CVE-2024-45578
HIGHDescription
Memory corruption while acquire and update IOCTLs during IFE output resource ID validation.
Is your site exposed to CVE-2024-45578?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| qualcomm | fastconnect_6900_firmware |
| qualcomm | fastconnect_6900 |
| qualcomm | fastconnect_7800_firmware |
| qualcomm | fastconnect_7800 |
| qualcomm | sdm429w_firmware |
| qualcomm | sdm429w |
| qualcomm | snapdragon_429_mobile_firmware |
| qualcomm | snapdragon_429_mobile |
| qualcomm | snapdragon_8_gen_1_mobile_firmware |
| qualcomm | snapdragon_8_gen_1_mobile |
| qualcomm | sxr2230p_firmware |
| qualcomm | sxr2230p |
| qualcomm | sxr2250p_firmware |
| qualcomm | sxr2250p |
| qualcomm | wcd9380_firmware |
| qualcomm | wcd9380 |
| qualcomm | wcd9385_firmware |
| qualcomm | wcd9385 |
| qualcomm | wcn3620_firmware |
| qualcomm | wcn3620 |
| qualcomm | wcn3660b_firmware |
| qualcomm | wcn3660b |
| qualcomm | wsa8830_firmware |
| qualcomm | wsa8830 |
| qualcomm | wsa8832_firmware |
| qualcomm | wsa8832 |
| qualcomm | wsa8835_firmware |
| qualcomm | wsa8835 |
References
Frequently Asked Questions
What is CVE-2024-45578? +
How severe is CVE-2024-45578? +
What products are affected by CVE-2024-45578? +
How do I check if I'm vulnerable to CVE-2024-45578? +
Related Vulnerabilities
A weakness in Automated Logic and Carrier i-Vu Gen5 router on driver version drv_gen5_106-01-2380, allows malformed packets to be sent …
Taiko Alethia is an Ethereum-equivalent, permissionless, based rollup designed to scale Ethereum without compromising its fundamental properties. In 2.3.1 and …
Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting …
Memory corruption while parsing the ML IE due to invalid frame content.
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can be keyed by a signed integer, …
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers …