CVE-2024-38408

Published Nov 4, 2024

Last updated a year ago

CVSS critical 9.1
Mobile device

Overview

Description
Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
Source
product-security@qualcomm.com
NVD status
Analyzed
Products
wsa8845h_firmware, wsa8845_firmware, wsa8840_firmware, wsa8835_firmware, wsa8832_firmware, wsa8830_firmware, wsa8815_firmware, wsa8810_firmware, wcn7881_firmware, wcn7880_firmware, wcn7861_firmware, wcn7860_firmware, wcn6755_firmware, wcn6740_firmware, wcn3988_firmware, wcn3980_firmware, wcn3950_firmware, wcd9395_firmware, wcd9390_firmware, wcd9385_firmware, wcd9380_firmware, wcd9375_firmware, wcd9370_firmware, wcd9360_firmware, wcd9341_firmware, wcd9340_firmware, sxr2250p_firmware, sxr2230p_firmware, sxr2130_firmware, sxr1230p_firmware, sw5100p_firmware, sw5100_firmware, ssg2125p_firmware, ssg2115p_firmware, srv1m_firmware, srv1l_firmware, srv1h_firmware, snapdragon_auto_4g_modem_firmware, snapdragon_xr2\+_gen_1_platform_firmware, snapdragon_xr2_5g_platform_firmware, snapdragon_x75_5g_modem-rf_system_firmware, snapdragon_x72_5g_modem-rf_system_firmware, snapdragon_x65_5g_modem-rf_system_firmware, snapdragon_x62_5g_modem-rf_system_firmware, snapdragon_x55_5g_modem-rf_system_firmware, snapdragon_x35_5g_modem-rf_system_firmware, snapdragon_w5\+_gen_1_wearable_platform_firmware, snapdragon_auto_5g_modem-rf_gen_2_firmware, snapdragon_auto_5g_modem-rf_firmware, snapdragon_ar2_gen_1_platform_firmware, snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\,_bb\)_firmware, snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\,_ab\)_firmware, snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\,_af\)_\"poipu_pro\"_firmware, snapdragon_8cx_compute_platform_\(sc8180xp-ac\,_af\)_\"poipu_pro\"_firmware, snapdragon_8cx_compute_platform_\(sc8180x-aa\,_ab\)_firmware, snapdragon_8c_compute_platform_\(sc8180xp-ad\)_\"poipu_lite\"_firmware, snapdragon_8c_compute_platform_\(sc8180x-ad\)_\"poipu_lite\"_firmware, snapdragon_888\+_5g_mobile_platform_firmware, snapdragon_888_5g_mobile_platform_firmware, snapdragon_870_5g_mobile_platform_firmware, snapdragon_865\+_5g_mobile_platform_firmware, snapdragon_865_5g_mobile_platform_firmware, snapdragon_855\+\/860_mobile_platform_firmware, snapdragon_855_mobile_platform_firmware, snapdragon_8\+_gen_2_mobile_platform_firmware, snapdragon_8\+_gen_1_mobile_platform_firmware, snapdragon_8_gen_3_mobile_platform_firmware, snapdragon_8_gen_2_mobile_platform_firmware, snapdragon_8_gen_1_mobile_platform_firmware, snapdragon_7c\+_gen_3_compute_firmware, snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmware, snapdragon_7c_compute_platform_firmware, snapdragon_782g_mobile_platform_firmware, snapdragon_780g_5g_mobile_platform_firmware, snapdragon_778g\+_5g_mobile_platform_firmware, snapdragon_778g_5g_mobile_platform_firmware, snapdragon_768g_5g_mobile_platform_firmware, snapdragon_765g_5g_mobile_platform_firmware, snapdragon_765_5g_mobile_platform_firmware, snapdragon_750g_5g_mobile_platform_firmware, snapdragon_720g_mobile_platform_firmware, snapdragon_695_5g_mobile_platform_firmware, snapdragon_690_5g_mobile_platform_firmware, snapdragon_480\+_5g_mobile_platform_firmware, snapdragon_480_5g_mobile_platform_firmware, snapdragon_4_gen_1_mobile_platform_firmware, sm8750p_firmware, sm8750_firmware, sm8635_firmware, sm8550p_firmware, sm7325p_firmware, sm7315_firmware, sm7250p_firmware, sm6370_firmware, sm6250p_firmware, sm6250_firmware, sg8275p_firmware, sdx61_firmware, sdx55_firmware, sd888_firmware, sd865_5g_firmware, sd855_firmware, sd_8_gen1_5g_firmware, sc8380xp_firmware, sc8180x\+sdx55_firmware, sa9000p_firmware, sa8775p_firmware, sa8770p_firmware, sa8650p_firmware, sa8620p_firmware, sa8295p_firmware, sa8255p_firmware, sa8195p_firmware, sa8155p_firmware, sa8155_firmware, sa8150p_firmware, sa8145p_firmware, sa7775p_firmware, sa7255p_firmware, sa6155p_firmware, sa6155_firmware, sa6150p_firmware, sa6145p_firmware, sa4155p_firmware, sa4150p_firmware, robotics_rb5_platform_firmware, video_collaboration_vc5_platform_firmware, video_collaboration_vc3_platform_firmware, video_collaboration_vc1_platform_firmware, qsm8350_firmware, qsm8250_firmware, qrb5165n_firmware, qrb5165m_firmware, qfw7124_firmware, qfw7114_firmware, qep8111_firmware, qcs9100_firmware, qcs8550_firmware, qcs8250_firmware, qcs7230_firmware, qcs6490_firmware, qcs6125_firmware, qcs5430_firmware, qcs4490_firmware, qcn9274_firmware, qcn9100_firmware, qcn9074_firmware, qcn9072_firmware, qcn9070_firmware, qcn9024_firmware, qcn9022_firmware, qcn9012_firmware, qcn9011_firmware, qcn9003_firmware, qcn9002_firmware, qcn9001_firmware, qcn9000_firmware, qcn7606_firmware, qcn7605_firmware, qcn6274_firmware, qcn6224_firmware, qcn6132_firmware, qcn6122_firmware, qcn6112_firmware, qcn6102_firmware, qcn6100_firmware, qcn6024_firmware, qcn6023_firmware, qcm8550_firmware, qcm6490_firmware, qcm6125_firmware, qcm5430_firmware, qcm4490_firmware, qcc7228_firmware, qcc7226_firmware, qcc7225_firmware, qcc711_firmware, qcc710_firmware, qcc2076_firmware, qcc2073_firmware, qca8337_firmware, qca8081_firmware, qca6797aq_firmware, qca6787aq_firmware, qca6777aq_firmware, qca6698aq_firmware, qca6696_firmware, qca6688aq_firmware, qca6678aq_firmware, qca6595au_firmware, qca6595_firmware, qca6584au_firmware, qca6574au_firmware, qca6574a_firmware, qca6574_firmware, qca6564au_firmware, qca6554a_firmware, qca6436_firmware, qca6431_firmware, qca6430_firmware, qca6426_firmware, qca6421_firmware, qca6420_firmware, qca6391_firmware, qca6175a_firmware, qca6174a_firmware, qca2066_firmware, qca2065_firmware, qca2064_firmware, qca2062_firmware, qca1064_firmware, qca1062_firmware, qamsrv1m_firmware, qamsrv1h_firmware, qam8775p_firmware, qam8650p_firmware, qam8620p_firmware, qam8295p_firmware, qam8255p_firmware, ipq5028_firmware, ipq5010_firmware, immersive_home_318_platform_firmware, immersive_home_316_platform_firmware, immersive_home_216_platform_firmware, immersive_home_214_platform_firmware, flight_rb5_5g_platform_firmware, fastconnect_7800_firmware, fastconnect_6900_firmware, fastconnect_6800_firmware, fastconnect_6700_firmware, fastconnect_6200_firmware, csrb31024_firmware, ar8035_firmware, aqt1000_firmware, 315_5g_iot_modem_firmware

Risk scores

CVSS 3.1

Type
Primary
Base score
9.1
Impact score
5.2
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Severity
CRITICAL

Weaknesses

nvd@nist.gov
NVD-CWE-noinfo
product-security@qualcomm.com
CWE-310

Social media

Hype score
Not currently trending

  1. Samsung Mobile Security Maintenance Release December 2024 https://t.co/fTDHkWhlXC Critical: CVE-2024-38408, CVE-2024-43096, CVE-2024-43770, CVE-2024-43771, CVE-2024-49747, CVE-2024-49748

    @xvonfers

    3 Dec 2024

    1193 Impressions

    1 Retweet

    13 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.CVE-2026-21381
  2. Memory Corruption when handling power management requests with improperly sized input/output buffers.CVE-2026-21382
  3. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21376
  4. Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.CVE-2026-21374
  5. Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.CVE-2026-21380

References

Sources include official advisories and independent security research.