Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

Low

Attack Vector

Local

CVE-2024-43047

Disclosure Date: October 07, 2024 •

CVE-2024-43047 CVSS v3 Base Score: 7.8

Exploited in the Wild

Reported by cbeek-r7
View Source Details

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Memory corruption while maintaining memory maps of HLOS memory.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

7.8 High

Impact Score:

5.9

Exploitability Score:

1.8

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Local

Attack Complexity (AC):

Low

Privileges Required (PR):

Low

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

Vulnerable Versions

Snapdragon FastConnect 6700

Snapdragon FastConnect 6800

Snapdragon FastConnect 6900

Snapdragon FastConnect 7800

Snapdragon QAM8295P

Snapdragon QCA6174A

Snapdragon QCA6391

Snapdragon QCA6426

Snapdragon QCA6436

Snapdragon QCA6574AU

Snapdragon QCA6584AU

Snapdragon QCA6595

Snapdragon QCA6595AU

Snapdragon QCA6688AQ

Snapdragon QCA6696

Snapdragon QCA6698AQ

Snapdragon QCS410

Snapdragon QCS610

Snapdragon QCS6490

Snapdragon Qualcomm Video Collaboration VC1 Platform

Snapdragon Qualcomm Video Collaboration VC3 Platform

Snapdragon SA4150P

Snapdragon SA4155P

Snapdragon SA6145P

Snapdragon SA6150P

Snapdragon SA6155P

Snapdragon SA8145P

Snapdragon SA8150P

Snapdragon SA8155P

Snapdragon SA8195P

Snapdragon SA8295P

Snapdragon SD660

Snapdragon SD865 5G

Snapdragon SG4150P

Snapdragon Snapdragon 660 Mobile Platform

Snapdragon Snapdragon 680 4G Mobile Platform

Snapdragon Snapdragon 685 4G Mobile Platform (SM6225-AD)

Snapdragon Snapdragon 8 Gen 1 Mobile Platform

Snapdragon Snapdragon 865 5G Mobile Platform

Snapdragon Snapdragon 865+ 5G Mobile Platform (SM8250-AB)

Snapdragon Snapdragon 870 5G Mobile Platform (SM8250-AC)

Snapdragon Snapdragon 888 5G Mobile Platform

Snapdragon Snapdragon 888+ 5G Mobile Platform (SM8350-AC)

Snapdragon Snapdragon Auto 5G Modem-RF

Snapdragon Snapdragon Auto 5G Modem-RF Gen 2

Snapdragon Snapdragon X55 5G Modem-RF System

Snapdragon Snapdragon XR2 5G Platform

Snapdragon SW5100

Snapdragon SW5100P

Snapdragon SXR2130

Snapdragon WCD9335

Snapdragon WCD9341

Snapdragon WCD9370

Snapdragon WCD9375

Snapdragon WCD9380

Snapdragon WCD9385

Snapdragon WCN3950

Snapdragon WCN3980

Snapdragon WCN3988

Snapdragon WCN3990

Snapdragon WSA8810

Snapdragon WSA8815

Snapdragon WSA8830

Snapdragon WSA8835

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

qualcomm

Products

fastconnect 6700 firmware -,
fastconnect 6800 firmware -,
fastconnect 6900 firmware -,
fastconnect 7800 firmware -,
qam8295p firmware -,
qca6174a firmware -,
qca6391 firmware -,
qca6426 firmware -,
qca6436 firmware -,
qca6574au firmware -,
qca6584au firmware -,
qca6595 firmware -,
qca6595au firmware -,
qca6688aq firmware -,
qca6696 firmware -,
qca6698aq firmware -,
qcs410 firmware -,
qcs610 firmware -,
qcs6490 firmware -,
sa4150p firmware -,
sa4155p firmware -,
sa6145p firmware -,
sa6150p firmware -,
sa6155p firmware -,
sa8145p firmware -,
sa8150p firmware -,
sa8155p firmware -,
sa8195p firmware -,
sa8295p firmware -,
sd660 firmware -,
sd865 5g firmware -,
sg4150p firmware -,
snapdragon 660 mobile firmware -,
snapdragon 680 4g mobile firmware -,
snapdragon 685 4g mobile firmware -,
snapdragon 8 gen 1 mobile firmware -,
snapdragon 865 5g mobile firmware -,
snapdragon 865+ 5g mobile firmware -,
snapdragon 870 5g mobile firmware -,
snapdragon 888 5g mobile firmware -,
snapdragon 888+ 5g mobile firmware -,
snapdragon auto 5g modem-rf firmware -,
snapdragon auto 5g modem-rf gen 2 firmware -,
snapdragon x55 5g modem-rf firmware -,
snapdragon xr2 5g firmware -,
sw5100 firmware -,
sw5100p firmware -,
sxr2130 firmware -,
video collaboration vc1 firmware -,
video collaboration vc3 firmware -,
wcd9335 firmware -,
wcd9341 firmware -,
wcd9370 firmware -,
wcd9375 firmware -,
wcd9380 firmware -,
wcd9385 firmware -,
wcn3950 firmware -,
wcn3980 firmware -,
wcn3988 firmware -,
wcn3990 firmware -,
wsa8810 firmware -,
wsa8815 firmware -,
wsa8830 firmware -,
wsa8835 firmware -

Exploited in the Wild

Reported by:

cbeek-r7 indicated source as Government or Industry Alert (https://www.cisa.gov/news-events/alerts/2024/10/08/cisa-adds-three-known-exploited-vulnerabilities-catalog)

Reported: October 10, 2024 9:14am UTC (1 month ago)

References

Canonical

CVE-2024-43047 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43047)

Miscellaneous

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html

Rapid7

Unknown

CVE-2024-43047

Unknown

Unknown

None

Low

Local

CVE-2024-43047

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Exploited in the Wild

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Unknown

CVE-2024-43047

Unknown

Unknown

None

Low

Local

CVE-2024-43047

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

Exploited in the Wild

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification