8.4
HIGH
CVE-2024-23372
NVIDIA GPU IOCTL Memory Corruption Vulnerability
Description

Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.

INFO

Published Date :

July 1, 2024, 3:15 p.m.

Last Modified :

July 2, 2024, 5:51 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

5.9

Exploitability Score :

2.5
Affected Products

The following products are affected by CVE-2024-23372 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Qualcomm qam8295p_firmware
2 Qualcomm qca6391_firmware
3 Qualcomm qca6574au_firmware
4 Qualcomm qca6595au_firmware
5 Qualcomm qca6696_firmware
6 Qualcomm sa6155p_firmware
7 Qualcomm sa8155p_firmware
8 Qualcomm sa8195p_firmware
9 Qualcomm sa8295p_firmware
10 Qualcomm sd_8_gen1_5g_firmware
11 Qualcomm sw5100_firmware
12 Qualcomm sw5100p_firmware
13 Qualcomm wcd9380_firmware
14 Qualcomm wcd9385_firmware
15 Qualcomm wcn3980_firmware
16 Qualcomm wcn3988_firmware
17 Qualcomm wsa8810_firmware
18 Qualcomm wsa8815_firmware
19 Qualcomm wsa8830_firmware
20 Qualcomm wsa8835_firmware
21 Qualcomm flight_rb5_5g_platform_firmware
22 Qualcomm qca6574_firmware
23 Qualcomm qca6574a_firmware
24 Qualcomm qca6595_firmware
25 Qualcomm qca6678aq_firmware
26 Qualcomm qca6698aq_firmware
27 Qualcomm qcm4325_firmware
28 Qualcomm qcm4490_firmware
29 Qualcomm qcm6490_firmware
30 Qualcomm qcs4490_firmware
31 Qualcomm qcs6490_firmware
32 Qualcomm qcs8250_firmware
33 Qualcomm qrb5165n_firmware
34 Qualcomm sd888_firmware
35 Qualcomm sg4150p_firmware
36 Qualcomm sm7315_firmware
37 Qualcomm sm7325p_firmware
38 Qualcomm sm4350-ac_firmware
39 Qualcomm snapdragon_662_mobile_platform_firmware
40 Qualcomm sm6225-ad_firmware
41 Qualcomm sm7325-ae_firmware
42 Qualcomm sm7325-af_firmware
43 Qualcomm snapdragon_7c\+_gen_3_compute_firmware
44 Qualcomm sm8350-ac_firmware
45 Qualcomm snapdragon_ar2_gen_1_platform_firmware
46 Qualcomm snapdragon_w5\+_gen_1_wearable_platform_firmware
47 Qualcomm ssg2115p_firmware
48 Qualcomm ssg2125p_firmware
49 Qualcomm sxr1230p_firmware
50 Qualcomm sxr2230p_firmware
51 Qualcomm wcd9370_firmware
52 Qualcomm wcd9375_firmware
53 Qualcomm wcn3950_firmware
54 Qualcomm wcn6740_firmware
55 Qualcomm wsa8832_firmware
56 Qualcomm sa9000p_firmware
57 Qualcomm fastconnect_6200_firmware
58 Qualcomm fastconnect_6900_firmware
59 Qualcomm fastconnect_7800_firmware
60 Qualcomm qcm6125_firmware
61 Qualcomm qcs6125_firmware
62 Qualcomm fastconnect_6700_firmware
63 Qualcomm snapdragon_4_gen_1_mobile_platform_firmware
64 Qualcomm snapdragon_460_mobile_platform_firmware
65 Qualcomm snapdragon_480_5g_mobile_platform_firmware
66 Qualcomm snapdragon_680_4g_mobile_platform_firmware
67 Qualcomm snapdragon_695_5g_mobile_platform_firmware
68 Qualcomm snapdragon_778g_5g_mobile_platform_firmware
69 Qualcomm snapdragon_780g_5g_mobile_platform_firmware
70 Qualcomm snapdragon_8_gen_1_mobile_platform_firmware
71 Qualcomm snapdragon_8\+_gen_1_mobile_platform_firmware
72 Qualcomm snapdragon_888_5g_mobile_platform_firmware
73 Qualcomm qam8255p_firmware
74 Qualcomm qca6797aq_firmware
75 Qualcomm qcs8550_firmware
76 Qualcomm sa8255p_firmware
77 Qualcomm qam8650p_firmware
78 Qualcomm qam8775p_firmware
79 Qualcomm robotics_rb5_platform_firmware
80 Qualcomm qcm8550_firmware
81 Qualcomm qcs7230_firmware
82 Qualcomm sm8550p_firmware
83 Qualcomm snapdragon_4_gen_2_mobile_platform_firmware
84 Qualcomm snapdragon_8_gen_2_mobile_platform_firmware
85 Qualcomm snapdragon_8\+_gen_2_mobile_platform_firmware
86 Qualcomm wcd9390_firmware
87 Qualcomm wcd9395_firmware
88 Qualcomm wsa8840_firmware
89 Qualcomm wsa8845_firmware
90 Qualcomm wsa8845h_firmware
91 Qualcomm sg8275p_firmware
92 Qualcomm qca6391
93 Qualcomm qca6574
94 Qualcomm qca6574a
95 Qualcomm qca6574au
96 Qualcomm qca6595
97 Qualcomm qca6595au
98 Qualcomm qca6696
99 Qualcomm qcm6125
100 Qualcomm qcs6125
101 Qualcomm sa6155p
102 Qualcomm sa8155p
103 Qualcomm sa8195p
104 Qualcomm wcd9370
105 Qualcomm wcd9375
106 Qualcomm wcd9380
107 Qualcomm wcd9385
108 Qualcomm wcn3950
109 Qualcomm wcn3980
110 Qualcomm wcn3988
111 Qualcomm wcn6740
112 Qualcomm wsa8810
113 Qualcomm wsa8815
114 Qualcomm wsa8830
115 Qualcomm wsa8835
116 Qualcomm sd888
117 Qualcomm sa8770p_firmware
118 Qualcomm sa8775p_firmware
119 Qualcomm qcm5430_firmware
120 Qualcomm qcs5430_firmware
121 Qualcomm qamsrv1h_firmware
122 Qualcomm sa8650p_firmware
123 Qualcomm srv1h_firmware
124 Qualcomm snapdragon_8_gen_3_mobile_platform_firmware
125 Qualcomm qamsrv1m_firmware
126 Qualcomm srv1m_firmware
127 Qualcomm fastconnect_6700
128 Qualcomm sw5100
129 Qualcomm sw5100p
130 Qualcomm fastconnect_6200
131 Qualcomm fastconnect_6900
132 Qualcomm snapdragon_w5\+_gen_1_wearable_platform
133 Qualcomm qam8295p
134 Qualcomm qcs6490
135 Qualcomm sa8295p
136 Qualcomm fastconnect_7800
137 Qualcomm qam8255p
138 Qualcomm qam8775p
139 Qualcomm qca6698aq
140 Qualcomm sa8255p
141 Qualcomm sa8770p
142 Qualcomm sa8775p
143 Qualcomm sa9000p
144 Qualcomm flight_rb5_5g_platform
145 Qualcomm qam8650p
146 Qualcomm qca6797aq
147 Qualcomm qcm4325
148 Qualcomm qcm4490
149 Qualcomm qcm5430
150 Qualcomm qcm6490
151 Qualcomm qcm8550
152 Qualcomm qcs4490
153 Qualcomm qcs5430
154 Qualcomm qcs7230
155 Qualcomm qcs8250
156 Qualcomm qcs8550
157 Qualcomm qrb5165n
158 Qualcomm robotics_rb5_platform
159 Qualcomm sd_8_gen1_5g
160 Qualcomm sg4150p
161 Qualcomm sg8275p
162 Qualcomm sm7315
163 Qualcomm sm7325p
164 Qualcomm sm8550p
165 Qualcomm snapdragon_4_gen_1_mobile_platform
166 Qualcomm snapdragon_4_gen_2_mobile_platform
167 Qualcomm snapdragon_460_mobile_platform
168 Qualcomm snapdragon_480_5g_mobile_platform
169 Qualcomm snapdragon_662_mobile_platform
170 Qualcomm snapdragon_680_4g_mobile_platform
171 Qualcomm snapdragon_695_5g_mobile_platform
172 Qualcomm snapdragon_778g_5g_mobile_platform
173 Qualcomm snapdragon_780g_5g_mobile_platform
174 Qualcomm snapdragon_7c\+_gen_3_compute
175 Qualcomm snapdragon_8_gen_1_mobile_platform
176 Qualcomm snapdragon_8_gen_2_mobile_platform
177 Qualcomm snapdragon_8\+_gen_1_mobile_platform
178 Qualcomm snapdragon_8\+_gen_2_mobile_platform
179 Qualcomm snapdragon_888_5g_mobile_platform
180 Qualcomm snapdragon_ar2_gen_1_platform
181 Qualcomm ssg2115p
182 Qualcomm ssg2125p
183 Qualcomm sxr1230p
184 Qualcomm sxr2230p
185 Qualcomm wcd9390
186 Qualcomm wcd9395
187 Qualcomm wsa8832
188 Qualcomm wsa8840
189 Qualcomm wsa8845
190 Qualcomm wsa8845h
191 Qualcomm qca6678aq
192 Qualcomm sm4350-ac
193 Qualcomm sm6225-ad
194 Qualcomm sm7325-ae
195 Qualcomm sm7325-af
196 Qualcomm sm8350-ac
197 Qualcomm snapdragon_8_gen_3_mobile_platform
198 Qualcomm qamsrv1h
199 Qualcomm qamsrv1m
200 Qualcomm sa8650p
201 Qualcomm srv1h
202 Qualcomm srv1m
203 Qualcomm sa7255p_firmware
204 Qualcomm sa7255p
205 Qualcomm sa7775p_firmware
206 Qualcomm sa7775p
207 Qualcomm sa8620p_firmware
208 Qualcomm sa8620p
209 Qualcomm qam8620p_firmware
210 Qualcomm qam8620p
211 Qualcomm video_collaboration_vc1_platform_firmware
212 Qualcomm video_collaboration_vc1_platform
213 Qualcomm video_collaboration_vc3_platform_firmware
214 Qualcomm video_collaboration_vc3_platform
215 Qualcomm video_collaboration_vc5_platform_firmware
216 Qualcomm video_collaboration_vc5_platform
217 Qualcomm srv1l_firmware
218 Qualcomm srv1l
219 Qualcomm sxr2250p_firmware
220 Qualcomm sxr2250p
221 Qualcomm talynplus_firmware
222 Qualcomm talynplus
: Total Affected Vendor : 1 | Products : 222
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-23372.

URL Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html Patch Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-23372 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2024-23372 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Jul. 02, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 NIST AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    Changed Reference Type https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html No Types Assigned https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html Patch, Vendor Advisory
    Added CWE NIST CWE-190
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_6200:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:flight_rb5_5g_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:flight_rb5_5g_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qam8620p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qam8620p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6678aq_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6678aq:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qca6797aq:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcm4325_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcm4325:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcm4490_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcm4490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcm5430_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcm5430:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcm6125:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcm6490_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcm6490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcm8550:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs4490_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs4490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs5430_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs5430:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs6125_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs6125:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs6490_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs6490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs7230_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs7230:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs8250_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs8250:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcs8550_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcs8550:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qrb5165n_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qrb5165n:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:video_collaboration_vc1_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:video_collaboration_vc1_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:video_collaboration_vc3_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:video_collaboration_vc5_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:video_collaboration_vc5_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:robotics_rb5_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:robotics_rb5_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sd_8_gen1_5g:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sd888_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sd888:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sg4150p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sg4150p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sg8275p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sg8275p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7315_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7315:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7325p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7325p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8550p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_4_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_4_gen_1_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_4_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_4_gen_2_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_460_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_460_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_480_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_480_5g_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm4350-ac_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm4350-ac:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_662_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_662_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_680_4g_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_680_4g_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm6225-ad_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm6225-ad:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_695_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_695_5g_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_778g_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_778g_5g_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7325-ae_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7325-ae:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_780g_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_780g_5g_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7325-af_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7325-af:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_7c\+_gen_3_compute_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_7c\+_gen_3_compute:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_8_gen_1_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_8_gen_2_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_8_gen_3_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_8_gen_3_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_8\+_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_8\+_gen_1_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_8\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_8\+_gen_2_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_888_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_888_5g_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8350-ac_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8350-ac:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_ar2_gen_1_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_ar2_gen_1_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_w5\+_gen_1_wearable_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_w5\+_gen_1_wearable_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:srv1l_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:srv1l:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:ssg2115p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:ssg2115p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:ssg2125p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:ssg2125p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sxr1230p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sxr1230p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:talynplus_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:talynplus:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn6740_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn6740:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*
  • CVE Received by [email protected]

    Jul. 01, 2024

    Action Type Old Value New Value
    Added Description Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.
    Added Reference Qualcomm, Inc. https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html [No types assigned]
    Added CWE Qualcomm, Inc. CWE-190
    Added CVSS V3.1 Qualcomm, Inc. AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-23372 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-23372 weaknesses.

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: