Qualcomm Snapdragon up to X75 5G Modem-RF System 802.11az Fine Time Measurement Frame buffer over-read

Summaryinfo

A vulnerability described as critical has been identified in Qualcomm Snapdragon. This issue affects some unknown processing of the component 802.11az Fine Time Measurement Frame Handler. Executing a manipulation can lead to buffer over-read. This vulnerability is tracked as CVE-2024-21477. The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.

Detailsinfo

A vulnerability was found in Qualcomm Snapdragon. It has been declared as critical. This vulnerability affects an unknown code block of the component 802.11az Fine Time Measurement Frame Handler. The manipulation with an unknown input leads to a buffer over-read vulnerability. The CWE definition for the vulnerability is CWE-126. The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer. As an impact it is known to affect availability. CVE summarizes:

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.

The advisory is shared for download at docs.qualcomm.com. This vulnerability was named CVE-2024-21477 since 12/12/2023. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. There are neither technical details nor an exploit publicly available.

Upgrading eliminates this vulnerability.

Once again VulDB remains the best source for vulnerability data.

Productinfo

Type

• Chip Software

Vendor

• Qualcomm

Name

• Snapdragon

Version

• 7c Compute Platform (SC7180-AC)
• 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro"
• 8 Gen 1 Mobile Platform
• 8 Gen 2 Mobile Platform
• 8 Gen 3 Mobile Platform
• 8+ Gen 2 Mobile Platform
• 8c Compute Platform (SC8180X-AD) "Poipu Lite"
• 8c Compute Platform (SC8180XP-AD) "Poipu Lite"
• 8cx Compute Platform (SC8180X-AA
• 8cx Compute Platform (SC8180XP-AC
• 8cx Gen 2 5G Compute Platform (SC8180X-AC
• 8cx Gen 2 5G Compute Platform (SC8180XP-AA
• 460 Mobile Platform
• 662 Mobile Platform
• 675 Mobile Platform
• 678 Mobile Platform (SM6150-AC)
• 680 4G Mobile Platform
• 685 4G Mobile Platform (SM6225-AD)
• 720G Mobile Platform
• 730 Mobile Platform (SM7150-AA)
• 730G Mobile Platform (SM7150-AB)
• 732G Mobile Platform (SM7150-AC)
• 765 5G Mobile Platform (SM7250-AA)
• 765G 5G Mobile Platform (SM7250-AB)
• 768G 5G Mobile Platform (SM7250-AC)
• 855 Mobile Platform
• 855+
• 860 Mobile Platform (SM8150-AC)
• AB)
• AF) "Poipu Pro"
• AQT1000
• AR2 Gen 1 Platform
• AR8035
• CSR8811
• FastConnect 6200
• FastConnect 6800
• FastConnect 6900
• FastConnect 7800
• Immersive Home 214 Platform
• Immersive Home 216 Platform
• Immersive Home 316 Platform
• Immersive Home 318 Platform
• Immersive Home 326 Platform
• Immersive Home 3210 Platform
• IPQ5010
• IPQ5028
• IPQ5300
• IPQ5302
• IPQ5312
• IPQ5332
• IPQ6000
• IPQ6010
• IPQ6018
• IPQ6028
• IPQ8070A
• IPQ8071A
• IPQ8072A
• IPQ8074A
• IPQ8076
• IPQ8076A
• IPQ8078
• IPQ8078A
• IPQ8173
• IPQ8174
• IPQ9008
• IPQ9554
• IPQ9570
• IPQ9574
• QAM8255P
• QAM8650P
• QAM8775P
• QCA0000
• QCA4024
• QCA6391
• QCA6420
• QCA6430
• QCA6554A
• QCA6564AU
• QCA6574
• QCA6574A
• QCA6574AU
• QCA6584AU
• QCA6595
• QCA6595AU
• QCA6696
• QCA6698AQ
• QCA6797AQ
• QCA8075
• QCA8081
• QCA8082
• QCA8084
• QCA8085
• QCA8337
• QCA8386
• QCA9888
• QCA9889
• QCC710
• QCC2073
• QCC2076
• QCF8000
• QCF8001
• QCM4325
• QCM8550
• QCN5022
• QCN5024
• QCN5052
• QCN5122
• QCN5124
• QCN5152
• QCN5154
• QCN5164
• QCN6023
• QCN6024
• QCN6112
• QCN6122
• QCN6132
• QCN6224
• QCN6274
• QCN6402
• QCN6412
• QCN6422
• QCN6432
• QCN9000
• QCN9012
• QCN9013
• QCN9022
• QCN9024
• QCN9070
• QCN9072
• QCN9074
• QCN9100
• QCN9274
• QCS8550
• QFW7114
• QFW7124
• SA7255P
• SC8180X+SDX55
• SC8380XP
• SD 8 Gen1 5G
• SD460
• SD662
• SD730
• SD855
• SDX55
• SDX65M
• SG4150P
• SG8275P
• SM4125
• SM6250
• SM6250P
• SM7250P
• SM8550P
• SSG2115P
• SSG2125P
• SXR1230P
• SXR2230P
• SXR2250P
• WCD9326
• WCD9335
• WCD9340
• WCD9341
• WCD9370
• WCD9375
• WCD9380
• WCD9385
• WCD9390
• WCD9395
• WCN3910
• WCN3950
• WCN3980
• WCN3988
• WCN3990
• WCN7880
• WSA8810
• WSA8815
• WSA8830
• WSA8832
• WSA8835
• WSA8840
• WSA8845
• WSA8845H
• X50 5G Modem-RF System
• X55 5G Modem-RF System
• X65 5G Modem-RF System
• X72 5G Modem-RF System
• X75 5G Modem-RF System

License

• commercial

Website

• Vendor: https://www.qualcomm.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Once again VulDB remains the best source for vulnerability data.

Discussion