CVE-2024-45540

Q: What is the severity of CVE-2024-45540?

CVE-2024-45540 has a CVSS score of 6.6 (MEDIUM). This vulnerability allows memory corruption through improper handling of IOCTL map buffer requests from userspace. Attackers could potentially execute arbitrary code or cause denial of service. This affects systems using Qualcomm components with vulnerable drivers.

6.6 MEDIUM

📋 TL;DR

This vulnerability allows memory corruption through improper handling of IOCTL map buffer requests from userspace. Attackers could potentially execute arbitrary code or cause denial of service. This affects systems using Qualcomm components with vulnerable drivers.

💻 Affected Systems

Products:

Qualcomm chipsets and associated drivers

Versions: Specific versions not detailed in reference; check Qualcomm advisory for affected versions.

Operating Systems: Android, Linux-based systems using Qualcomm drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems with Qualcomm hardware and vulnerable driver implementations.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local privilege escalation to kernel mode, allowing complete system compromise and persistence.

🟠

Likely Case

Local denial of service through system crash or instability.

🟢

If Mitigated

Limited impact if proper access controls restrict userspace IOCTL access.

🌐 Internet-Facing: LOW - Requires local access to exploit.

🏢 Internal Only: MEDIUM - Local attackers or malicious insiders could exploit this vulnerability.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local access and knowledge of driver internals to craft malicious IOCTL requests.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm April 2025 security bulletin for specific patched versions.

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected components.
2. Obtain updated drivers/firmware from device manufacturer.
3. Apply patches following manufacturer instructions.
4. Reboot system to load patched drivers.

🔧 Temporary Workarounds

Restrict IOCTL access

linux

Limit userspace access to vulnerable IOCTL interfaces through SELinux/AppArmor policies.

# Example SELinux policy to restrict ioctl access
# Requires custom policy development for specific driver

🧯 If You Can't Patch

Implement strict access controls to limit which users can interact with device drivers.
Monitor system logs for unusual IOCTL activity and driver crashes.

🔍 How to Verify

Check if Vulnerable:

Check Qualcomm component versions against advisory; examine driver versions in /sys/class or via modinfo.

Check Version:

modinfo [driver_name] | grep version  # For kernel modules

Verify Fix Applied:

Verify driver versions match patched versions from Qualcomm bulletin; test IOCTL functionality.

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
Driver crash messages in dmesg
Unusual IOCTL calls in audit logs

Network Indicators:

Not applicable - local exploitation only

SIEM Query:

source="kernel" AND ("panic" OR "Oops" OR "general protection fault") AND process="[driver_name]"

📊 Metadata

CVE ID: CVE-2024-45540

CVSS v3 Score: 6.6 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

CWE: CWE-416

EPSS Score: 0.08% exploit probability (23.1th percentile)

Published: April 7, 2025

Last Updated: October 6, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

C V2x 9150 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca9367 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcn9074 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qsm8250 Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8295p Firmware by Qualcomm

Sa8530p Firmware by Qualcomm

Sa8540p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Sdx55 Firmware by Qualcomm

Snapdragon 4 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 480 5g Mobile Platform Firmware by Qualcomm

Snapdragon 480\+ 5g Mobile Platform \(sm4350 Ac\) Firmware by Qualcomm

Snapdragon 695 5g Mobile Platform Firmware by Qualcomm

Snapdragon 8 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

Snapdragon 865\+ 5g Mobile Platform \(sm8250 Ab\) Firmware by Qualcomm

Snapdragon 870 5g Mobile Platform \(sm8250 Ac\) Firmware by Qualcomm

Snapdragon 888 5g Mobile Platform Firmware by Qualcomm

Snapdragon 888\+ 5g Mobile Platform \(sm8350 Ac\) Firmware by Qualcomm

Snapdragon Auto 5g Modem Rf Gen 2 Firmware by Qualcomm

Snapdragon W5\+ Gen 1 Wearable Platform Firmware by Qualcomm

Snapdragon X55 5g Modem Rf System Firmware by Qualcomm

Snapdragon Xr2 5g Platform Firmware by Qualcomm

Sw5100 Firmware by Qualcomm

Sw5100p Firmware by Qualcomm

Sxr2130 Firmware by Qualcomm

Video Collaboration Vc1 Platform Firmware by Qualcomm

Video Collaboration Vc3 Platform Firmware by Qualcomm

Wcd9341 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3660b Firmware by Qualcomm

Wcn3680b Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn3980 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm