CVE-2024-43064

Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:qam8620p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qam8620p:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qca6688aq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6688aq:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:sa8540p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8540p:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_429_mobile_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_429_mobile:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:srv1l_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:srv1l:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:wcn3620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3620:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

History

13 Jan 2025, 21:50

Type	Values Removed	Values Added
CWE		CWE-770
Summary		(es) Consumo descontrolado de recursos cuando un controlador, una aplicación o un cliente SMMU intenta acceder a los registros globales a través de SMMU.
CPE		cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:::::::* cpe:2.3:h:qualcomm:srv1l:-:::::::* cpe:2.3:o:qualcomm:qca6595au_firmware:-:::::::* cpe:2.3:o:qualcomm:sa9000p_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6688aq:-:::::::* cpe:2.3:o:qualcomm:sa8650p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8775p_firmware:-:::::::* cpe:2.3:o:qualcomm:qam8620p_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6595au:-:::::::* cpe:2.3:h:qualcomm:sa8295p:-:::::::* cpe:2.3:h:qualcomm:sa8620p:-:::::::* cpe:2.3:h:qualcomm:qam8295p:-:::::::* cpe:2.3:o:qualcomm:qca6595_firmware:-:::::::* cpe:2.3:o:qualcomm:sa7775p_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8650p:-:::::::* cpe:2.3:h:qualcomm:srv1m:-:::::::* cpe:2.3:o:qualcomm:wcn3660b_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm429w_firmware:-:::::::* cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:::::::* cpe:2.3:o:qualcomm:qam8255p_firmware:-:::::::* cpe:2.3:o:qualcomm:srv1h_firmware:-:::::::* cpe:2.3:o:qualcomm:srv1l_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8295p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa7255p_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3620_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8255p_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8255p:-:::::::* cpe:2.3:h:qualcomm:wcn3620:-:::::::* cpe:2.3:h:qualcomm:snapdragon_429_mobile:-:::::::* cpe:2.3:o:qualcomm:qca6688aq_firmware:-:::::::* cpe:2.3:h:qualcomm:sa7255p:-:::::::* cpe:2.3:h:qualcomm:sa8540p:-:::::::* cpe:2.3:h:qualcomm:srv1h:-:::::::* cpe:2.3:h:qualcomm:qam8650p:-:::::::* cpe:2.3:h:qualcomm:qca6698aq:-:::::::* cpe:2.3:o:qualcomm:sa8540p_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_429_mobile_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:h:qualcomm:qam8775p:-:::::::* cpe:2.3:h:qualcomm:sdm429w:-:::::::* cpe:2.3:o:qualcomm:srv1m_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6698aq_firmware:-:::::::* cpe:2.3:h:qualcomm:qam8255p:-:::::::* cpe:2.3:o:qualcomm:qca6696_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8770p_firmware:-:::::::* cpe:2.3:h:qualcomm:qam8620p:-:::::::* cpe:2.3:h:qualcomm:sa8770p:-:::::::* cpe:2.3:h:qualcomm:qamsrv1m:-:::::::* cpe:2.3:h:qualcomm:qca6574au:-:::::::* cpe:2.3:h:qualcomm:qca6595:-:::::::* cpe:2.3:o:qualcomm:qam8295p_firmware:-:::::::* cpe:2.3:o:qualcomm:qam8775p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8620p_firmware:-:::::::* cpe:2.3:h:qualcomm:qamsrv1h:-:::::::* cpe:2.3:h:qualcomm:qca6696:-:::::::* cpe:2.3:o:qualcomm:qam8650p_firmware:-:::::::* cpe:2.3:h:qualcomm:sa7775p:-:::::::* cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::* cpe:2.3:h:qualcomm:sa9000p:-:::::::* cpe:2.3:h:qualcomm:sa8775p:-:::::::*
First Time		Qualcomm sa8540p Qualcomm qam8295p Firmware Qualcomm sa8770p Firmware Qualcomm sa8775p Qualcomm qamsrv1h Qualcomm qca6696 Firmware Qualcomm qca6574au Firmware Qualcomm sa8295p Firmware Qualcomm srv1l Qualcomm sa7255p Firmware Qualcomm srv1m Firmware Qualcomm qca6688aq Qualcomm qam8775p Firmware Qualcomm srv1h Firmware Qualcomm qca6595 Firmware Qualcomm sa7255p Qualcomm qca6688aq Firmware Qualcomm qca6595au Qualcomm sa8770p Qualcomm qam8255p Qualcomm qca6574au Qualcomm srv1l Firmware Qualcomm sa8255p Firmware Qualcomm sa8620p Qualcomm qca6698aq Qualcomm qca6595 Qualcomm qamsrv1m Qualcomm srv1m Qualcomm qam8775p Qualcomm qam8295p Qualcomm sdm429w Firmware Qualcomm snapdragon 429 Mobile Qualcomm wcn3620 Firmware Qualcomm sa8620p Firmware Qualcomm qam8620p Qualcomm qamsrv1m Firmware Qualcomm sa8255p Qualcomm snapdragon 429 Mobile Firmware Qualcomm sa9000p Firmware Qualcomm qca6698aq Firmware Qualcomm qam8620p Firmware Qualcomm sa8775p Firmware Qualcomm wcn3660b Firmware Qualcomm qca6595au Firmware Qualcomm srv1h Qualcomm qamsrv1h Firmware Qualcomm sa8650p Firmware Qualcomm qca6696 Qualcomm sa7775p Qualcomm sa9000p Qualcomm sa8295p Qualcomm Qualcomm sa7775p Firmware Qualcomm wcn3620 Qualcomm sa8540p Firmware Qualcomm sdm429w Qualcomm wcn3660b Qualcomm sa8650p Qualcomm qam8255p Firmware Qualcomm qam8650p Firmware Qualcomm qam8650p
References	~~() https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html -~~	() https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html - Vendor Advisory

06 Jan 2025, 11:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-06 11:15

Updated : 2025-01-13 21:50

NVD link : CVE-2024-43064

Mitre link : CVE-2024-43064

CVE.ORG link : CVE-2024-43064

JSON object : View

Products Affected

qualcomm

wcn3620_firmware
qca6688aq
sa8775p_firmware
qca6698aq
srv1h
srv1l
qca6595_firmware
qamsrv1m_firmware
sa7255p
qca6574au_firmware
sdm429w
qca6595
qamsrv1h_firmware
qca6696
sa8775p
wcn3660b_firmware
qam8255p_firmware
qca6574au
srv1m
sa8540p
qam8295p_firmware
sa8770p
sa8620p_firmware
wcn3660b
sa7775p
qam8620p
sa8295p
qca6595au
qca6688aq_firmware
sa7775p_firmware
srv1l_firmware
sa8770p_firmware
sdm429w_firmware
snapdragon_429_mobile
snapdragon_429_mobile_firmware
wcn3620
qam8620p_firmware
sa8650p_firmware
qamsrv1m
sa8255p_firmware
srv1h_firmware
qca6698aq_firmware
qca6595au_firmware
sa9000p_firmware
qam8775p_firmware
sa9000p
qam8255p
sa7255p_firmware
sa8255p
sa8620p
srv1m_firmware
sa8650p
qca6696_firmware
sa8540p_firmware
qam8650p
qam8775p
qamsrv1h
qam8650p_firmware
sa8295p_firmware
qam8295p

CWE

CWE-264

Permissions, Privileges, and Access Controls

CWE-770

Allocation of Resources Without Limits or Throttling

7.5 /10