← back
CVE-2024-33015

Buffer Over-read in WLAN Host

CVSS 7.5 HIGHEPSS 0.3%CWE-126
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.5EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
05 Aug 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
Qualcomm, Inc. · Snapdragon

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html