CVE-2024-33071

Transient DOS while parsing the MBSSID IE from the beacons when IE length is 0.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:mdm9628:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

History

16 Oct 2024, 19:41

Type Values Removed Values Added
CWE CWE-125
First Time Qualcomm qca6574au Firmware
Qualcomm qca6564au Firmware
Qualcomm qca6564a
Qualcomm qca6574a
Qualcomm qca6574a Firmware
Qualcomm mdm9628
Qualcomm qca6574au
Qualcomm qca6564au
Qualcomm
Qualcomm mdm9628 Firmware
Qualcomm qca6564a Firmware
CPE cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:mdm9628:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*
Summary
  • (es) DOS transitorio al analizar el IE MBSSID de las balizas cuando la longitud de IE es 0.
References () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html - () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html - Vendor Advisory

07 Oct 2024, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-07 13:15

Updated : 2024-10-16 19:41


NVD link : CVE-2024-33071

Mitre link : CVE-2024-33071

CVE.ORG link : CVE-2024-33071


JSON object : View

Products Affected

qualcomm

  • qca6564a_firmware
  • qca6564au_firmware
  • qca6574au_firmware
  • mdm9628_firmware
  • qca6564a
  • qca6574au
  • qca6564au
  • qca6574a_firmware
  • mdm9628
  • qca6574a
CWE
CWE-125

Out-of-bounds Read

CWE-126

Buffer Over-read