ID
VAR-202502-0097
CVE
CVE-2024-38416
TITLE
Out-of-bounds read vulnerability in multiple Qualcomm products
Trust: 0.8
sources:
JVNDB: JVNDB-2024-018350
DESCRIPTION
Information disclosure during audio playback. AR8035 firmware, c-v2x 9150 firmware, fastconnect 6800 Multiple Qualcomm products, such as firmware, contain an out-of-bounds read vulnerability.Information may be obtained
Trust: 1.62
sources:
NVD: CVE-2024-38416 //
JVNDB: JVNDB-2024-018350
AFFECTED PRODUCTS
| vendor: | qualcomm | model: | video collaboration vc3 platform | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcn6274 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon xr2 5g platform | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa6155p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | c-v2x 9150 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6584au | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6564a | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcd9385 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wsa8832 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcn3980 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcs410 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sxr2130 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcn3660b | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qfw7114 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon 870 5g mobile | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8540p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca8337 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa6145p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcn9074 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon 865 5g mobile | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcd9341 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6574au | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sdx55 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sxr2250p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcs8550 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8195p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | fastconnect 7800 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon 820 automotive | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sd865 5g | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca9377 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8295p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon x55 5g modem-rf | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon x75 5g modem-rf | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcs610 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcc710 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa9000p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon auto 5g modem-rf gen 2 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8530p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca9367 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | msm8996au | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qam8295p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | fastconnect 6800 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wsa8810 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcn3950 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6426 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6696 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6391 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | ar8035 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6436 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon 865\+ 5g mobile | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcd9370 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | fastconnect 6900 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wsa8815 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8150p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6574a | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca8081 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8155p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wsa8835 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qfw7124 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qcn6224 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa6150p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6698aq | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcn3680b | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qca6564au | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | video collaboration vc1 platform | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | snapdragon x72 5g modem-rf | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcd9380 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wsa8830 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | qsm8250 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sxr2230p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | sa8145p | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | qualcomm | model: | wcd9340 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | クアルコム | model: | qca6698aq | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca9367 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6426 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6564au | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6436 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca8337 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6574a | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | fastconnect 6900 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | msm8996au | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6391 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | fastconnect 6800 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qam8295p | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6574au | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6584au | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | c-v2x 9150 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | fastconnect 7800 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | ar8035 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6696 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca8081 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | クアルコム | model: | qca6564a | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-018350 //
NVD: CVE-2024-38416
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2024-018350 //
NVD: CVE-2024-38416 //
NVD: CVE-2024-38416
PROBLEMTYPE DATA
| problemtype: | CWE-126 | Trust: 1.0 |
| problemtype: | CWE-125 | Trust: 1.0 |
| problemtype: | Out-of-bounds read (CWE-125) [NVD evaluation ] | Trust: 0.8 |
| problemtype: | buffer over read (CWE-126) [ others ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-018350 //
NVD: CVE-2024-38416
EXTERNAL IDS
| db: | NVD | id: | CVE-2024-38416 | Trust: 2.6 |
| db: | JVNDB | id: | JVNDB-2024-018350 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-018350 //
NVD: CVE-2024-38416
REFERENCES
| url: | https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html | Trust: 1.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2024-38416 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2024-018350 //
NVD: CVE-2024-38416
SOURCES
| db: | JVNDB | id: | JVNDB-2024-018350 |
| db: | NVD | id: | CVE-2024-38416 |
LAST UPDATE DATE
2025-02-10T23:42:58.340000+00:00
SOURCES UPDATE DATE
| db: | JVNDB | id: | JVNDB-2024-018350 | date: | 2025-02-07T02:16:00 |
| db: | NVD | id: | CVE-2024-38416 | date: | 2025-02-05T13:58:16.960 |
SOURCES RELEASE DATE
| db: | JVNDB | id: | JVNDB-2024-018350 | date: | 2025-02-07T00:00:00 |
| db: | NVD | id: | CVE-2024-38416 | date: | 2025-02-03T17:15:17.677 |