CVE-2024-33065 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.4 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
qualcomm	CNA	8.4 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 12%

Vendor	Product	Version
qualcomm	wsa8845h_firmware	-
qualcomm	wsa8845_firmware	-
qualcomm	wsa8840_firmware	-
qualcomm	wsa8835_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9341_firmware	-
qualcomm	wcd9340_firmware	-
qualcomm	snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\,_bb\)_firmware	-
qualcomm	snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\,_ab\)_firmware	-
qualcomm	snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\,_af\)_\"poipu_pro\"_firmware	-
qualcomm	snapdragon_8cx_compute_platform_\(sc8180xp-ac\,_af\)_\"poipu_pro\"_firmware	-
qualcomm	snapdragon_8cx_compute_platform_\(sc8180x-aa\,_ab\)_firmware	-
qualcomm	snapdragon_8c_compute_platform_\(sc8180xp-ad\)_\"poipu_lite\"_firmware	-
qualcomm	snapdragon_8c_compute_platform_\(sc8180x-ad\)_\"poipu_lite\"_firmware	-
qualcomm	snapdragon_7c\+_gen_3_compute_firmware	-
qualcomm	snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmware	-
qualcomm	snapdragon_7c_compute_platform_\(sc7180-ac\)_firmware	-
qualcomm	sm6250_firmware	-
qualcomm	sc8380xp_firmware	-
qualcomm	sc8180x\+sdx55_firmware	-
qualcomm	qualcomm_video_collaboration_vc3_platform_firmware	-
qualcomm	qcs6490_firmware	-
qualcomm	qcs5430_firmware	-
qualcomm	qcm6490_firmware	-
qualcomm	qcm5430_firmware	-
qualcomm	qca6430_firmware	-
qualcomm	qca6420_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	fastconnect_7800_firmware	-
qualcomm	fastconnect_6900_firmware	-
qualcomm	fastconnect_6800_firmware	-
qualcomm	fastconnect_6700_firmware	-
qualcomm	fastconnect_6200_firmware	-
qualcomm	aqt1000_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html