We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-45556

Improper Access Control for Register Interface in TZ Firmware



Description

Cryptographic issue may arise because the access control configuration permits Linux to read key registers in TCSR.

Reserved 2024-09-02 | Published 2025-04-07 | Updated 2025-04-07 | Assigner qualcomm


MEDIUM: 6.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Problem types

CWE-1262: Improper Access Control for Register Interface

Product status

Default status
unaffected

FastConnect 6900
affected

FastConnect 7800
affected

Immersive Home 3210 Platform
affected

Immersive Home 326 Platform
affected

IPQ5300
affected

IPQ5302
affected

IPQ5312
affected

IPQ5332
affected

IPQ9008
affected

IPQ9048
affected

IPQ9554
affected

IPQ9570
affected

IPQ9574
affected

QCA0000
affected

QCA8075
affected

QCA8081
affected

QCA8082
affected

QCA8084
affected

QCA8085
affected

QCA8386
affected

QCF8000
affected

QCF8000SFP
affected

QCF8001
affected

QCN5124
affected

QCN6224
affected

QCN6402
affected

QCN6412
affected

QCN6422
affected

QCN6432
affected

QCN9000
affected

QCN9012
affected

QCN9013
affected

QCN9024
affected

QCN9074
affected

QCN9160
affected

QCN9274
affected

QXM8083
affected

SD 8 Gen1 5G
affected

SDM429W
affected

SDX65M
affected

Snapdragon 429 Mobile Platform
affected

Snapdragon AR1 Gen 1 Platform
affected

Snapdragon AR1 Gen 1 Platform "Luna1"
affected

Snapdragon AR2 Gen 1 Platform
affected

Snapdragon Wear 4100+ Platform
affected

Snapdragon X65 5G Modem-RF System
affected

SSG2115P
affected

SSG2125P
affected

SXR1230P
affected

SXR2230P
affected

SXR2250P
affected

WCD9380
affected

WCD9385
affected

WCN3620
affected

WCN3660B
affected

WCN3680B
affected

WCN3980
affected

WSA8830
affected

WSA8832
affected

WSA8835
affected

References

docs.qualcomm.com/...curitybulletin/april-2025-bulletin.html

cve.org (CVE-2024-45556)

nvd.nist.gov (CVE-2024-45556)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2024-45556

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.