CVE-2024-21460
Severity CVSS v4.0:
Pending analysis
Type:
CWE-330
Use of Insufficiently Random Value
Publication date:
01/07/2024
Last modified:
02/07/2024
Description
Information disclosure when ASLR relocates the IMEM and Secure DDR portions as one chunk in virtual address space.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:qcm8550:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:qcs8550_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:qcs8550:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:sg8275p_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:sg8275p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:sm8550p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:snapdragon_8_gen_2_mobile_platform:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:snapdragon_8\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page