CVE-2024-33012

Q: What is the severity of CVE-2024-33012?

CVE-2024-33012 has a CVSS score of 7.5 (HIGH). This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Wi-Fi systems by sending specially crafted beacon frames with malformed MBSSID information elements. It affects devices using Qualcomm Wi-Fi chipsets when processing wireless network traffic. The vulnerability can disrupt wireless connectivity without requiring authentication.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Wi-Fi systems by sending specially crafted beacon frames with malformed MBSSID information elements. It affects devices using Qualcomm Wi-Fi chipsets when processing wireless network traffic. The vulnerability can disrupt wireless connectivity without requiring authentication.

💻 Affected Systems

Products:

Qualcomm Wi-Fi chipsets and devices using them

Versions: Specific affected versions not publicly detailed in bulletin

Operating Systems: Android, Linux-based systems, and other platforms using Qualcomm Wi-Fi hardware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices when processing wireless beacon frames with MBSSID information elements. Requires wireless interface to be active and scanning/connected to networks.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete wireless network disruption affecting all connected devices, requiring hardware reboot to restore functionality.

🟠

Likely Case

Temporary wireless connectivity loss for affected devices until the malformed beacon processing is cleared.

🟢

If Mitigated

Minimal impact with proper network segmentation and updated firmware preventing beacon parsing issues.

🌐 Internet-Facing: MEDIUM - Attackers could target wireless access points from nearby locations, but requires proximity to wireless network.

🏢 Internal Only: LOW - Internal attackers would need physical proximity to wireless networks and specialized tools to craft malicious beacon frames.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires crafting specialized wireless beacon frames and proximity to target wireless networks. No authentication needed as beacons are broadcast frames.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to August 2024 Qualcomm security bulletin for specific patched versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided patches through OEM updates. 3. Reboot device after firmware update. 4. Verify wireless functionality post-update.

🔧 Temporary Workarounds

Disable MBSSID features

all

If supported, disable Multiple BSSID functionality on wireless access points

Network segmentation

all

Isolate critical wireless networks from general access networks

🧯 If You Can't Patch

Implement wireless intrusion detection/prevention systems to detect malformed beacon frames
Reduce wireless attack surface by disabling unnecessary wireless interfaces when not in use

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm security bulletin. Use wireless monitoring tools to detect beacon parsing issues.

Check Version:

Device-specific commands vary by manufacturer. Typically: 'cat /proc/version' or device settings > about > software information

Verify Fix Applied:

Verify firmware version has been updated to patched version. Test wireless connectivity stability with various network conditions.

📡 Detection & Monitoring

Log Indicators:

Wireless driver crashes
Unexpected wireless interface resets
Beacon parsing errors in system logs

Network Indicators:

Unusual beacon frame patterns
Multiple connection drops in short timeframes
Abnormal MBSSID IE structures in packet captures

SIEM Query:

source="wireless_logs" AND ("driver crash" OR "beacon error" OR "MBSSID")

📊 Metadata

CVE ID: CVE-2024-33012

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-126

Published: August 5, 2024

Last Updated: November 26, 2024

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Ar9380 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq4018 Firmware by Qualcomm

Ipq4019 Firmware by Qualcomm

Ipq4028 Firmware by Qualcomm

Ipq4029 Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq5300 Firmware by Qualcomm

Ipq5302 Firmware by Qualcomm

Ipq5312 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8064 Firmware by Qualcomm

Ipq8065 Firmware by Qualcomm

Ipq8068 Firmware by Qualcomm

Ipq8070 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Mdm9628 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6175a Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca7500 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm