1. Home
  2. Vulnerabilities
  3. CVE-2024-33016
6.8
MEDIUM CVSS 3.1
CVE-2024-33016
Improper Restriction of Operations within the Bounds of a Memory Buffer in Storage
Description

memory corruption when an invalid firehose patch command is invoked.

INFO

Published Date :

Sept. 2, 2024, 12:15 p.m.

Last Modified :

Sept. 3, 2024, 12:59 p.m.

Remotely Exploit :

No

Source :

[email protected]
Affected Products

The following products are affected by CVE-2024-33016 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Qualcomm aqt1000_firmware
2 Qualcomm qam8295p_firmware
3 Qualcomm qca6391_firmware
4 Qualcomm qca6420_firmware
5 Qualcomm qca6426_firmware
6 Qualcomm qca6430_firmware
7 Qualcomm qca6436_firmware
8 Qualcomm qca6574au_firmware
9 Qualcomm qca6595au_firmware
10 Qualcomm qca6696_firmware
11 Qualcomm sa6145p_firmware
12 Qualcomm sa6150p_firmware
13 Qualcomm sa6155p_firmware
14 Qualcomm sa8145p_firmware
15 Qualcomm sa8150p_firmware
16 Qualcomm sa8155p_firmware
17 Qualcomm sa8195p_firmware
18 Qualcomm sa8295p_firmware
19 Qualcomm sd_8_gen1_5g_firmware
20 Qualcomm sd855_firmware
21 Qualcomm sd865_5g_firmware
22 Qualcomm sw5100_firmware
23 Qualcomm sw5100p_firmware
24 Qualcomm wcd9341_firmware
25 Qualcomm wcd9380_firmware
26 Qualcomm wcd9385_firmware
27 Qualcomm wcn3980_firmware
28 Qualcomm wcn3988_firmware
29 Qualcomm wsa8810_firmware
30 Qualcomm wsa8815_firmware
31 Qualcomm wsa8830_firmware
32 Qualcomm wsa8835_firmware
33 Qualcomm 315_5g_iot_modem_firmware
34 Qualcomm ar8035_firmware
35 Qualcomm csr8811_firmware
36 Qualcomm csra6620_firmware
37 Qualcomm csra6640_firmware
38 Qualcomm csrb31024_firmware
39 Qualcomm flight_rb5_5g_platform_firmware
40 Qualcomm ipq6000_firmware
41 Qualcomm ipq6010_firmware
42 Qualcomm ipq6018_firmware
43 Qualcomm ipq6028_firmware
44 Qualcomm ipq9008_firmware
45 Qualcomm ipq9574_firmware
46 Qualcomm qca4024_firmware
47 Qualcomm qca6310_firmware
48 Qualcomm qca6335_firmware
49 Qualcomm qca6421_firmware
50 Qualcomm qca6431_firmware
51 Qualcomm qca6564au_firmware
52 Qualcomm qca6574_firmware
53 Qualcomm qca6574a_firmware
54 Qualcomm qca6584au_firmware
55 Qualcomm qca6595_firmware
56 Qualcomm qca6678aq_firmware
57 Qualcomm qca6698aq_firmware
58 Qualcomm qca8072_firmware
59 Qualcomm qca8075_firmware
60 Qualcomm qca8081_firmware
61 Qualcomm qca8082_firmware
62 Qualcomm qca8084_firmware
63 Qualcomm qca8085_firmware
64 Qualcomm qca8337_firmware
65 Qualcomm qca8386_firmware
66 Qualcomm qca9984_firmware
67 Qualcomm qcm2290_firmware
68 Qualcomm qcm4290_firmware
69 Qualcomm qcm4325_firmware
70 Qualcomm qcm4490_firmware
71 Qualcomm qcm6490_firmware
72 Qualcomm qcn5021_firmware
73 Qualcomm qcn5022_firmware
74 Qualcomm qcn5052_firmware
75 Qualcomm qcn5122_firmware
76 Qualcomm qcn5124_firmware
77 Qualcomm qcn5152_firmware
78 Qualcomm qcn6023_firmware
79 Qualcomm qcn6024_firmware
80 Qualcomm qcn9000_firmware
81 Qualcomm qcn9011_firmware
82 Qualcomm qcn9012_firmware
83 Qualcomm qcn9022_firmware
84 Qualcomm qcn9024_firmware
85 Qualcomm qcn9070_firmware
86 Qualcomm qcn9072_firmware
87 Qualcomm qcn9074_firmware
88 Qualcomm qcn9274_firmware
89 Qualcomm qcs2290_firmware
90 Qualcomm qcs4290_firmware
91 Qualcomm qcs4490_firmware
92 Qualcomm qcs6490_firmware
93 Qualcomm qcs8250_firmware
94 Qualcomm qrb5165m_firmware
95 Qualcomm qrb5165n_firmware
96 Qualcomm qsm8250_firmware
97 Qualcomm qsm8350_firmware
98 Qualcomm sa4150p_firmware
99 Qualcomm sa6155_firmware
100 Qualcomm sa8155_firmware
101 Qualcomm sd_8cx_firmware
102 Qualcomm sd460_firmware
103 Qualcomm sd662_firmware
104 Qualcomm sd730_firmware
105 Qualcomm sd888_firmware
106 Qualcomm sdx55_firmware
107 Qualcomm sg4150p_firmware
108 Qualcomm sm4125_firmware
109 Qualcomm sm6250_firmware
110 Qualcomm sm6250p_firmware
111 Qualcomm sm7250p_firmware
112 Qualcomm sm7315_firmware
113 Qualcomm sm7325p_firmware
114 Qualcomm snapdragon_662_mobile_platform_firmware
115 Qualcomm snapdragon_675_mobile_platform_firmware
116 Qualcomm snapdragon_750g_5g_mobile_platform_firmware
117 Qualcomm snapdragon_ar2_gen_1_platform_firmware
118 Qualcomm snapdragon_auto_5g_modem-rf_firmware
119 Qualcomm snapdragon_x50_5g_modem-rf_system_firmware
120 Qualcomm snapdragon_x55_5g_modem-rf_system_firmware
121 Qualcomm snapdragon_x65_5g_modem-rf_system_firmware
122 Qualcomm snapdragon_xr2_5g_platform_firmware
123 Qualcomm snapdragon_auto_4g_modem_firmware
124 Qualcomm ssg2115p_firmware
125 Qualcomm ssg2125p_firmware
126 Qualcomm sxr1230p_firmware
127 Qualcomm sxr2130_firmware
128 Qualcomm sxr2230p_firmware
129 Qualcomm wcd9326_firmware
130 Qualcomm wcd9335_firmware
131 Qualcomm wcd9340_firmware
132 Qualcomm wcd9360_firmware
133 Qualcomm wcd9370_firmware
134 Qualcomm wcd9375_firmware
135 Qualcomm wcn3910_firmware
136 Qualcomm wcn3950_firmware
137 Qualcomm wcn3990_firmware
138 Qualcomm wcn6740_firmware
139 Qualcomm wsa8832_firmware
140 Qualcomm wcn3660b_firmware
141 Qualcomm wcn3680b_firmware
142 Qualcomm wcn3610_firmware
143 Qualcomm qca6564a_firmware
144 Qualcomm qcs410_firmware
145 Qualcomm qcs610_firmware
146 Qualcomm qca6174a_firmware
147 Qualcomm qca6564_firmware
148 Qualcomm qca9377_firmware
149 Qualcomm qcs8155_firmware
150 Qualcomm sa4155p_firmware
151 Qualcomm sa8540p_firmware
152 Qualcomm sa9000p_firmware
153 Qualcomm sd_675_firmware
154 Qualcomm sd670_firmware
155 Qualcomm sd675_firmware
156 Qualcomm sdx57m_firmware
157 Qualcomm sdx65m_firmware
158 Qualcomm fastconnect_6200_firmware
159 Qualcomm fastconnect_6800_firmware
160 Qualcomm fastconnect_6900_firmware
161 Qualcomm fastconnect_7800_firmware
162 Qualcomm qcm6125_firmware
163 Qualcomm qcn7606_firmware
164 Qualcomm qcs6125_firmware
165 Qualcomm sd835_firmware
166 Qualcomm sdm429w_firmware
167 Qualcomm sdx20m_firmware
168 Qualcomm wcn3620_firmware
169 Qualcomm ar8031_firmware
170 Qualcomm qca6320_firmware
171 Qualcomm snapdragon_850_mobile_compute_platform_firmware
172 Qualcomm snapdragon_xr1_platform_firmware
173 Qualcomm sxr1120_firmware
174 Qualcomm vision_intelligence_300_platform_firmware
175 Qualcomm vision_intelligence_400_platform_firmware
176 Qualcomm wcd9371_firmware
177 Qualcomm fastconnect_6700_firmware
178 Qualcomm smart_audio_400_platform_firmware
179 Qualcomm snapdragon_4_gen_1_mobile_platform_firmware
180 Qualcomm snapdragon_460_mobile_platform_firmware
181 Qualcomm snapdragon_480_5g_mobile_platform_firmware
182 Qualcomm snapdragon_665_mobile_platform_firmware
183 Qualcomm snapdragon_670_mobile_platform_firmware
184 Qualcomm snapdragon_680_4g_mobile_platform_firmware
185 Qualcomm snapdragon_690_5g_mobile_platform_firmware
186 Qualcomm snapdragon_695_5g_mobile_platform_firmware
187 Qualcomm snapdragon_710_mobile_platform_firmware
188 Qualcomm snapdragon_712_mobile_platform_firmware
189 Qualcomm snapdragon_720g_mobile_platform_firmware
190 Qualcomm snapdragon_835_mobile_pc_platform_firmware
191 Qualcomm snapdragon_845_mobile_platform_firmware
192 Qualcomm snapdragon_855_mobile_platform_firmware
193 Qualcomm snapdragon_778g_5g_mobile_platform_firmware
194 Qualcomm snapdragon_780g_5g_mobile_platform_firmware
195 Qualcomm snapdragon_8_gen_1_mobile_platform_firmware
196 Qualcomm snapdragon_865_5g_mobile_platform_firmware
197 Qualcomm snapdragon_888_5g_mobile_platform_firmware
198 Qualcomm wcn3999_firmware
199 Qualcomm ipq6005_firmware
200 Qualcomm qca4004_firmware
201 Qualcomm qcn5121_firmware
202 Qualcomm wcd9306_firmware
203 Qualcomm qca0000_firmware
204 Qualcomm qts110_firmware
205 Qualcomm qam8255p_firmware
206 Qualcomm qca6797aq_firmware
207 Qualcomm qcs8550_firmware
208 Qualcomm sa8255p_firmware
209 Qualcomm c-v2x_9150_firmware
210 Qualcomm qcc710_firmware
211 Qualcomm snapdragon_x24_lte_modem_firmware
212 Qualcomm snapdragon_x70_modem-rf_system_firmware
213 Qualcomm 9205_lte_modem_firmware
214 Qualcomm snapdragon_wear_1300_platform_firmware
215 Qualcomm snapdragon_x20_lte_modem_firmware
216 Qualcomm qam8650p_firmware
217 Qualcomm qam8775p_firmware
218 Qualcomm robotics_rb3_platform_firmware
219 Qualcomm robotics_rb5_platform_firmware
220 Qualcomm snapdragon_429_mobile_platform_firmware
221 Qualcomm immersive_home_3210_platform_firmware
222 Qualcomm immersive_home_326_platform_firmware
223 Qualcomm ipq9554_firmware
224 Qualcomm ipq9570_firmware
225 Qualcomm qcm8550_firmware
226 Qualcomm qcn9013_firmware
227 Qualcomm qcs7230_firmware
228 Qualcomm qualcomm_video_collaboration_vc1_platform_firmware
229 Qualcomm qualcomm_video_collaboration_vc3_platform_firmware
230 Qualcomm qualcomm_video_collaboration_vc5_platform_firmware
231 Qualcomm sm8550p_firmware
232 Qualcomm snapdragon_4_gen_2_mobile_platform_firmware
233 Qualcomm snapdragon_8_gen_2_mobile_platform_firmware
234 Qualcomm wcd9390_firmware
235 Qualcomm wcd9395_firmware
236 Qualcomm wsa8840_firmware
237 Qualcomm wsa8845_firmware
238 Qualcomm wsa8845h_firmware
239 Qualcomm qdu1000_firmware
240 Qualcomm qdu1010_firmware
241 Qualcomm qdu1110_firmware
242 Qualcomm qdu1210_firmware
243 Qualcomm qdx1010_firmware
244 Qualcomm qdx1011_firmware
245 Qualcomm qru1032_firmware
246 Qualcomm qru1052_firmware
247 Qualcomm qru1062_firmware
248 Qualcomm sg8275p_firmware
249 Qualcomm ipq5332_firmware
250 Qualcomm qcf8001_firmware
251 Qualcomm qcn6224_firmware
252 Qualcomm qcn6274_firmware
253 Qualcomm qfw7114_firmware
254 Qualcomm qfw7124_firmware
255 Qualcomm snapdragon_x75_5g_modem-rf_system_firmware
256 Qualcomm sa8770p_firmware
257 Qualcomm sa8775p_firmware
258 Qualcomm snapdragon_auto_5g_modem-rf_gen_2_firmware
259 Qualcomm mdm9205s_firmware
260 Qualcomm qcm5430_firmware
261 Qualcomm qcs5430_firmware
262 Qualcomm sc8380xp_firmware
263 Qualcomm qcf8000_firmware
264 Qualcomm qamsrv1h_firmware
265 Qualcomm sa8650p_firmware
266 Qualcomm srv1h_firmware
267 Qualcomm qep8111_firmware
268 Qualcomm snapdragon_8_gen_3_mobile_platform_firmware
269 Qualcomm snapdragon_x35_5g_modem-rf_system_firmware
270 Qualcomm qamsrv1m_firmware
271 Qualcomm srv1m_firmware
272 Qualcomm ipq5302_firmware
273 Qualcomm ipq5312_firmware
274 Qualcomm qcn6402_firmware
275 Qualcomm qcn6412_firmware
276 Qualcomm qcn6422_firmware
277 Qualcomm qcn6432_firmware
278 Qualcomm qca6688aq_firmware
279 Qualcomm ipq5300_firmware
280 Qualcomm sa7255p_firmware
281 Qualcomm sa7775p_firmware
282 Qualcomm sa8620p_firmware
283 Qualcomm snapdragon_x72_5g_modem-rf_system_firmware
284 Qualcomm qam8620p_firmware
285 Qualcomm sa8530p_firmware
286 Qualcomm sm6370_firmware
287 Qualcomm snapdragon_x62_5g_modem-rf_system_firmware
288 Qualcomm srv1l_firmware
289 Qualcomm sxr2250p_firmware
290 Qualcomm talynplus_firmware
291 Qualcomm sm8635_firmware
292 Qualcomm wcn6755_firmware
293 Qualcomm qcn9160_firmware
294 Qualcomm qxm8083_firmware
295 Qualcomm sdx61_firmware
296 Qualcomm sm4635_firmware
297 Qualcomm wcd9378_firmware
: Total Affected Vendor : 1 | Products : 297
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 3.1 MEDIUM [email protected]
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-33016.

URL Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-33016 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-33016 weaknesses.

CAPEC-8: Buffer Overflow in an API Call Buffer Overflow in an API Call CAPEC-9: Buffer Overflow in Local Command-Line Utilities Buffer Overflow in Local Command-Line Utilities CAPEC-10: Buffer Overflow via Environment Variables Buffer Overflow via Environment Variables CAPEC-14: Client-side Injection-induced Buffer Overflow Client-side Injection-induced Buffer Overflow CAPEC-24: Filter Failure through Buffer Overflow Filter Failure through Buffer Overflow CAPEC-42: MIME Conversion MIME Conversion CAPEC-44: Overflow Binary Resource File Overflow Binary Resource File CAPEC-45: Buffer Overflow via Symbolic Links Buffer Overflow via Symbolic Links CAPEC-46: Overflow Variables and Tags Overflow Variables and Tags CAPEC-47: Buffer Overflow via Parameter Expansion Buffer Overflow via Parameter Expansion CAPEC-100: Overflow Buffers Overflow Buffers CAPEC-123: Buffer Manipulation Buffer Manipulation

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-33016 vulnerability anywhere in the article.

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2024-33016 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Received by [email protected]

    Sep. 02, 2024

    Action Type Old Value New Value
    Added Description memory corruption when an invalid firehose patch command is invoked.
    Added Reference Qualcomm, Inc. https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html [No types assigned]
    Added CWE Qualcomm, Inc. CWE-119
    Added CVSS V3.1 Qualcomm, Inc. AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
Base CVSS Score: 6.8
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact