CVE-2024-33061 | THREATINT

Description

Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process.

PUBLISHED Reserved 2024-04-23 | Published 2025-01-06 | Updated 2025-01-06 | Assigner qualcomm

MEDIUM: 6.8CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Problem types

CWE-126 Buffer Over-read

Product status

Default status

unaffected

QCS8550

affected

SW5100

affected

SW5100P

affected

WCN3660B

affected

WCN3680B

affected

WCN3980

affected

WCN3988

affected

WSA8830

affected

WSA8835

affected

References

docs.qualcomm.com/...ritybulletin/january-2025-bulletin.html

cve.org (CVE-2024-33061)

nvd.nist.gov (CVE-2024-33061)

Download JSON