CVE-2024-33044

Q: What is the severity of CVE-2024-33044?

CVE-2024-33044 has a CVSS score of 8.4 (HIGH). This vulnerability allows memory corruption when configuring SMR/S2CR registers in Bypass mode on Qualcomm chipsets. Attackers could potentially execute arbitrary code or cause denial of service. Affects devices using vulnerable Qualcomm hardware.

8.4 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows memory corruption when configuring SMR/S2CR registers in Bypass mode on Qualcomm chipsets. Attackers could potentially execute arbitrary code or cause denial of service. Affects devices using vulnerable Qualcomm hardware.

💻 Affected Systems

Products:

Qualcomm chipsets with affected SMMU/SMMUv3 implementations

Versions: Specific chipset versions listed in Qualcomm December 2024 bulletin

Operating Systems: Android, Linux, QNX, and other OSes using affected Qualcomm hardware

Default Config Vulnerable: ⚠️ Yes

Notes: Requires Bypass mode configuration of SMR/S2CR registers; affects systems with IOMMU/SMMU enabled

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Kernel panic or system crash causing denial of service, potentially requiring physical device restart.

🟢

If Mitigated

Limited impact with proper memory protection mechanisms and isolation controls in place.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires kernel-level access or ability to manipulate SMMU configuration; no public exploits known

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm December 2024 security bulletin for specific chipset firmware versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset. 2. Obtain firmware update from device manufacturer. 3. Apply firmware update following manufacturer instructions. 4. Reboot device.

🔧 Temporary Workarounds

Disable Bypass Mode

all

Configure SMMU to avoid using Bypass mode for affected register configurations

Requires kernel configuration changes; consult chipset documentation

🧯 If You Can't Patch

Implement strict access controls to prevent unauthorized kernel access
Deploy runtime memory protection solutions and monitor for memory corruption attempts

🔍 How to Verify

Check if Vulnerable:

Check chipset version against Qualcomm advisory; examine kernel logs for SMMU configuration errors

Check Version:

cat /proc/cpuinfo | grep -i qualcomm

Verify Fix Applied:

Verify firmware version matches patched version in Qualcomm bulletin; test SMMU configuration functionality

📡 Detection & Monitoring

Log Indicators:

Kernel panic messages related to SMMU/S2CR
Memory corruption errors in system logs
Unexpected system reboots

Network Indicators:

None specific - this is a local hardware vulnerability

SIEM Query:

source="kernel" AND ("SMMU" OR "S2CR" OR "memory corruption")

📊 Metadata

CVE ID: CVE-2024-33044

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-129

Published: December 2, 2024

Last Updated: December 12, 2024

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2024-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

315 5g Iot Modem Firmware by Qualcomm

Aqt1000 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Csrb31024 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6310 Firmware by Qualcomm

Qca6335 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6420 Firmware by Qualcomm

Qca6421 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6430 Firmware by Qualcomm

Qca6431 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6564 Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9274 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs7230 Firmware by Qualcomm

Qcs8155 Firmware by Qualcomm

Qcs8250 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qcs9100 Firmware by Qualcomm

Qdu1000 Firmware by Qualcomm

Qdu1010 Firmware by Qualcomm

Qdu1110 Firmware by Qualcomm

Qdu1210 Firmware by Qualcomm

Qdx1010 Firmware by Qualcomm

Qdx1011 Firmware by Qualcomm

Qep8111 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm

Qfw7124 Firmware by Qualcomm

Qrb5165m Firmware by Qualcomm

Qrb5165n Firmware by Qualcomm

Qru1032 Firmware by Qualcomm

Qru1052 Firmware by Qualcomm

Qru1062 Firmware by Qualcomm

Qsm8250 Firmware by Qualcomm