CVE-2024-33010

Q: What is the severity of CVE-2024-33010?

CVE-2024-33010 has a CVSS score of 7.5 (HIGH). This vulnerability allows attackers to cause a denial-of-service (DoS) condition by sending specially crafted MBSSID Information Element fragments in Wi-Fi beacon frames. It affects systems using Qualcomm Wi-Fi chipsets that parse these frames, potentially disrupting wireless connectivity for affected devices.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows attackers to cause a denial-of-service (DoS) condition by sending specially crafted MBSSID Information Element fragments in Wi-Fi beacon frames. It affects systems using Qualcomm Wi-Fi chipsets that parse these frames, potentially disrupting wireless connectivity for affected devices.

💻 Affected Systems

Products:

Qualcomm Wi-Fi chipsets and devices using them

Versions: Specific affected versions not detailed in reference; consult Qualcomm advisory for exact chipset versions

Operating Systems: Android, Linux-based systems using Qualcomm Wi-Fi drivers, Embedded systems with Qualcomm Wi-Fi

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems with Qualcomm Wi-Fi hardware when wireless interface is active and scanning for networks. Mobile devices, IoT devices, and networking equipment using affected chipsets are vulnerable.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete wireless network disruption, rendering affected devices unable to connect to Wi-Fi networks until system restart or patch application.

🟠

Likely Case

Temporary Wi-Fi connectivity loss on affected devices when malicious beacon frames are received, requiring device reboot to restore functionality.

🟢

If Mitigated

Minimal impact with proper network segmentation and monitoring; isolated wireless segment affected at most.

🌐 Internet-Facing: MEDIUM - Attackers could target public Wi-Fi networks or devices with exposed wireless interfaces, but requires proximity to target network.

🏢 Internal Only: MEDIUM - Internal wireless networks could be disrupted by malicious insiders or compromised devices within wireless range.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires sending crafted Wi-Fi beacon frames within wireless range. No authentication needed as beacon frames are broadcast. Attack complexity is low but requires proximity to target.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm August 2024 security bulletin for specific firmware versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset models. 2. Obtain updated firmware/drivers from device manufacturer. 3. Apply patches following manufacturer instructions. 4. Reboot affected devices to load new firmware.

🔧 Temporary Workarounds

Disable Wi-Fi scanning

all

Prevent devices from scanning for wireless networks to avoid parsing malicious beacon frames

# Android: Settings > Network & internet > Wi-Fi > Wi-Fi preferences > Turn off 'Turn on Wi-Fi automatically'
# Linux: sudo nmcli radio wifi off

Network segmentation

all

Isolate vulnerable devices on separate wireless networks with strict access controls

🧯 If You Can't Patch

Implement physical security controls to restrict unauthorized wireless devices near vulnerable systems
Deploy wireless intrusion detection systems (WIDS) to monitor for malicious beacon frames

🔍 How to Verify

Check if Vulnerable:

Check device specifications for Qualcomm Wi-Fi chipset model, then cross-reference with Qualcomm's August 2024 security bulletin

Check Version:

# Linux: dmesg | grep -i qualcomm
# Android: Settings > About phone > Kernel version (check for Qualcomm references)

Verify Fix Applied:

Verify firmware/driver version matches patched versions listed in Qualcomm advisory, test Wi-Fi functionality under normal conditions

📡 Detection & Monitoring

Log Indicators:

Kernel panics or crashes in Wi-Fi driver logs
Repeated Wi-Fi disconnections in system logs
MBSSID parsing errors in wireless driver logs

Network Indicators:

Unusual beacon frame patterns on wireless networks
Multiple devices experiencing simultaneous Wi-Fi disconnections
Spoofed beacon frames with malformed MBSSID elements

SIEM Query:

source="wireless_logs" AND ("MBSSID" OR "beacon parse" OR "Wi-Fi crash")

📊 Metadata

CVE ID: CVE-2024-33010

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-416

Published: August 5, 2024

Last Updated: November 26, 2024

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Ar9380 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq4018 Firmware by Qualcomm

Ipq4019 Firmware by Qualcomm

Ipq4028 Firmware by Qualcomm

Ipq4029 Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq5300 Firmware by Qualcomm

Ipq5302 Firmware by Qualcomm

Ipq5312 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8064 Firmware by Qualcomm

Ipq8065 Firmware by Qualcomm

Ipq8068 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Mdm9628 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6175a Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca7500 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm