CVE-2024-33068

Q: What is the severity of CVE-2024-33068?

CVE-2024-33068 has a CVSS score of 7.5 (HIGH). This vulnerability allows an attacker to cause a denial-of-service (DoS) condition by sending specially crafted MBSSID Information Element fragments in Wi-Fi beacon frames. It affects devices with Qualcomm Wi-Fi chipsets that parse these frames, potentially disrupting wireless connectivity. The attack requires proximity to the target device.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition by sending specially crafted MBSSID Information Element fragments in Wi-Fi beacon frames. It affects devices with Qualcomm Wi-Fi chipsets that parse these frames, potentially disrupting wireless connectivity. The attack requires proximity to the target device.

💻 Affected Systems

Products:

Qualcomm Wi-Fi chipsets and devices using them

Versions: Specific affected versions not publicly detailed in reference; check Qualcomm advisory for chipset-specific details.

Operating Systems: Android, Linux, and other OS using vulnerable Qualcomm Wi-Fi drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability is in the Wi-Fi firmware/driver handling of beacon frames; affects devices with Qualcomm wireless chipsets in default configurations.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Permanent device crash requiring physical restart, complete loss of Wi-Fi connectivity, and potential disruption of critical wireless-dependent services.

🟠

Likely Case

Temporary Wi-Fi disconnection or performance degradation until the malicious frames stop, requiring reconnection or brief service interruption.

🟢

If Mitigated

Minimal impact with proper network segmentation, monitoring, and updated firmware preventing successful exploitation.

🌐 Internet-Facing: LOW - Requires physical proximity to target device's wireless range, not exploitable over the internet.

🏢 Internal Only: MEDIUM - Attackers within wireless range could disrupt internal Wi-Fi networks, affecting productivity and connectivity.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW - Requires sending crafted Wi-Fi frames but needs proximity and basic wireless attack tools.

Exploitation involves sending malicious beacon frames; no authentication needed as beacon frames are broadcast.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm security bulletin for chipset-specific firmware updates.

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided patches for affected Wi-Fi chipsets. 3. Reboot device after update. 4. Verify patch installation.

🔧 Temporary Workarounds

Disable vulnerable Wi-Fi features

all

If supported, disable MBSSID or restrict beacon parsing in Wi-Fi settings to reduce attack surface.

Network segmentation and monitoring

all

Segment Wi-Fi networks and monitor for anomalous beacon frame activity using wireless intrusion detection systems.

🧯 If You Can't Patch

Implement physical security controls to restrict unauthorized wireless access near critical devices.
Use wired connections for sensitive systems instead of Wi-Fi where possible.

🔍 How to Verify

Check if Vulnerable:

Check device specifications for Qualcomm Wi-Fi chipset model and compare with affected list in Qualcomm advisory.

Check Version:

Platform-specific: On Linux, use 'iwconfig' or 'lspci' for Wi-Fi details; on Android, check Settings > About Phone > Wi-Fi driver version.

Verify Fix Applied:

Verify firmware version has been updated to patched release specified by Qualcomm or device manufacturer.

📡 Detection & Monitoring

Log Indicators:

Wi-Fi driver crash logs, kernel panics related to wireless, increased disconnection events

Network Indicators:

Unusual beacon frame patterns, MBSSID IE anomalies in wireless packet captures

SIEM Query:

Search for events like 'wlan driver crash', 'kernel panic wlan', or wireless disconnection spikes correlated with location.

📊 Metadata

CVE ID: CVE-2024-33068

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-416

Published: November 4, 2024

Last Updated: November 7, 2024

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2024-bulletin.html Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq5302 Firmware by Qualcomm

Ipq5312 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6777aq Firmware by Qualcomm

Qca6787aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcf8000 Firmware by Qualcomm

Qcf8001 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn5124 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcn6402 Firmware by Qualcomm

Qcn6412 Firmware by Qualcomm

Qcn6422 Firmware by Qualcomm

Qcn6432 Firmware by Qualcomm

Qcn9000 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcn9074 Firmware by Qualcomm

Qcn9274 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs7230 Firmware by Qualcomm

Qcs8250 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm

Qfw7124 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa7255p Firmware by Qualcomm

Sa7775p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8295p Firmware by Qualcomm

Sa8620p Firmware by Qualcomm

Sa8650p Firmware by Qualcomm

Sa8770p Firmware by Qualcomm

Sa8775p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Sdm429w Firmware by Qualcomm

Sdx65m Firmware by Qualcomm

Sg8275p Firmware by Qualcomm

Sm8550p Firmware by Qualcomm

Sm8635 Firmware by Qualcomm