Login Sign Up

CVE-2024-39431

8.3 HIGH
Denial of Service

📋 TL;DR

This vulnerability in UMTS RLC driver allows remote attackers to write data beyond allocated memory boundaries due to missing bounds checks. It affects systems using Unisoc chipsets with vulnerable UMTS RLC driver implementations. Successful exploitation requires system execution privileges but could lead to denial of service.

💻 Affected Systems

Products:
  • Unisoc chipsets with UMTS RLC driver
Versions: Specific versions not detailed in advisory; check vendor documentation
Operating Systems: Android and embedded systems using Unisoc chipsets
Default Config Vulnerable: ⚠️ Yes
Notes: Affects systems with UMTS capability using vulnerable Unisoc chipset drivers.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

Android by Google

View all CVEs affecting Android →

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, though this requires system privileges which may not be directly exploitable remotely.

🟠

Likely Case

Remote denial of service causing system crashes or instability in affected UMTS network components.

🟢

If Mitigated

Limited impact if proper privilege separation and network segmentation are implemented.

🌐 Internet-Facing: MEDIUM - Requires system privileges but could be exploited through network interfaces.
🏢 Internal Only: MEDIUM - Internal network access could facilitate exploitation if other vulnerabilities provide privilege escalation.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires system privileges, which may require chaining with other vulnerabilities for remote exploitation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Unisoc security advisory for specific patch versions

Vendor Advisory: https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241

Restart Required: Yes

Instructions:

1. Check Unisoc security advisory for affected chipset models. 2. Contact device manufacturer for firmware updates. 3. Apply provided patches. 4. Reboot affected devices.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate UMTS network components from untrusted networks

Privilege Reduction

linux

Run UMTS services with minimal necessary privileges

🧯 If You Can't Patch

  • Implement strict network access controls to limit exposure
  • Monitor for abnormal system behavior and crashes

🔍 How to Verify

Check if Vulnerable:

Check chipset version and firmware against Unisoc advisory; examine system logs for UMTS driver crashes

Check Version:

Check device firmware version through manufacturer-specific commands or settings

Verify Fix Applied:

Verify firmware version matches patched version from vendor; test UMTS functionality

📡 Detection & Monitoring

Log Indicators:

  • UMTS RLC driver crashes
  • Kernel panic logs
  • Memory corruption errors

Network Indicators:

  • Abnormal UMTS protocol traffic
  • Unexpected connection attempts to UMTS interfaces

SIEM Query:

source="kernel" AND ("UMTS" OR "RLC") AND ("panic" OR "crash" OR "oops")

📊 Metadata

CVE ID: CVE-2024-39431
CVSS v3 Score: 8.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
CWE: CWE-787
Published: September 27, 2024
Last Updated: September 30, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-39431, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)