CVE-2024-45554

Memory corruption during concurrent SSR execution due to race condition on the global maps list.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html	Vendor Advisory Patch

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_429_mobile_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_429_mobile:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8_gen_1_mobile:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_888_5g_mobile_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_888_5g_mobile:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_888\+_5g_mobile_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_888\+_5g_mobile:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:wcn3620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3620:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

History

09 May 2025, 19:17

Type	Values Removed	Values Added
CPE		cpe:2.3:o:qualcomm:sw5100p_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3660b_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8_gen_1_mobile:-:::::::* cpe:2.3:o:qualcomm:sw5100_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9385:-:::::::* cpe:2.3:h:qualcomm:sxr2230p:-:::::::* cpe:2.3:h:qualcomm:sxr2250p:-:::::::* cpe:2.3:o:qualcomm:wsa8832_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3988:-:::::::* cpe:2.3:o:qualcomm:sxr2250p_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8830:-:::::::* cpe:2.3:h:qualcomm:sw5100:-:::::::* cpe:2.3:o:qualcomm:qca6174a_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_888_5g_mobile_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_888\+_5g_mobile:-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:o:qualcomm:wcd9385_firmware:-:::::::* cpe:2.3:h:qualcomm:fastconnect_7800:-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_429_mobile:-:::::::* cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:::::::* cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:::::::* cpe:2.3:h:qualcomm:sdm429w:-:::::::* cpe:2.3:h:qualcomm:wcn3620:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_firmware:-:::::::* cpe:2.3:h:qualcomm:fastconnect_6900:-:::::::* cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6174a:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:o:qualcomm:wcn3988_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8832:-:::::::* cpe:2.3:h:qualcomm:wsa8835:-:::::::* cpe:2.3:o:qualcomm:sxr2230p_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_429_mobile_firmware:-:::::::* cpe:2.3:h:qualcomm:sw5100p:-:::::::* cpe:2.3:o:qualcomm:snapdragon_888\+_5g_mobile_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_888_5g_mobile:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:o:qualcomm:wcn3620_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm429w_firmware:-:::::::*
References	~~() https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html -~~	() https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2025-bulletin.html - Vendor Advisory, Patch
First Time		Qualcomm snapdragon 888\+ 5g Mobile Firmware Qualcomm wcn3988 Firmware Qualcomm sw5100p Firmware Qualcomm sxr2250p Qualcomm sdm429w Qualcomm qca6174a Firmware Qualcomm wsa8835 Qualcomm fastconnect 6900 Firmware Qualcomm sw5100 Firmware Qualcomm sw5100p Qualcomm Qualcomm wcn3980 Firmware Qualcomm wsa8830 Qualcomm snapdragon 429 Mobile Qualcomm sxr2230p Qualcomm wcn3660b Qualcomm snapdragon 888\+ 5g Mobile Qualcomm fastconnect 7800 Qualcomm sdm429w Firmware Qualcomm wcd9385 Qualcomm wsa8832 Qualcomm snapdragon 8 Gen 1 Mobile Qualcomm wcn3620 Qualcomm wsa8832 Firmware Qualcomm wcd9380 Firmware Qualcomm wcn3660b Firmware Qualcomm wcn3980 Qualcomm wsa8830 Firmware Qualcomm wsa8835 Firmware Qualcomm sxr2250p Firmware Qualcomm qca6174a Qualcomm snapdragon 429 Mobile Firmware Qualcomm wcd9380 Qualcomm sw5100 Qualcomm sxr2230p Firmware Qualcomm snapdragon 888 5g Mobile Firmware Qualcomm wcn3620 Firmware Qualcomm wcd9385 Firmware Qualcomm snapdragon 8 Gen 1 Mobile Firmware Qualcomm wcn3988 Qualcomm snapdragon 888 5g Mobile Qualcomm fastconnect 6900 Qualcomm fastconnect 7800 Firmware

07 May 2025, 14:13

Type	Values Removed	Values Added
Summary		(es) Corrupción de memoria durante la ejecución simultánea de SSR debido a la condición de ejecución en la lista de mapas globales.

06 May 2025, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-06 09:15

Updated : 2025-05-09 19:17

NVD link : CVE-2024-45554

Mitre link : CVE-2024-45554

CVE.ORG link : CVE-2024-45554

JSON object : View

Products Affected

qualcomm

snapdragon_8_gen_1_mobile_firmware
snapdragon_888\+_5g_mobile_firmware
sxr2230p
snapdragon_888\+_5g_mobile
wcd9380_firmware
sdm429w_firmware
sw5100p_firmware
snapdragon_888_5g_mobile_firmware
wcd9385_firmware
wsa8830
wcn3980
qca6174a_firmware
sxr2230p_firmware
wcn3660b_firmware
fastconnect_7800
qca6174a
sxr2250p_firmware
snapdragon_8_gen_1_mobile
wcn3620
wsa8832
sxr2250p
wsa8835
sw5100p
sdm429w
wcn3988
fastconnect_6900
wsa8835_firmware
sw5100_firmware
wcn3988_firmware
wsa8830_firmware
fastconnect_6900_firmware
wcn3660b
sw5100
wcd9385
snapdragon_429_mobile_firmware
wcd9380
snapdragon_888_5g_mobile
wcn3980_firmware
fastconnect_7800_firmware
snapdragon_429_mobile
wcn3620_firmware
wsa8832_firmware

CWE

CWE-416

Use After Free

7.8 /10