CVE-2024-23373

Q: What is the severity of CVE-2024-23373?

CVE-2024-23373 has a CVSS score of 8.4 (HIGH). This vulnerability allows memory corruption when IOMMU unmap operations fail, leading to improper release of DMA and anonymous buffers. It affects systems using Qualcomm chipsets with vulnerable IOMMU implementations. Attackers could potentially exploit this to execute arbitrary code or cause denial of service.

8.4 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows memory corruption when IOMMU unmap operations fail, leading to improper release of DMA and anonymous buffers. It affects systems using Qualcomm chipsets with vulnerable IOMMU implementations. Attackers could potentially exploit this to execute arbitrary code or cause denial of service.

💻 Affected Systems

Products:

Qualcomm chipsets with IOMMU support

Versions: Specific versions not publicly detailed in references; consult Qualcomm advisory for exact affected versions

Operating Systems: Android, Linux-based systems using Qualcomm chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems where IOMMU is enabled and used for DMA operations. The vulnerability is hardware/firmware level in Qualcomm components.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with kernel-level code execution, allowing attackers to bypass security boundaries and gain persistent access to the device.

🟠

Likely Case

System instability, crashes, or denial of service conditions affecting device availability and performance.

🟢

If Mitigated

Limited impact with proper memory isolation and access controls preventing escalation beyond the affected process.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation requires local access and knowledge of memory management internals. No public exploit code is available at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm's July 2024 security bulletin for specific patched versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset models. 2. Obtain firmware/software updates from device manufacturer. 3. Apply updates following manufacturer instructions. 4. Reboot device to activate fixes.

🔧 Temporary Workarounds

Disable IOMMU (not recommended)

linux

Disabling IOMMU eliminates the vulnerability but reduces security and performance for DMA operations

echo 0 > /sys/kernel/iommu_groups/*/devices/*/iommu_group

🧯 If You Can't Patch

Restrict physical access to devices to prevent local exploitation
Implement strict application sandboxing to limit potential impact of memory corruption

🔍 How to Verify

Check if Vulnerable:

Check chipset version and compare against Qualcomm's advisory. Use: cat /proc/cpuinfo | grep -i qualcomm

Check Version:

cat /proc/version && dmesg | grep -i qualcomm

Verify Fix Applied:

Verify firmware/software version matches patched versions listed in Qualcomm bulletin

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs related to IOMMU
DMA operation failures in system logs
Memory corruption errors in dmesg

Network Indicators:

None - this is a local memory corruption vulnerability

SIEM Query:

source="kernel" AND ("IOMMU" OR "DMA") AND ("panic" OR "corruption" OR "failure")

📊 Metadata

CVE ID: CVE-2024-23373

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-416

Published: July 1, 2024

Last Updated: November 21, 2024

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html Patch,Vendor Advisory
https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

205 Mobile Platform Firmware by Qualcomm

215 Mobile Platform Firmware by Qualcomm

315 5g Iot Modem Firmware by Qualcomm

Aqt1000 Firmware by Qualcomm

Ar8031 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

C V2x 9150 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Mdm9628 Firmware by Qualcomm

Mdm9650 Firmware by Qualcomm

Msm8996au Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6310 Firmware by Qualcomm

Qca6320 Firmware by Qualcomm

Qca6335 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6420 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6430 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcm2150 Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4290 Firmware by Qualcomm

Qcm4325 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6125 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn6024 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs6125 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs7230 Firmware by Qualcomm

Qcs8250 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qrb5165m Firmware by Qualcomm

Qrb5165n Firmware by Qualcomm

Qsm8350 Firmware by Qualcomm