CVE-2024-23370

MEDIUM

Qualcomm WSA8835 and related firmware - Use-After-Free via HAB Virtual Channel IOCTL Race

Title source: llm

Description

Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.

References (1)

Core 1

Core References

Vendor Advisory

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html

Scores

CVSS v3 6.7

EPSS 0.0006

EPSS Percentile 18.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (11)

qualcomm/qca6584au_firmware

qualcomm/qca6698aq_firmware

qualcomm/qca9367_firmware

qualcomm/qca9377_firmware

qualcomm/snapdragon_auto_5g_modem-rf_gen_2_firmware

qualcomm/sw5100_firmware

qualcomm/sw5100p_firmware

qualcomm/wcn3980_firmware

qualcomm/wcn3988_firmware

qualcomm/wsa8830_firmware

... and 1 more

Published Oct 07, 2024

Tracked Since Feb 18, 2026