CVE-2024-23378

Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio

Severity Score

6.7

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

Memory corruption while invoking IOCTL calls for MSM module from the user space during audio playback and record.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Multiple

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-01-16 CVE Reserved
2024-10-07 CVE Published
2024-10-07 CVE Updated
2024-10-08 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CAPEC

References (1)

URL	Tag	Source
https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Qualcomm Search vendor "Qualcomm"		Sa7255p Firmware Search vendor "Qualcomm" for product "Sa7255p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa8620p Firmware Search vendor "Qualcomm" for product "Sa8620p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qam8255p Firmware Search vendor "Qualcomm" for product "Qam8255p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qam8650p Firmware Search vendor "Qualcomm" for product "Qam8650p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qam8775p Firmware Search vendor "Qualcomm" for product "Qam8775p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qamsrv1h Firmware Search vendor "Qualcomm" for product "Qamsrv1h Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qamsrv1m Firmware Search vendor "Qualcomm" for product "Qamsrv1m Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qca6584au Firmware Search vendor "Qualcomm" for product "Qca6584au Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Qca6698aq Firmware Search vendor "Qualcomm" for product "Qca6698aq Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa7255p Firmware Search vendor "Qualcomm" for product "Sa7255p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa7775p Firmware Search vendor "Qualcomm" for product "Sa7775p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa8255p Firmware Search vendor "Qualcomm" for product "Sa8255p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa8620p Firmware Search vendor "Qualcomm" for product "Sa8620p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa8650p Firmware Search vendor "Qualcomm" for product "Sa8650p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa8770p Firmware Search vendor "Qualcomm" for product "Sa8770p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa8775p Firmware Search vendor "Qualcomm" for product "Sa8775p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Sa9000p Firmware Search vendor "Qualcomm" for product "Sa9000p Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Snapdragon Auto 5g Modem-rf Gen 2 Firmware Search vendor "Qualcomm" for product "Snapdragon Auto 5g Modem-rf Gen 2 Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Srv1h Firmware Search vendor "Qualcomm" for product "Srv1h Firmware"				*		-		Affected
Qualcomm Search vendor "Qualcomm"		Srv1m Firmware Search vendor "Qualcomm" for product "Srv1m Firmware"				*		-		Affected