CVE-2024-38399

HIGH

Product <Version - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-38399. PoCs published by Shreyas-Penkar.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2024-38399, targeting a use-after-free vulnerability in the KGSL (Kernel Graphics Support Layer) driver on Qualcomm Snapdragon devices. The exploit demonstrates GPU memory manipulation and fault handling to achieve local privilege escalation (LPE).

Description

Memory corruption while processing user packets to generate page faults.

Exploits (1)

nomisec WORKING POC 25 stars
by Shreyas-Penkar · poc
https://github.com/Shreyas-Penkar/CVE-2024-38399

This repository contains a functional exploit PoC for CVE-2024-38399, targeting a use-after-free vulnerability in the KGSL (Kernel Graphics Support Layer) driver on Qualcomm Snapdragon devices. The exploit demonstrates GPU memory manipulation and fault handling to achieve local privilege escalation (LPE).

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Racy
Target: Qualcomm KGSL driver (Snapdragon Gen 1)
No auth needed
Prerequisites: Physical or local access to a vulnerable Samsung Snapdragon Gen 1 device · Android NDK for compilation · ADB access for deployment
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 8.4
EPSS 0.0013
EPSS Percentile 3.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-416
Status published
Products (40)
qualcomm/fastconnect_6900_firmware
qualcomm/fastconnect_7800_firmware
qualcomm/qam8255p_firmware
qualcomm/qam8295p_firmware
qualcomm/qam8650p_firmware
qualcomm/qam8775p_firmware
qualcomm/qamsrv1h_firmware
qualcomm/qamsrv1m_firmware
qualcomm/qca6574au_firmware
qualcomm/qca6595_firmware
... and 30 more
Published Oct 07, 2024
Tracked Since Feb 18, 2026