CVE-2024-43047 - Qualcomm Multiple Chipsets Use-After-Free Vulnerability

项目:Qualcomm

产品:Multiple Chipsets

添加日期:2024-10-08到期日:2024-10-29最后更新:June 21, 2025

漏洞名称

Qualcomm Multiple Chipsets Use-After-Free Vulnerability

描述

Multiple Qualcomm chipsets contain a use-after-free vulnerability due to memory corruption in DSP Services while maintaining memory maps of HLOS memory.

已知用于勒索软件活动吗?

Unknown

采集行动

Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.

其他说明

https://git.codelinaro.org/clo/la/platform/vendor/qcom/opensource/dsp-kernel/-/commit/0e27b6c7d2bd8d0453e4465ac2ca49a8f8c440e2

https://nvd.nist.gov/vuln/detail/CVE-2024-43047

相关新闻文章

Android gets patches for Qualcomm flaws exploited in attacksAugust 5, 2025

Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPUJune 2, 2025

Qualcomm fixes three Adreno GPU zero-days exploited in attacksJune 2, 2025

Google fixes Android zero-days exploited in attacks, 60 other flawsApril 7, 2025

Google fixes Android zero-day exploited by Serbian authorities March 4, 2025

相关 CWE