CVE-2024-23353
HIGHQualcomm WSA/WCN/WCD Firmware - Denial of Service via Malformed Attach Reject Message
Title source: llmDescription
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
References (1)
Core 1
Core References
Scores
CVSS v3
7.5
EPSS
0.0035
EPSS Percentile
26.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-125
CWE-126
Status
published
Products (50)
qualcomm/205_mobile_platform_firmware
qualcomm/215_mobile_platform_firmware
qualcomm/315_5g_iot_modem_firmware
qualcomm/9205_lte_modem_firmware
qualcomm/9206_lte_modem_firmware
qualcomm/9207_lte_modem_firmware
qualcomm/apq8017_firmware
qualcomm/apq8037_firmware
qualcomm/aqt1000_firmware
qualcomm/ar8035_firmware
... and 40 more
Published
Aug 05, 2024
Tracked Since
Feb 18, 2026