🛡️ CVE-2024-38426
🟡 CVSS 5.4 — Medium ✅ No Known Exploit CWE-287 NVD
5.4
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

While processing the authentication message in UE, improper authentication may lead to information disclosure.

Details

Severity MEDIUM
CVSS Score 5.4
CVSS Vector CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
CWE CWE-287
Public Exploit ✅ No
Source NVD
Published 2025-03-03
Updated 2026-06-02
Modified 2025-08-11
Fix URL N/A

Affected Packages

Software From version Fixed in
205-firmware
215-firmware
315-5g-iot-firmware
9205-lte-firmware
ar8035-firmware
csra6620-firmware
csra6640-firmware
csrb31024-firmware
fastconnect-6200-firmware
fastconnect-6700-firmware
fastconnect-6800-firmware
fastconnect-6900-firmware
fastconnect-7800-firmware
mdm9205s-firmware
mdm9628-firmware
mdm9640-firmware
msm8996au-firmware
qca4004-firmware
qca6174a-firmware
qca6310-firmware
qca6320-firmware
qca6391-firmware
qca6564a-firmware
qca6564au-firmware
qca6574a-firmware
qca6574au-firmware
qca6584-firmware
qca6584au-firmware
qca6595au-firmware
qca6696-firmware
qca6698aq-firmware
qca8081-firmware
qca8337-firmware
qca9367-firmware
qca9377-firmware
qcc710-firmware
qcc711-firmware
qcm2150-firmware
qcm2290-firmware
qcm4290-firmware
qcm4325-firmware
qcm4490-firmware
qcm6125-firmware
qcn6024-firmware
qcn6224-firmware
qcn6274-firmware
qcn9024-firmware
qcs2290-firmware
qcs410-firmware
qcs4290-firmware
qcs4490-firmware
qcs610-firmware
qcs6125-firmware
qep8111-firmware
qfw7114-firmware
qfw7124-firmware
qts110-firmware
robotics-rb2-firmware
sd-675-firmware
sd-8-gen1-5g-firmware
sd675-firmware
sd730-firmware
sd835-firmware
sdm429w-firmware
sdx55-firmware
sdx57m-firmware
sdx61-firmware
sdx71m-firmware
sdx80m-firmware
sg4150p-firmware
sm6650-firmware
sm7250p-firmware
sm7635-firmware
sm7675-firmware
sm7675p-firmware
sm8635-firmware
sm8635p-firmware
sm8650q-firmware
smart-audio-400-firmware
snapdragon-210-firmware
snapdragon-212-firmware
snapdragon-4-gen-1-firmware
snapdragon-429-firmware
snapdragon-439-firmware
snapdragon-460-firmware
snapdragon-480-5g-firmware
snapdragon-480\+-5g-firmware
snapdragon-662-firmware
snapdragon-665-firmware
snapdragon-675-firmware
snapdragon-678-firmware
snapdragon-680-4g-firmware
snapdragon-685-4g-firmware
snapdragon-690-5g-firmware
snapdragon-695-5g-firmware
snapdragon-730-firmware
snapdragon-730g-firmware
snapdragon-732g-firmware
snapdragon-765-5g-firmware
snapdragon-765g-5g-firmware
snapdragon-768g-5g-firmware
snapdragon-8-gen-1-firmware
snapdragon-8-gen-3-firmware
snapdragon-835-mobile-pc-firmware
snapdragon-865-5g-firmware
snapdragon-8657\+-5g-firmware
snapdragon-870-5g-firmware
snapdragon-auto-4g-firmware
snapdragon-auto-5g-rf-firmware
snapdragon-auto-5g-rf-gen-2-firmware
snapdragon-w5\+-gen-1-firmware
snapdragon-wear-1300-firmware
snapdragon-wear-4100\+-firmware
snapdragon-x12-lte-firmware
snapdragon-x35-5g-rf-firmware
snapdragon-x5-lte-firmware
snapdragon-x55-5g-rf-firmware
snapdragon-x62-5g-rf-firmware
snapdragon-x65-5g-rf-firmware
snapdragon-x70-rf-firmware
snapdragon-x72-5g-rf-firmware
snapdragon-x75-5g-rf-firmware
sw5100-firmware
sw5100p-firmware
video-collaboration-vc1-platform-firmware
video-collaboration-vc3-platform-firmware
wcd9306-firmware
wcd9326-firmware
wcd9330-firmware
wcd9335-firmware
wcd9340-firmware
wcd9341-firmware
wcd9370-firmware
wcd9371-firmware
wcd9375-firmware
wcd9378-firmware
wcd9380-firmware
wcd9385-firmware
wcd9390-firmware
wcd9395-firmware
wcn3610-firmware
wcn3615-firmware
wcn3620-firmware
wcn3660b-firmware
wcn3680-firmware
wcn3680b-firmware
wcn3910-firmware
wcn3950-firmware
wcn3980-firmware
wcn3988-firmware
wcn3990-firmware
wcn6450-firmware
wcn6650-firmware
wcn6755-firmware
wcn7861-firmware
wcn7881-firmware
wsa8810-firmware
wsa8815-firmware
wsa8830-firmware
wsa8832-firmware
wsa8835-firmware
wsa8840-firmware
wsa8845-firmware
wsa8845h-firmware

Similar Threats

Free Vulnerability Check

Is your WordPress site affected?

BotEraser helps you identify potentially vulnerable plugins and themes by checking your installation against known CVE records.

Scan My Site Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.