Qualcomm Snapdragon Auto up to XR1 Platform GPU Page Table memory corruption

Summaryinfo

A vulnerability has been found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables and classified as critical. Impacted is an unknown function of the component GPU Page Table Handler. This manipulation causes memory corruption. The identification of this vulnerability is CVE-2024-33027. The attack can only be executed locally. There is no exploit available. The affected component should be upgraded.

Detailsinfo

A vulnerability classified as critical was found in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music and Snapdragon Wearables. Affected by this vulnerability is an unknown part of the component GPU Page Table Handler. The manipulation with an unknown input leads to a memory corruption vulnerability. The CWE definition for the vulnerability is CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.

It is possible to read the advisory at docs.qualcomm.com. This vulnerability is known as CVE-2024-33027 since 04/23/2024. The exploitation appears to be easy. Attacking locally is a requirement. The technical details are unknown and an exploit is not publicly available. The pricing for an exploit might be around USD $0-$5k at the moment (estimation calculated on 11/20/2024).

Upgrading eliminates this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Productinfo

Type

• Chip Software

Vendor

• Qualcomm

Name

• Snapdragon Auto
• Snapdragon Compute
• Snapdragon Consumer IOT
• Snapdragon Industrial IOT
• Snapdragon Mobile
• Snapdragon Voice & Music
• Snapdragon Wearables

Version

• 210 Processor
• 212 Mobile Platform
• 315 5G IoT Modem
• 429 Mobile Platform
• 660 Mobile Platform
• 670 Mobile Platform
• 675 Mobile Platform
• 678 Mobile Platform (SM6150-AC)
• 710 Mobile Platform
• 720G Mobile Platform
• 730 Mobile Platform (SM7150-AA)
• 730G Mobile Platform (SM7150-AB)
• 732G Mobile Platform (SM7150-AC)
• 845 Mobile Platform
• 855 Mobile Platform
• 855+
• 860 Mobile Platform (SM8150-AC)
• AQT1000
• AR8031
• C-V2X 9150
• CSRA6620
• CSRA6640
• FastConnect 6200
• QCA6174A
• QCA6310
• QCA6335
• QCA6391
• QCA6420
• QCA6430
• QCA6564
• QCA6564AU
• QCA6574
• QCA6574A
• QCA6574AU
• QCA6595
• QCA6595AU
• QCA6696
• QCA8337
• QCA9377
• QCM6125
• QCN9074
• QCS410
• QCS610
• QCS6125
• Qualcomm 205 Mobile Platform
• Qualcomm 215 Mobile Platform
• Qualcomm Video Collaboration VC1 Platform
• Qualcomm Video Collaboration VC3 Platform
• Robotics RB3 Platform
• SA6145P
• SA6150P
• SA6155
• SA6155P
• SA8145P
• SA8150P
• SA8155
• SA8155P
• SA8195P
• SD660
• SD670
• SD730
• SD855
• SDM429W
• SDX55
• SM6250
• Smart Audio 400 Platform
• SXR1120
• Vision Intelligence 300 Platform
• Vision Intelligence 400 Platform
• WCD9326
• WCD9335
• WCD9340
• WCD9341
• WCD9370
• WCD9375
• WCD9380
• WCN3610
• WCN3620
• WCN3660B
• WCN3680B
• WCN3950
• WCN3980
• WCN3988
• WCN3990
• WSA8810
• WSA8815
• X24 LTE Modem
• X50 5G Modem-RF System
• X55 5G Modem-RF System
• XR1 Platform

License

• commercial

Website

• Vendor: https://www.qualcomm.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Discussion