Qualcomm Sm8635 - Qualcomm Sm8550P - Qualcomm Sm4635 - Qualcomm Sg8275P - Qualcomm Sg4150P - Qualcomm Sdm429W - Qualcomm SD 8 Gen1 5G - Qualcomm Sa9000P - Qualcomm Sa8775P - Qualcomm Sa8770P - Qualcomm Sa8650P - Qualcomm Sa8620P - Qualcomm Sa8255P - Qualcomm Sa8195P - Qualcomm Sa8155P - Qualcomm Sa7775P - Qualcomm Sa7255P - Qualcomm Sa6155P - Qualcomm Video Collaboration VC3 Platform - Qualcomm Video Collaboration VC1 Platform - Qualcomm Qfw7124 - Qualcomm Qfw7114 - Qualcomm Qep8111 - Qualcomm Qcs8550 - Qualcomm Qcs6490 - Qualcomm Qcs6125 - Qualcomm Qcs4490 - Qualcomm Qcn6274 - Qualcomm Qcn6224 - Qualcomm Qcm8550 - Qualcomm Qcm6125 - Qualcomm Qcm4490 - Qualcomm Qcm4325 - Qualcomm Qcc710 - Qualcomm Qca8337 - Qualcomm Qca8081 - Qualcomm Qca6797Aq - Qualcomm Qca6698Aq - Qualcomm Qca6696 - Qualcomm Qca6688Aq - Qualcomm Qca6595Au - Qualcomm Qca6595 - Qualcomm Qca6584Au - Qualcomm Qca6574Au - Qualcomm Qca6574A - Qualcomm Qca6574 - Qualcomm Qca6174A - Qualcomm Qamsrv1M - Qualcomm Qamsrv1H - Qualcomm Qam8775P - Qualcomm Qam8650P - Qualcomm Qam8620P - Qualcomm Qam8255P - Qualcomm Fastconnect 7800 - Qualcomm Fastconnect 6900 - Qualcomm Fastconnect 6700 - Qualcomm Fastconnect 6200 - Qualcomm Ar8035 -	119

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html