CVE-2024-38425
07.10.2024, 13:15
Information disclosure while sending implicit broadcast containing APP launch information.Enginsight
| Vendor | Product | Version |
|---|---|---|
| qualcomm | wsa8835_firmware | - |
| qualcomm | wsa8830_firmware | - |
| qualcomm | wcd9380_firmware | - |
| qualcomm | snapdragon_8\+_gen_2_mobile_platform_firmware | - |
| qualcomm | snapdragon_8\+_gen_1_mobile_platform_firmware | - |
| qualcomm | snapdragon_8_gen_3_mobile_platform_firmware | - |
| qualcomm | snapdragon_8_gen_2_mobile_platform_firmware | - |
| qualcomm | snapdragon_8_gen_1_mobile_platform_firmware | - |
| qualcomm | snapdragon_7\+_gen_2_mobile_platform_firmware | - |
| qualcomm | snapdragon_7_gen_1_mobile_platform_firmware | - |
| qualcomm | snapdragon_695_5g_mobile_platform_firmware | - |
| qualcomm | snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmware | - |
| qualcomm | snapdragon_680_4g_mobile_platform_firmware | - |
| qualcomm | snapdragon_662_mobile_platform_firmware | - |
| qualcomm | snapdragon_6_gen_1_mobile_platform_firmware | - |
| qualcomm | snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmware | - |
| qualcomm | snapdragon_480_5g_mobile_platform_firmware | - |
| qualcomm | snapdragon_4_gen_2_mobile_platform_firmware | - |
| qualcomm | snapdragon_4_gen_1_mobile_platform_firmware | - |
| qualcomm | sm8750_firmware | - |
| qualcomm | sm8635_firmware | - |
| qualcomm | sm7435_firmware | - |
| qualcomm | fastconnect_7800_firmware | - |
| qualcomm | fastconnect_6900_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-285 - Improper AuthorizationThe software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.
- CWE-863 - Incorrect AuthorizationThe software performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.