CVE-2024-21453
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Transient DOS while decoding message of size that exceeds the available system memory.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Qualcomm, Inc. | Snapdragon | C-V2X 9150 | affected |
| Qualcomm, Inc. | Snapdragon | QCS410 | affected |
| Qualcomm, Inc. | Snapdragon | QCS610 | affected |
| Qualcomm, Inc. | Snapdragon | Qualcomm Video Collaboration VC1 Platform | affected |
| Qualcomm, Inc. | Snapdragon | Qualcomm Video Collaboration VC3 Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon Auto 5G Modem-RF | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon Auto 4G Modem | affected |
| Qualcomm, Inc. | Snapdragon | WCD9341 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9370 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3950 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3980 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8810 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8815 | affected |
Weaknesses
- CWE-20: CWE-20 Improper Input Validation
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.