CVE-2024-45550
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Jan 6, 2025
Updated: Jan 13, 2025
CWE ID 129
Summary
CVE-2024-45550 is a newly disclosed vulnerability affecting the MCDM (Multimedia Class Driver Model) driver. This issue arises when any IOCTL-calling application executes all MCDM driver IOCTL calls, resulting in memory corruption. An attacker who successfully exploits this vulnerability could potentially execute arbitrary code or cause a denial-of-service condition. It is recommended that users apply the forthcoming patch to mitigate this risk. Until then, it is advised to limit the use of affected applications or disable the MCDM driver if possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Qualcomm Incorporated