CVE-2024-45557
Use of Out-of-range Pointer Offset in Trust Management Engine
CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
0th
Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation.
| CWE | CWE-823 |
| Vendor | qualcomm, inc. |
| Product | snapdragon |
| Published | Apr 7, 2025 |
| Last Updated | Feb 26, 2026 |
Stay Ahead of the Next One
Get instant alerts for qualcomm, inc. snapdragon
Be the first to know when new high vulnerabilities affecting qualcomm, inc. snapdragon are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected Versions
Qualcomm, Inc. / Snapdragon
AR8035 FastConnect 6700 FastConnect 6900 FastConnect 7800 QCA6174A QCA6584AU QCA6698AQ QCA8081 QCA8337 QCC710 QCM4490 QCN6224 QCN6274 QCS4490 QDU1000 QDU1010 QDU1110 QDU1210 QDX1010 QDX1011 QEP8111 QFW7114 QFW7124 QRU1032 QRU1052 QRU1062 SC8380XP SD 8 Gen1 5G SM8635 Snapdragon 4 Gen 2 Mobile Platform Snapdragon 8 Gen 1 Mobile Platform Snapdragon 8 Gen 3 Mobile Platform Snapdragon 8+ Gen 1 Mobile Platform Snapdragon AR2 Gen 1 Platform Snapdragon Auto 5G Modem-RF Gen 2 Snapdragon X35 5G Modem-RF System Snapdragon X72 5G Modem-RF System Snapdragon X75 5G Modem-RF System SSG2115P SSG2125P SXR1230P SXR2230P TalynPlus WCD9340 WCD9370 WCD9375 WCD9380 WCD9385 WCD9390 WCD9395 WCN3950 WCN3988 WCN6755 WSA8810 WSA8815 WSA8830 WSA8832 WSA8835 WSA8840 WSA8845 WSA8845H