Description

Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.

INFO

Published Date :

2024-08-05T14:21:18.555Z

Last Modified :

2024-08-05T15:02:35.350Z

Source :

qualcomm
AFFECTED PRODUCTS

The following products are affected by CVE-2024-23350 vulnerability.

Vendors Products
Qualcomm
  • Ar8035
  • Ar8035 Firmware
  • Fastconnect 6900
  • Fastconnect 6900 Firmware
  • Fastconnect 7800
  • Fastconnect 7800 Firmware
  • Qca6174a
  • Qca6174a Firmware
  • Qca6584au
  • Qca6584au Firmware
  • Qca6698aq
  • Qca6698aq Firmware
  • Qca8081
  • Qca8081 Firmware
  • Qca8337
  • Qca8337 Firmware
  • Qcc710
  • Qcc710 Firmware
  • Qcn6224
  • Qcn6224 Firmware
  • Qcn6274
  • Qcn6274 Firmware
  • Qep8111
  • Qep8111 Firmware
  • Qfw7114
  • Qfw7114 Firmware
  • Qfw7124
  • Qfw7124 Firmware
  • Snapdragon 8 Gen 3 Mobile Platform
  • Snapdragon 8 Gen 3 Mobile Platform Firmware
  • Snapdragon Auto 5g Modem-rf Gen 2
  • Snapdragon Auto 5g Modem-rf Gen 2 Firmware
  • Snapdragon X35 5g Modem-rf System
  • Snapdragon X35 5g Modem-rf System Firmware
  • Snapdragon X72 5g Modem-rf System
  • Snapdragon X72 5g Modem-rf System Firmware
  • Snapdragon X75 5g Modem-rf System
  • Snapdragon X75 5g Modem-rf System Firmware
  • Wcd9340
  • Wcd9340 Firmware
  • Wcd9390
  • Wcd9390 Firmware
  • Wcd9395
  • Wcd9395 Firmware
  • Wsa8840
  • Wsa8840 Firmware
  • Wsa8845
  • Wsa8845 Firmware
  • Wsa8845h
  • Wsa8845h Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-23350.

URL Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact