🛡️ CVE-2024-38410
🟠 CVSS 7.8 — High ✅ No Known Exploit CWE-121 NVD
7.8
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.

Details

Severity HIGH
CVSS Score 7.8
CVSS Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE CWE-121
Public Exploit ✅ No
Source NVD
Published 2024-11-04
Updated 2026-06-02
Modified 2024-11-07

Affected Packages

Software From version Fixed in
fastconnect-6700-firmware
fastconnect-6900-firmware
fastconnect-7800-firmware
qcc2073-firmware
qcc2076-firmware
qcm5430-firmware
qcm6490-firmware
qcs5430-firmware
qcs6490-firmware
sc8380xp-firmware
sdm429w-firmware
snapdragon-429-mobile-platform-firmware
snapdragon-8cx-gen-3-compute-platform-firmware
video-collaboration-vc3-platform-firmware
wcd9370-firmware
wcd9375-firmware
wcd9380-firmware
wcd9385-firmware
wcn3620-firmware
wcn3660b-firmware
wsa8830-firmware
wsa8835-firmware
wsa8840-firmware
wsa8845-firmware
wsa8845h-firmware

Similar Threats

Exploit Protection

Help block exploit attempts

BotEraser is designed to detect and help reduce malicious bot traffic that may target known vulnerabilities on your site.

Try BotEraser Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.