CVE-2024-33035 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.4 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
qualcomm	CNA	8.4 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 32%

Vendor	Product	Version
qualcomm	qam8255p_firmware	-
qualcomm	qam8620p_firmware	-
qualcomm	qam8650p_firmware	-
qualcomm	qam8775p_firmware	-
qualcomm	qamsrv1h_firmware	-
qualcomm	qamsrv1m_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qca6426_firmware	-
qualcomm	qca6436_firmware	-
qualcomm	qca6574_firmware	-
qualcomm	qca6574a_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qcm4490_firmware	-
qualcomm	qcs4490_firmware	-
qualcomm	qcs6490_firmware	-
qualcomm	video_collaboration_vc3_platform_firmware	-
qualcomm	sa4150p_firmware	-
qualcomm	sa4155p_firmware	-
qualcomm	sa6145p_firmware	-
qualcomm	sa6150p_firmware	-
qualcomm	sa6155_firmware	-
qualcomm	sa6155p_firmware	-
qualcomm	sa7255p_firmware	-
qualcomm	sa7775p_firmware	-
qualcomm	sa8145p_firmware	-
qualcomm	sa8150p_firmware	-
qualcomm	sa8155_firmware	-
qualcomm	sa8155p_firmware	-
qualcomm	sa8195p_firmware	-
qualcomm	sa8255p_firmware	-
qualcomm	sa8530p_firmware	-
qualcomm	sa8540p_firmware	-
qualcomm	sa8620p_firmware	-
qualcomm	sa8650p_firmware	-
qualcomm	sa8770p_firmware	-
qualcomm	sa8775p_firmware	-
qualcomm	sa9000p_firmware	-
qualcomm	sd_8_gen1_5g_firmware	-
qualcomm	fastconnect_6200_firmware	-
qualcomm	fastconnect_6700_firmware	-
qualcomm	fastconnect_6800_firmware	-
qualcomm	fastconnect_6900_firmware	-
qualcomm	fastconnect_7800_firmware	-
qualcomm	sd865_5g_firmware	-
qualcomm	sm4125_firmware	-
qualcomm	sm6370_firmware	-
qualcomm	snapdragon_4_gen_1_mobile_platform_firmware	-
qualcomm	snapdragon_4_gen_2_mobile_platform_firmware	-
qualcomm	snapdragon_460_mobile_platform_firmware	-
qualcomm	snapdragon_480_5g_mobile_platform_firmware	-
qualcomm	snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmware	-
qualcomm	snapdragon_662_mobile_platform_firmware	-
qualcomm	snapdragon_680_4g_mobile_platform_firmware	-
qualcomm	snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmware	-
qualcomm	snapdragon_695_5g_mobile_platform_firmware	-
qualcomm	snapdragon_8_gen_1_mobile_platform_firmware	-
qualcomm	snapdragon_8\+_gen_1_mobile_platform_firmware	-
qualcomm	snapdragon_865_5g_mobile_platform_firmware	-
qualcomm	snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmware	-
qualcomm	snapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmware	-
qualcomm	snapdragon_w5\+_gen_1_wearable_platform_firmware	-
qualcomm	snapdragon_x55_5g_modem-rf_system_firmware	-
qualcomm	snapdragon_xr2_5g_platform_firmware	-
qualcomm	srv1h_firmware	-
qualcomm	srv1l_firmware	-
qualcomm	srv1m_firmware	-
qualcomm	ssg2115p_firmware	-
qualcomm	ssg2125p_firmware	-
qualcomm	sw5100_firmware	-
qualcomm	sw5100p_firmware	-
qualcomm	sxr1230p_firmware	-
qualcomm	sxr2130_firmware	-
qualcomm	talynplus_firmware	-
qualcomm	wcd9326_firmware	-
qualcomm	wcd9335_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcn3910_firmware	-
qualcomm	wcn3950_firmware	-
qualcomm	wcn3980_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8832_firmware	-
qualcomm	wsa8835_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-190 - Integer Overflow or Wraparound
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html