CVE-2024-23357

6.2 MEDIUM

Denial of Service

📋 TL;DR

This vulnerability allows an attacker to cause a denial of service (DoS) by providing a specially crafted PKCS#8-encoded RSA key with a zero-byte modulus during key import operations. Systems using affected Qualcomm components for cryptographic operations are vulnerable. The impact is limited to service disruption rather than data compromise.

💻 Affected Systems

Products:

• Qualcomm components with cryptographic libraries

Versions: Specific versions listed in Qualcomm August 2024 security bulletin

Operating Systems: Android, Embedded systems using Qualcomm chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems that use Qualcomm's cryptographic implementations for RSA key processing.

📦 What is this software?

215 Mobile Platform Firmware by Qualcomm

View all CVEs affecting 215 Mobile Platform Firmware →

Apq8017 Firmware by Qualcomm

View all CVEs affecting Apq8017 Firmware →

Apq8037 Firmware by Qualcomm

View all CVEs affecting Apq8037 Firmware →

Aqt1000 Firmware by Qualcomm

View all CVEs affecting Aqt1000 Firmware →

Ar8035 Firmware by Qualcomm

View all CVEs affecting Ar8035 Firmware →

Csra6620 Firmware by Qualcomm

View all CVEs affecting Csra6620 Firmware →

Csra6640 Firmware by Qualcomm

View all CVEs affecting Csra6640 Firmware →

Fastconnect 6200 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6200 Firmware →

Fastconnect 6700 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6700 Firmware →

Fastconnect 6800 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6800 Firmware →

Fastconnect 6900 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6900 Firmware →

Fastconnect 7800 Firmware by Qualcomm

View all CVEs affecting Fastconnect 7800 Firmware →

Flight Rb5 5g Platform Firmware by Qualcomm

View all CVEs affecting Flight Rb5 5g Platform Firmware →

Home Hub 100 Platform Firmware by Qualcomm

View all CVEs affecting Home Hub 100 Platform Firmware →

Pm8937 Firmware by Qualcomm

View all CVEs affecting Pm8937 Firmware →

Qam8255p Firmware by Qualcomm

View all CVEs affecting Qam8255p Firmware →

Qam8295p Firmware by Qualcomm

View all CVEs affecting Qam8295p Firmware →

Qam8620p Firmware by Qualcomm

View all CVEs affecting Qam8620p Firmware →

Qam8650p Firmware by Qualcomm

View all CVEs affecting Qam8650p Firmware →

Qam8775p Firmware by Qualcomm

View all CVEs affecting Qam8775p Firmware →

Qamsrv1h Firmware by Qualcomm

View all CVEs affecting Qamsrv1h Firmware →

Qamsrv1m Firmware by Qualcomm

View all CVEs affecting Qamsrv1m Firmware →

Qca6174a Firmware by Qualcomm

View all CVEs affecting Qca6174a Firmware →

Qca6391 Firmware by Qualcomm

View all CVEs affecting Qca6391 Firmware →

Qca6420 Firmware by Qualcomm

View all CVEs affecting Qca6420 Firmware →

Qca6421 Firmware by Qualcomm

View all CVEs affecting Qca6421 Firmware →

Qca6426 Firmware by Qualcomm

View all CVEs affecting Qca6426 Firmware →

Qca6430 Firmware by Qualcomm

View all CVEs affecting Qca6430 Firmware →

Qca6431 Firmware by Qualcomm

View all CVEs affecting Qca6431 Firmware →

Qca6436 Firmware by Qualcomm

View all CVEs affecting Qca6436 Firmware →

Qca6574 Firmware by Qualcomm

View all CVEs affecting Qca6574 Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6574au Firmware by Qualcomm

View all CVEs affecting Qca6574au Firmware →

Qca6584au Firmware by Qualcomm

View all CVEs affecting Qca6584au Firmware →

Qca6595 Firmware by Qualcomm

View all CVEs affecting Qca6595 Firmware →

Qca6595au Firmware by Qualcomm

View all CVEs affecting Qca6595au Firmware →

Qca6678aq Firmware by Qualcomm

View all CVEs affecting Qca6678aq Firmware →

Qca6688aq Firmware by Qualcomm

View all CVEs affecting Qca6688aq Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Qca6698aq Firmware by Qualcomm

View all CVEs affecting Qca6698aq Firmware →

Qca6797aq Firmware by Qualcomm

View all CVEs affecting Qca6797aq Firmware →

Qca8081 Firmware by Qualcomm

View all CVEs affecting Qca8081 Firmware →

Qca8337 Firmware by Qualcomm

View all CVEs affecting Qca8337 Firmware →

Qca9379 Firmware by Qualcomm

View all CVEs affecting Qca9379 Firmware →

Qcc710 Firmware by Qualcomm

View all CVEs affecting Qcc710 Firmware →

Qcm2150 Firmware by Qualcomm

View all CVEs affecting Qcm2150 Firmware →

Qcm2290 Firmware by Qualcomm

View all CVEs affecting Qcm2290 Firmware →

Qcm4290 Firmware by Qualcomm

View all CVEs affecting Qcm4290 Firmware →

Qcm4325 Firmware by Qualcomm

View all CVEs affecting Qcm4325 Firmware →

Qcm4490 Firmware by Qualcomm

View all CVEs affecting Qcm4490 Firmware →

Qcm5430 Firmware by Qualcomm

View all CVEs affecting Qcm5430 Firmware →

Qcm6125 Firmware by Qualcomm

View all CVEs affecting Qcm6125 Firmware →

Qcm6490 Firmware by Qualcomm

View all CVEs affecting Qcm6490 Firmware →

Qcm8550 Firmware by Qualcomm

View all CVEs affecting Qcm8550 Firmware →

Qcn6024 Firmware by Qualcomm

View all CVEs affecting Qcn6024 Firmware →

Qcn6224 Firmware by Qualcomm

View all CVEs affecting Qcn6224 Firmware →

Qcn6274 Firmware by Qualcomm

View all CVEs affecting Qcn6274 Firmware →

Qcn7606 Firmware by Qualcomm

View all CVEs affecting Qcn7606 Firmware →

Qcn9011 Firmware by Qualcomm

View all CVEs affecting Qcn9011 Firmware →

Qcn9012 Firmware by Qualcomm

View all CVEs affecting Qcn9012 Firmware →

Qcn9024 Firmware by Qualcomm

View all CVEs affecting Qcn9024 Firmware →

Qcs2290 Firmware by Qualcomm

View all CVEs affecting Qcs2290 Firmware →

Qcs4290 Firmware by Qualcomm

View all CVEs affecting Qcs4290 Firmware →

Qcs4490 Firmware by Qualcomm

View all CVEs affecting Qcs4490 Firmware →

Qcs5430 Firmware by Qualcomm

View all CVEs affecting Qcs5430 Firmware →

Qcs6125 Firmware by Qualcomm

View all CVEs affecting Qcs6125 Firmware →

Qcs6490 Firmware by Qualcomm

View all CVEs affecting Qcs6490 Firmware →

Qcs7230 Firmware by Qualcomm

View all CVEs affecting Qcs7230 Firmware →

Qcs8250 Firmware by Qualcomm

View all CVEs affecting Qcs8250 Firmware →

Qcs8550 Firmware by Qualcomm

View all CVEs affecting Qcs8550 Firmware →

Qdu1000 Firmware by Qualcomm

View all CVEs affecting Qdu1000 Firmware →

Qdu1010 Firmware by Qualcomm

View all CVEs affecting Qdu1010 Firmware →

Qdu1110 Firmware by Qualcomm

View all CVEs affecting Qdu1110 Firmware →

Qdu1210 Firmware by Qualcomm

View all CVEs affecting Qdu1210 Firmware →

Qdx1010 Firmware by Qualcomm

View all CVEs affecting Qdx1010 Firmware →

Qdx1011 Firmware by Qualcomm

View all CVEs affecting Qdx1011 Firmware →

Qep8111 Firmware by Qualcomm

View all CVEs affecting Qep8111 Firmware →

Qfw7114 Firmware by Qualcomm

View all CVEs affecting Qfw7114 Firmware →

Qfw7124 Firmware by Qualcomm

View all CVEs affecting Qfw7124 Firmware →

Qrb5165m Firmware by Qualcomm

View all CVEs affecting Qrb5165m Firmware →

Qrb5165n Firmware by Qualcomm

View all CVEs affecting Qrb5165n Firmware →

Qru1032 Firmware by Qualcomm

View all CVEs affecting Qru1032 Firmware →

Qru1052 Firmware by Qualcomm

View all CVEs affecting Qru1052 Firmware →

Qru1062 Firmware by Qualcomm

View all CVEs affecting Qru1062 Firmware →

Qsm8350 Firmware by Qualcomm

View all CVEs affecting Qsm8350 Firmware →

Robotics Rb5 Platform Firmware by Qualcomm

View all CVEs affecting Robotics Rb5 Platform Firmware →

Sa4150p Firmware by Qualcomm

View all CVEs affecting Sa4150p Firmware →

Sa4155p Firmware by Qualcomm

View all CVEs affecting Sa4155p Firmware →

Sa6145p Firmware by Qualcomm

View all CVEs affecting Sa6145p Firmware →

Sa6150p Firmware by Qualcomm

View all CVEs affecting Sa6150p Firmware →

Sa6155 Firmware by Qualcomm

View all CVEs affecting Sa6155 Firmware →

Sa6155p Firmware by Qualcomm

View all CVEs affecting Sa6155p Firmware →

Sa7255p Firmware by Qualcomm

View all CVEs affecting Sa7255p Firmware →

Sa7775p Firmware by Qualcomm

View all CVEs affecting Sa7775p Firmware →

Sa8145p Firmware by Qualcomm

View all CVEs affecting Sa8145p Firmware →

Sa8150p Firmware by Qualcomm

View all CVEs affecting Sa8150p Firmware →

Sa8155 Firmware by Qualcomm

View all CVEs affecting Sa8155 Firmware →

Sa8155p Firmware by Qualcomm

View all CVEs affecting Sa8155p Firmware →

Sa8195p Firmware by Qualcomm

View all CVEs affecting Sa8195p Firmware →

Sa8255p Firmware by Qualcomm

View all CVEs affecting Sa8255p Firmware →

Sa8295p Firmware by Qualcomm

View all CVEs affecting Sa8295p Firmware →

Sa8530p Firmware by Qualcomm

View all CVEs affecting Sa8530p Firmware →

Sa8540p Firmware by Qualcomm

View all CVEs affecting Sa8540p Firmware →

Sa8620p Firmware by Qualcomm

View all CVEs affecting Sa8620p Firmware →

Sa8650p Firmware by Qualcomm

View all CVEs affecting Sa8650p Firmware →

Sa8770p Firmware by Qualcomm

View all CVEs affecting Sa8770p Firmware →

Sa8775p Firmware by Qualcomm

View all CVEs affecting Sa8775p Firmware →

Sa9000p Firmware by Qualcomm

View all CVEs affecting Sa9000p Firmware →

Sc8380xp Firmware by Qualcomm

View all CVEs affecting Sc8380xp Firmware →

Sd 8 Gen1 5g Firmware by Qualcomm

View all CVEs affecting Sd 8 Gen1 5g Firmware →

Sd626 Firmware by Qualcomm

View all CVEs affecting Sd626 Firmware →

Sd670 Firmware by Qualcomm

View all CVEs affecting Sd670 Firmware →

Sd730 Firmware by Qualcomm

View all CVEs affecting Sd730 Firmware →

Sd855 Firmware by Qualcomm

View all CVEs affecting Sd855 Firmware →

Sd865 5g Firmware by Qualcomm

View all CVEs affecting Sd865 5g Firmware →

Sd888 Firmware by Qualcomm

View all CVEs affecting Sd888 Firmware →

Sdm429w Firmware by Qualcomm

View all CVEs affecting Sdm429w Firmware →

Sg4150p Firmware by Qualcomm

View all CVEs affecting Sg4150p Firmware →

Sg8275p Firmware by Qualcomm

View all CVEs affecting Sg8275p Firmware →

Sm4125 Firmware by Qualcomm

View all CVEs affecting Sm4125 Firmware →

Sm6250 Firmware by Qualcomm

View all CVEs affecting Sm6250 Firmware →

Sm6370 Firmware by Qualcomm

View all CVEs affecting Sm6370 Firmware →

Sm7250p Firmware by Qualcomm

View all CVEs affecting Sm7250p Firmware →

Sm7315 Firmware by Qualcomm

View all CVEs affecting Sm7315 Firmware →

Sm7325p Firmware by Qualcomm

View all CVEs affecting Sm7325p Firmware →

Sm8550p Firmware by Qualcomm

View all CVEs affecting Sm8550p Firmware →

Smart Audio 400 Platform Firmware by Qualcomm

View all CVEs affecting Smart Audio 400 Platform Firmware →

Smart Display 200 Platform Firmware by Qualcomm

View all CVEs affecting Smart Display 200 Platform Firmware →

Snapdragon 4 Gen 1 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 4 Gen 1 Mobile Platform Firmware →

Snapdragon 4 Gen 2 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 4 Gen 2 Mobile Platform Firmware →

Snapdragon 425 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 425 Mobile Platform Firmware →

Snapdragon 427 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 427 Mobile Platform Firmware →

Snapdragon 429 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 429 Mobile Platform Firmware →

Snapdragon 430 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 430 Mobile Platform Firmware →

Snapdragon 435 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 435 Mobile Platform Firmware →

Snapdragon 439 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 439 Mobile Platform Firmware →

Snapdragon 450 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 450 Mobile Platform Firmware →

Snapdragon 460 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 460 Mobile Platform Firmware →

Snapdragon 480 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 480 5g Mobile Platform Firmware →

Snapdragon 480 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 480 5g Mobile Platform Firmware →

Snapdragon 625 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 625 Mobile Platform Firmware →

Snapdragon 626 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 626 Mobile Platform Firmware →

Snapdragon 632 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 632 Mobile Platform Firmware →

Snapdragon 662 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 662 Mobile Platform Firmware →

Snapdragon 665 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 665 Mobile Platform Firmware →

Snapdragon 670 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 670 Mobile Platform Firmware →

Snapdragon 675 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 675 Mobile Platform Firmware →

Snapdragon 678 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 678 Mobile Platform Firmware →

Snapdragon 680 4g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 680 4g Mobile Platform Firmware →

Snapdragon 685 4g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 685 4g Mobile Platform Firmware →

Snapdragon 690 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 690 5g Mobile Platform Firmware →

Snapdragon 695 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 695 5g Mobile Platform Firmware →

Snapdragon 710 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 710 Mobile Platform Firmware →

Snapdragon 720g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 720g Mobile Platform Firmware →

Snapdragon 730 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 730 Mobile Platform Firmware →

Snapdragon 730g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 730g Mobile Platform Firmware →

Snapdragon 732g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 732g Mobile Platform Firmware →

Snapdragon 750g 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 750g 5g Mobile Platform Firmware →

Snapdragon 765 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 765 5g Mobile Platform Firmware →

Snapdragon 765g 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 765g 5g Mobile Platform Firmware →

Snapdragon 768g 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 768g 5g Mobile Platform Firmware →

Snapdragon 778g 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 778g 5g Mobile Platform Firmware →

Snapdragon 778g 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 778g 5g Mobile Platform Firmware →

Snapdragon 780g 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 780g 5g Mobile Platform Firmware →

Snapdragon 782g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 782g Mobile Platform Firmware →

Snapdragon 7c\+ Gen 3 Compute Firmware by Qualcomm

View all CVEs affecting Snapdragon 7c\+ Gen 3 Compute Firmware →

Snapdragon 8 Gen 1 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 1 Mobile Platform Firmware →

Snapdragon 8 Gen 1 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 1 Mobile Platform Firmware →

Snapdragon 8 Gen 2 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 2 Mobile Platform Firmware →

Snapdragon 8 Gen 2 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 2 Mobile Platform Firmware →

Snapdragon 8 Gen 3 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 3 Mobile Platform Firmware →

Snapdragon 855 Firmware by Qualcomm

View all CVEs affecting Snapdragon 855 Firmware →

Snapdragon 855 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 855 Mobile Platform Firmware →

Snapdragon 860 Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 860 Mobile Platform Firmware →

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 865 5g Mobile Platform Firmware →

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 865 5g Mobile Platform Firmware →

Snapdragon 870 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 870 5g Mobile Platform Firmware →

Snapdragon 888 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 888 5g Mobile Platform Firmware →

Snapdragon 888 5g Mobile Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 888 5g Mobile Platform Firmware →

Snapdragon 8cx Gen 3 Compute Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon 8cx Gen 3 Compute Platform Firmware →

Snapdragon Ar2 Gen 1 Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon Ar2 Gen 1 Platform Firmware →

Snapdragon Auto 5g Modem Rf Gen 2 Firmware by Qualcomm

View all CVEs affecting Snapdragon Auto 5g Modem Rf Gen 2 Firmware →

Snapdragon W5\+ Gen 1 Wearable Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon W5\+ Gen 1 Wearable Platform Firmware →

Snapdragon X35 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X35 5g Modem Rf System Firmware →

Snapdragon X50 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X50 5g Modem Rf System Firmware →

Snapdragon X55 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X55 5g Modem Rf System Firmware →

Snapdragon X62 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X62 5g Modem Rf System Firmware →

Snapdragon X65 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X65 5g Modem Rf System Firmware →

Snapdragon X72 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X72 5g Modem Rf System Firmware →

Snapdragon X75 5g Modem Rf System Firmware by Qualcomm

View all CVEs affecting Snapdragon X75 5g Modem Rf System Firmware →

Snapdragon Xr1 Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon Xr1 Platform Firmware →

Snapdragon Xr2 5g Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon Xr2 5g Platform Firmware →

Snapdragon Xr2\+ Gen 1 Platform Firmware by Qualcomm

View all CVEs affecting Snapdragon Xr2\+ Gen 1 Platform Firmware →

Srv1h Firmware by Qualcomm

View all CVEs affecting Srv1h Firmware →

Srv1l Firmware by Qualcomm

View all CVEs affecting Srv1l Firmware →

Srv1m Firmware by Qualcomm

View all CVEs affecting Srv1m Firmware →

Ssg2115p Firmware by Qualcomm

View all CVEs affecting Ssg2115p Firmware →

Ssg2125p Firmware by Qualcomm

View all CVEs affecting Ssg2125p Firmware →

Sw5100 Firmware by Qualcomm

View all CVEs affecting Sw5100 Firmware →

Sw5100p Firmware by Qualcomm

View all CVEs affecting Sw5100p Firmware →

Sxr1120 Firmware by Qualcomm

View all CVEs affecting Sxr1120 Firmware →

Sxr1230p Firmware by Qualcomm

View all CVEs affecting Sxr1230p Firmware →

Sxr2130 Firmware by Qualcomm

View all CVEs affecting Sxr2130 Firmware →

Sxr2230p Firmware by Qualcomm

View all CVEs affecting Sxr2230p Firmware →

Sxr2250p Firmware by Qualcomm

View all CVEs affecting Sxr2250p Firmware →

Talynplus Firmware by Qualcomm

View all CVEs affecting Talynplus Firmware →

Video Collaboration Vc1 Platform Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc1 Platform Firmware →

Video Collaboration Vc3 Platform Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc3 Platform Firmware →

Video Collaboration Vc5 Platform Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc5 Platform Firmware →

Vision Intelligence 100 Platform Firmware by Qualcomm

View all CVEs affecting Vision Intelligence 100 Platform Firmware →

Vision Intelligence 200 Platform Firmware by Qualcomm

View all CVEs affecting Vision Intelligence 200 Platform Firmware →

Wcd9326 Firmware by Qualcomm

View all CVEs affecting Wcd9326 Firmware →

Wcd9335 Firmware by Qualcomm

View all CVEs affecting Wcd9335 Firmware →

Wcd9340 Firmware by Qualcomm

View all CVEs affecting Wcd9340 Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcd9390 Firmware by Qualcomm

View all CVEs affecting Wcd9390 Firmware →

Wcd9395 Firmware by Qualcomm

View all CVEs affecting Wcd9395 Firmware →

Wcn3610 Firmware by Qualcomm

View all CVEs affecting Wcn3610 Firmware →

Wcn3615 Firmware by Qualcomm

View all CVEs affecting Wcn3615 Firmware →

Wcn3620 Firmware by Qualcomm

View all CVEs affecting Wcn3620 Firmware →

Wcn3660 Firmware by Qualcomm

View all CVEs affecting Wcn3660 Firmware →

Wcn3660b Firmware by Qualcomm

View all CVEs affecting Wcn3660b Firmware →

Wcn3680 Firmware by Qualcomm

View all CVEs affecting Wcn3680 Firmware →

Wcn3680b Firmware by Qualcomm

View all CVEs affecting Wcn3680b Firmware →

Wcn3910 Firmware by Qualcomm

View all CVEs affecting Wcn3910 Firmware →

Wcn3950 Firmware by Qualcomm

View all CVEs affecting Wcn3950 Firmware →

Wcn3980 Firmware by Qualcomm

View all CVEs affecting Wcn3980 Firmware →

Wcn3988 Firmware by Qualcomm

View all CVEs affecting Wcn3988 Firmware →

Wcn3990 Firmware by Qualcomm

View all CVEs affecting Wcn3990 Firmware →

Wcn6740 Firmware by Qualcomm

View all CVEs affecting Wcn6740 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wsa8830 Firmware by Qualcomm

View all CVEs affecting Wsa8830 Firmware →

Wsa8832 Firmware by Qualcomm

View all CVEs affecting Wsa8832 Firmware →

Wsa8835 Firmware by Qualcomm

View all CVEs affecting Wsa8835 Firmware →

Wsa8840 Firmware by Qualcomm

View all CVEs affecting Wsa8840 Firmware →

Wsa8845 Firmware by Qualcomm

View all CVEs affecting Wsa8845 Firmware →

Wsa8845h Firmware by Qualcomm

View all CVEs affecting Wsa8845h Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete service disruption of affected cryptographic functions, potentially crashing applications or services that process untrusted RSA keys.

🟠

Likely Case

Temporary service interruption when processing malicious keys, requiring restart of affected services.

🟢

If Mitigated

Minimal impact with proper input validation and error handling in place.

🌐 Internet-Facing: MEDIUM - Only affects systems that accept untrusted RSA keys from external sources.

🏢 Internal Only: LOW - Requires specific conditions where internal systems process malicious keys.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires ability to provide malicious RSA keys to vulnerable systems.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Versions specified in Qualcomm August 2024 security bulletin

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm security bulletin for affected components. 2. Apply vendor-provided firmware/software updates. 3. Restart affected devices/services.

🔧 Temporary Workarounds

Input validation for RSA keys

all

Implement validation to reject RSA keys with zero-byte modulus before processing

Isolate key processing

all

Run cryptographic operations in isolated containers/processes with restart capabilities

🧯 If You Can't Patch

• Implement strict input validation for all RSA key imports
• Monitor and restart services that handle cryptographic operations if they crash

🔍 How to Verify

Check if Vulnerable:

Copy

Check device firmware/software version against Qualcomm security bulletin

Check Version:

Copy

Device-specific commands to check Qualcomm component versions

Verify Fix Applied:

Copy

Verify updated version is installed and test RSA key import functionality

📡 Detection & Monitoring

Log Indicators:

• Cryptographic service crashes
• Failed RSA key import attempts
• Unexpected process terminations

Network Indicators:

• Multiple failed key import attempts from single source

SIEM Query:

Copy

Process termination events from cryptographic services OR failed authentication attempts with key import errors

📊 Metadata

CVE ID: CVE-2024-23357

CVSS v3 Score: 6.2 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-476

Published: August 5, 2024

Last Updated: November 25, 2024

🔗 References

• https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html Vendor Advisory

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-23357, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)

CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)

CVE-2023-47003 9.8

A NULL pointer dereference vulnerability in RedisGraph allows attackers to execute arbitrary code or...

Same vulnerability type (CWE-476)