CVE-2024-43064

Summary

Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonQAM8255Paffected
Qualcomm, Inc.SnapdragonQAM8295Paffected
Qualcomm, Inc.SnapdragonQAM8620Paffected
Qualcomm, Inc.SnapdragonQAM8650Paffected
Qualcomm, Inc.SnapdragonQAM8775Paffected
Qualcomm, Inc.SnapdragonQAMSRV1Haffected
Qualcomm, Inc.SnapdragonQAMSRV1Maffected
Qualcomm, Inc.SnapdragonQCA6574AUaffected
Qualcomm, Inc.SnapdragonQCA6595affected
Qualcomm, Inc.SnapdragonQCA6595AUaffected
Qualcomm, Inc.SnapdragonQCA6688AQaffected
Qualcomm, Inc.SnapdragonQCA6696affected
Qualcomm, Inc.SnapdragonQCA6698AQaffected
Qualcomm, Inc.SnapdragonSA7255Paffected
Qualcomm, Inc.SnapdragonSA7775Paffected
Qualcomm, Inc.SnapdragonSA8255Paffected
Qualcomm, Inc.SnapdragonSA8295Paffected
Qualcomm, Inc.SnapdragonSA8540Paffected
Qualcomm, Inc.SnapdragonSA8620Paffected
Qualcomm, Inc.SnapdragonSA8650Paffected
Qualcomm, Inc.SnapdragonSA8770Paffected
Qualcomm, Inc.SnapdragonSA8775Paffected
Qualcomm, Inc.SnapdragonSA9000Paffected
Qualcomm, Inc.SnapdragonSDM429Waffected
Qualcomm, Inc.SnapdragonSnapdragon 429 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSRV1Haffected
Qualcomm, Inc.SnapdragonSRV1Laffected
Qualcomm, Inc.SnapdragonSRV1Maffected
Qualcomm, Inc.SnapdragonWCN3620affected
Qualcomm, Inc.SnapdragonWCN3660Baffected

Weaknesses

  • CWE-264: CWE-264 Permissions, Privileges, and Access Controls

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References