CVE-2024-38426
MEDIUMQualcomm Video Collaboration VC1 Platform Firmware - Improper Authentication
Title source: llmDescription
While processing the authentication message in UE, improper authentication may lead to information disclosure.
References (1)
Core 1
Core References
Scores
CVSS v3
5.4
EPSS
0.0012
EPSS Percentile
30.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-287
Status
published
Products (50)
qualcomm/205_firmware
qualcomm/215_firmware
qualcomm/315_5g_iot_firmware
qualcomm/9205_lte_firmware
qualcomm/ar8035_firmware
qualcomm/csra6620_firmware
qualcomm/csra6640_firmware
qualcomm/csrb31024_firmware
qualcomm/fastconnect_6200_firmware
qualcomm/fastconnect_6700_firmware
... and 40 more
Published
Mar 03, 2025
Tracked Since
Feb 18, 2026