CVE-2024-33071

Summary

Transient DOS while parsing the MBSSID IE from the beacons when IE length is 0.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonMDM9628affected
Qualcomm, Inc.SnapdragonQCA6564Aaffected
Qualcomm, Inc.SnapdragonQCA6564AUaffected
Qualcomm, Inc.SnapdragonQCA6574Aaffected
Qualcomm, Inc.SnapdragonQCA6574AUaffected

Weaknesses

  • CWE-126: CWE-126 Buffer Over-read

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References