CVE-2024-45544

Q: What is the severity of CVE-2024-45544?

CVE-2024-45544 has a CVSS score of 6.6 (MEDIUM). This vulnerability allows memory corruption through improper handling of IOCTL calls when adding route entries in Qualcomm hardware. Attackers could potentially execute arbitrary code or cause denial of service on affected systems. This affects devices using vulnerable Qualcomm chipsets.

6.6 MEDIUM

📋 TL;DR

This vulnerability allows memory corruption through improper handling of IOCTL calls when adding route entries in Qualcomm hardware. Attackers could potentially execute arbitrary code or cause denial of service on affected systems. This affects devices using vulnerable Qualcomm chipsets.

💻 Affected Systems

Products:

Qualcomm chipsets with vulnerable hardware components

Versions: Specific versions not detailed in reference; check Qualcomm advisory for affected chipset models

Operating Systems: Android, Linux-based systems using Qualcomm hardware

Default Config Vulnerable: ⚠️ Yes

Notes: Requires access to IOCTL interface; typically requires local access or compromised application with necessary permissions

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Local privilege escalation or denial of service affecting device stability and performance.

🟢

If Mitigated

Limited impact with proper access controls preventing unauthorized IOCTL calls.

🌐 Internet-Facing: LOW

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires understanding of Qualcomm hardware IOCTL interface and memory layout

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm April 2025 security bulletin for specific chipset firmware updates

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset models. 2. Obtain firmware update from device manufacturer. 3. Apply firmware update following manufacturer instructions. 4. Reboot device.

🔧 Temporary Workarounds

Restrict IOCTL access

linux

Limit access to vulnerable IOCTL interfaces through SELinux/AppArmor policies or kernel module restrictions

# Example SELinux policy to restrict ioctl access
# require specific SELinux policy configuration

🧯 If You Can't Patch

Implement strict access controls to prevent unauthorized applications from making IOCTL calls
Monitor system logs for unusual IOCTL activity and implement network segmentation

🔍 How to Verify

Check if Vulnerable:

Check device chipset model and firmware version against Qualcomm advisory; examine dmesg for IOCTL-related errors

Check Version:

cat /proc/cpuinfo | grep -i qualcomm && getprop ro.build.fingerprint

Verify Fix Applied:

Verify firmware version has been updated to patched version; test IOCTL functionality if possible

📡 Detection & Monitoring

Log Indicators:

Unusual IOCTL calls in kernel logs
Memory corruption errors in dmesg
Unexpected process crashes

Network Indicators:

Unusual local network traffic from system processes
Anomalous inter-process communication

SIEM Query:

source="kernel" AND ("ioctl" OR "memory corruption" OR "segfault") AND process="system_process"

📊 Metadata

CVE ID: CVE-2024-45544

CVSS v3 Score: 6.6 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

CWE: CWE-416

EPSS Score: 0.08% exploit probability (23.1th percentile)

Published: April 7, 2025

Last Updated: October 6, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

C V2x 9150 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca9367 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcn9074 Firmware by Qualcomm

Sa4150p Firmware by Qualcomm

Sa4155p Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

Snapdragon 865\+ 5g Mobile Platform \(sm8250 Ab\) Firmware by Qualcomm

Snapdragon 870 5g Mobile Platform \(sm8250 Ac\) Firmware by Qualcomm

Snapdragon Auto 5g Modem Rf Gen 2 Firmware by Qualcomm

Snapdragon W5\+ Gen 1 Wearable Platform Firmware by Qualcomm

Snapdragon X55 5g Modem Rf System Firmware by Qualcomm

Snapdragon Xr2 5g Platform Firmware by Qualcomm

Sw5100 Firmware by Qualcomm

Sw5100p Firmware by Qualcomm

Sxr2130 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcn3660b Firmware by Qualcomm

Wcn3680b Firmware by Qualcomm

Wcn3980 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm