CVE-2024-45541

Q: What is the severity of CVE-2024-45541?

CVE-2024-45541 has a CVSS score of 7.8 (HIGH). This vulnerability allows user-space applications to trigger memory corruption through an IOCTL call when reading board data. It affects systems using Qualcomm hardware with vulnerable drivers. Successful exploitation could lead to privilege escalation or denial of service.

7.8 HIGH

📋 TL;DR

This vulnerability allows user-space applications to trigger memory corruption through an IOCTL call when reading board data. It affects systems using Qualcomm hardware with vulnerable drivers. Successful exploitation could lead to privilege escalation or denial of service.

💻 Affected Systems

Products:

Qualcomm hardware with vulnerable drivers

Versions: Specific versions not detailed in reference; check Qualcomm advisory for affected products

Operating Systems: Android, Linux distributions using Qualcomm drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems where user-space applications can make IOCTL calls to the vulnerable driver.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local attacker gains kernel-level privileges, leading to full system compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Local user causes system crash or instability through memory corruption, resulting in denial of service.

🟢

If Mitigated

With proper access controls, only authorized users can trigger the vulnerability, limiting impact to trusted accounts.

🌐 Internet-Facing: LOW - Requires local access to the system, not directly exploitable over network.

🏢 Internal Only: MEDIUM - Local users or malicious insiders could exploit this to elevate privileges or disrupt systems.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local access and ability to call specific IOCTL; exploitation depends on memory layout and corruption details.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm January 2025 security bulletin for specific patches

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html

Restart Required: No

Instructions:

1. Review Qualcomm advisory for affected products. 2. Apply vendor-provided driver updates. 3. Update firmware if applicable. 4. Test in non-production environment first.

🔧 Temporary Workarounds

Restrict IOCTL access

Linux-based systems

Limit user-space access to the vulnerable driver using permissions or SELinux/AppArmor policies.

chmod 600 /dev/device_node
setenforce 1 (if using SELinux)

🧯 If You Can't Patch

Implement strict access controls to prevent unauthorized users from making IOCTL calls.
Monitor system logs for unusual IOCTL activity and implement application whitelisting.

🔍 How to Verify

Check if Vulnerable:

Check driver version against Qualcomm advisory; examine if user-space can invoke the specific IOCTL.

Check Version:

modinfo driver_name | grep version

Verify Fix Applied:

Verify driver version is updated per vendor patch; test IOCTL calls in controlled environment.

📡 Detection & Monitoring

Log Indicators:

Kernel logs showing memory corruption errors
Failed IOCTL calls to vulnerable driver

Network Indicators:

Not applicable - local exploitation only

SIEM Query:

source="kernel" AND "memory corruption" OR "IOCTL" AND driver_name

📊 Metadata

CVE ID: CVE-2024-45541

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-120

EPSS Score: 0.14% exploit probability (33.7th percentile)

Published: January 6, 2025

Last Updated: August 11, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Aqt1000 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qca1062 Firmware by Qualcomm

Qca1064 Firmware by Qualcomm

Qca2062 Firmware by Qualcomm

Qca2064 Firmware by Qualcomm

Qca2065 Firmware by Qualcomm

Qca2066 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6420 Firmware by Qualcomm

Qca6430 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qcc2073 Firmware by Qualcomm

Qcc2076 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcn7605 Firmware by Qualcomm

Qcn7606 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Sc8180x Aaab Firmware by Qualcomm

Sc8180x Acaf Firmware by Qualcomm

Sc8180x Ad Firmware by Qualcomm

Sc8180x\+sdx55 Firmware by Qualcomm

Sc8180xp Aaab Firmware by Qualcomm

Sc8180xp Acaf Firmware by Qualcomm

Sc8180xp Ad Firmware by Qualcomm

Sc8280xp Abbb Firmware by Qualcomm

Sc8380xp Firmware by Qualcomm

Sm6250 Firmware by Qualcomm

Snapdragon 7c Compute Platform Firmware by Qualcomm

Snapdragon 7c Gen 2 Compute Platform Firmware by Qualcomm

Snapdragon 7c\+ Gen 3 Compute Firmware by Qualcomm

Video Collaboration Vc3 Platform Firmware by Qualcomm

Wcd9340 Firmware by Qualcomm

Wcd9341 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm

Wsa8840 Firmware by Qualcomm

Wsa8845 Firmware by Qualcomm

Wsa8845h Firmware by Qualcomm