WiFi Firmware T2LM Info Elem Mem Corrupt
CVE-2024-49839 Published on February 3, 2025
Buffer Over-read in WLAN Host Cmn
Memory corruption during management frame processing due to mismatch in T2LM info element.
Vulnerability Analysis
CVE-2024-49839 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity, and a small impact on availability.
Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
NONE
Availability Impact:
LOW
Weakness Type
Buffer Over-read
The software reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer. This typically occurs when the pointer or its index is incremented to a position beyond the bounds of the buffer or when pointer arithmetic results in a position outside of the valid memory location to name a few. This may result in exposure of sensitive information or possibly a crash.
Products Associated with CVE-2024-49839
Want to know whenever a new CVE is published for Google Android? stack.watch will email you.
Affected Versions
Qualcomm, Inc. Snapdragon:- Version AR8035 is affected.
- Version CSR8811 is affected.
- Version FastConnect 6700 is affected.
- Version FastConnect 6900 is affected.
- Version FastConnect 7800 is affected.
- Version Immersive Home 214 Platform is affected.
- Version Immersive Home 216 Platform is affected.
- Version Immersive Home 316 Platform is affected.
- Version Immersive Home 318 Platform is affected.
- Version Immersive Home 3210 Platform is affected.
- Version Immersive Home 326 Platform is affected.
- Version IPQ5010 is affected.
- Version IPQ5028 is affected.
- Version IPQ5300 is affected.
- Version IPQ5302 is affected.
- Version IPQ5312 is affected.
- Version IPQ5332 is affected.
- Version IPQ6000 is affected.
- Version IPQ6010 is affected.
- Version IPQ6018 is affected.
- Version IPQ6028 is affected.
- Version IPQ8070A is affected.
- Version IPQ8071A is affected.
- Version IPQ8072A is affected.
- Version IPQ8074A is affected.
- Version IPQ8076 is affected.
- Version IPQ8076A is affected.
- Version IPQ8078 is affected.
- Version IPQ8078A is affected.
- Version IPQ8173 is affected.
- Version IPQ8174 is affected.
- Version IPQ9008 is affected.
- Version IPQ9048 is affected.
- Version IPQ9554 is affected.
- Version IPQ9570 is affected.
- Version IPQ9574 is affected.
- Version QAM8255P is affected.
- Version QAM8295P is affected.
- Version QAM8620P is affected.
- Version QAM8650P is affected.
- Version QAM8775P is affected.
- Version QAMSRV1H is affected.
- Version QAMSRV1M is affected.
- Version QCA0000 is affected.
- Version QCA4024 is affected.
- Version QCA6391 is affected.
- Version QCA6554A is affected.
- Version QCA6564AU is affected.
- Version QCA6574 is affected.
- Version QCA6574A is affected.
- Version QCA6574AU is affected.
- Version QCA6584AU is affected.
- Version QCA6595 is affected.
- Version QCA6595AU is affected.
- Version QCA6678AQ is affected.
- Version QCA6688AQ is affected.
- Version QCA6696 is affected.
- Version QCA6698AQ is affected.
- Version QCA6777AQ is affected.
- Version QCA6787AQ is affected.
- Version QCA6797AQ is affected.
- Version QCA8075 is affected.
- Version QCA8081 is affected.
- Version QCA8082 is affected.
- Version QCA8084 is affected.
- Version QCA8085 is affected.
- Version QCA8337 is affected.
- Version QCA8386 is affected.
- Version QCA9888 is affected.
- Version QCA9889 is affected.
- Version QCC2073 is affected.
- Version QCC2076 is affected.
- Version QCC710 is affected.
- Version QCF8000 is affected.
- Version QCF8000SFP is affected.
- Version QCF8001 is affected.
- Version QCM5430 is affected.
- Version QCM6490 is affected.
- Version QCM8550 is affected.
- Version QCN5022 is affected.
- Version QCN5024 is affected.
- Version QCN5052 is affected.
- Version QCN5122 is affected.
- Version QCN5124 is affected.
- Version QCN5152 is affected.
- Version QCN5154 is affected.
- Version QCN5164 is affected.
- Version QCN6023 is affected.
- Version QCN6024 is affected.
- Version QCN6112 is affected.
- Version QCN6122 is affected.
- Version QCN6132 is affected.
- Version QCN6224 is affected.
- Version QCN6274 is affected.
- Version QCN6402 is affected.
- Version QCN6412 is affected.
- Version QCN6422 is affected.
- Version QCN6432 is affected.
- Version QCN9000 is affected.
- Version QCN9012 is affected.
- Version QCN9022 is affected.
- Version QCN9024 is affected.
- Version QCN9070 is affected.
- Version QCN9072 is affected.
- Version QCN9074 is affected.
- Version QCN9100 is affected.
- Version QCN9160 is affected.
- Version QCN9274 is affected.
- Version QCS5430 is affected.
- Version QCS615 is affected.
- Version QCS6490 is affected.
- Version QCS7230 is affected.
- Version QCS8250 is affected.
- Version QCS8300 is affected.
- Version QCS8550 is affected.
- Version QCS9100 is affected.
- Version QFW7114 is affected.
- Version QFW7124 is affected.
- Version Qualcomm Video Collaboration VC3 Platform is affected.
- Version Qualcomm Video Collaboration VC5 Platform is affected.
- Version QXM8083 is affected.
- Version SA6155P is affected.
- Version SA7255P is affected.
- Version SA7775P is affected.
- Version SA8155P is affected.
- Version SA8195P is affected.
- Version SA8255P is affected.
- Version SA8295P is affected.
- Version SA8530P is affected.
- Version SA8540P is affected.
- Version SA8620P is affected.
- Version SA8650P is affected.
- Version SA8770P is affected.
- Version SA8775P is affected.
- Version SA9000P is affected.
- Version SDX55 is affected.
- Version SDX65M is affected.
- Version SG8275P is affected.
- Version SM6650 is affected.
- Version SM7635 is affected.
- Version SM7675 is affected.
- Version SM7675P is affected.
- Version SM8550P is affected.
- Version SM8635 is affected.
- Version SM8635P is affected.
- Version SM8750 is affected.
- Version SM8750P is affected.
- Version Snapdragon 8 Gen 2 Mobile Platform is affected.
- Version Snapdragon 8 Gen 3 Mobile Platform is affected.
- Version Snapdragon 8+ Gen 2 Mobile Platform is affected.
- Version Snapdragon AR1 Gen 1 Platform is affected.
- Version Snapdragon AR1 Gen 1 Platform "Luna1" is affected.
- Version Snapdragon AR2 Gen 1 Platform is affected.
- Version Snapdragon Auto 5G Modem-RF Gen 2 is affected.
- Version Snapdragon X65 5G Modem-RF System is affected.
- Version Snapdragon X72 5G Modem-RF System is affected.
- Version Snapdragon X75 5G Modem-RF System is affected.
- Version SRV1H is affected.
- Version SRV1L is affected.
- Version SRV1M is affected.
- Version SSG2115P is affected.
- Version SSG2125P is affected.
- Version SXR1230P is affected.
- Version SXR2230P is affected.
- Version SXR2250P is affected.
- Version SXR2330P is affected.
- Version WCD9340 is affected.
- Version WCD9370 is affected.
- Version WCD9375 is affected.
- Version WCD9378 is affected.
- Version WCD9380 is affected.
- Version WCD9385 is affected.
- Version WCD9390 is affected.
- Version WCD9395 is affected.
- Version WCN6450 is affected.
- Version WCN6650 is affected.
- Version WCN6755 is affected.
- Version WCN7860 is affected.
- Version WCN7861 is affected.
- Version WCN7880 is affected.
- Version WCN7881 is affected.
- Version WSA8830 is affected.
- Version WSA8832 is affected.
- Version WSA8835 is affected.
- Version WSA8840 is affected.
- Version WSA8845 is affected.
- Version WSA8845H is affected.
Exploit Probability
EPSS
0.19%
Percentile
41.01%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.