CVE-2024-21475

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published May 6, 2024
CWE ID 823

Summary

CVE-2024-21475 is a memory corruption vulnerability that affects multiple products including vzmOGT, vzmOGS, vzmOGR, and vzmOGQ among others. The vulnerability occurs when the payload received from firmware does not match the expected protocol size, leading to memory corruption. The risk score for this vulnerability is 25, indicating a high level of danger to organizations. To remediate this vulnerability, it is recommended to update the firmware to the latest version provided by the vendor. The exploitability score of 1.8 suggests that it is relatively easy to exploit this vulnerability. The impact score for confidentiality and integrity is high, emphasizing the potential consequences if exploited successfully. This information was sourced from product-security@qualcomm.com and the analysis description is not available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-21475 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options