CVE-2024-45557

Q: What is the severity of CVE-2024-45557?

CVE-2024-45557 has a CVSS score of 7.8 (HIGH). This vulnerability allows memory corruption in Qualcomm chipsets when Trusted Execution Environment (TEE) components process untrusted memory addresses without proper validation. Attackers could potentially execute arbitrary code or cause denial of service. This affects devices using vulnerable Qualcomm chipsets including smartphones, IoT devices, and embedded systems.

7.8 HIGH

📋 TL;DR

This vulnerability allows memory corruption in Qualcomm chipsets when Trusted Execution Environment (TEE) components process untrusted memory addresses without proper validation. Attackers could potentially execute arbitrary code or cause denial of service. This affects devices using vulnerable Qualcomm chipsets including smartphones, IoT devices, and embedded systems.

💻 Affected Systems

Products:

Qualcomm chipsets with TME/TZ/MPSS components

Versions: Specific versions not publicly detailed in bulletin

Operating Systems: Android, Linux-based systems using Qualcomm chips

Default Config Vulnerable: ⚠️ Yes

Notes: Affects chipsets listed in Qualcomm's April 2025 security bulletin. Requires TME/TZ/MPSS functionality to be enabled.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full device compromise allowing arbitrary code execution at TEE/secure world privilege level, potentially bypassing hardware security boundaries.

🟠

Likely Case

Local privilege escalation from normal user to secure world privileges, or denial of service through system crashes.

🟢

If Mitigated

Limited impact with proper memory isolation and access controls in place, potentially just denial of service.

🌐 Internet-Facing: LOW (requires local access or compromised app to trigger)

🏢 Internal Only: MEDIUM (local attackers or malicious apps could exploit)

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation requires understanding of TEE memory management and chipset-specific implementation details.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm April 2025 security bulletin for chipset-specific patches

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm bulletin for your chipset model. 2. Obtain firmware update from device manufacturer. 3. Apply firmware update following manufacturer instructions. 4. Reboot device to activate patch.

🔧 Temporary Workarounds

Disable unnecessary TEE services

all

Reduce attack surface by disabling unused TEE/secure world services if possible

Device-specific commands vary by manufacturer

🧯 If You Can't Patch

Isolate affected devices from untrusted networks and users
Implement strict application vetting and privilege restrictions

🔍 How to Verify

Check if Vulnerable:

Check chipset version and compare against Qualcomm's April 2025 security bulletin affected chipsets list

Check Version:

Device-specific (e.g., Android: 'getprop ro.bootloader' or check Settings > About)

Verify Fix Applied:

Verify firmware version has been updated to post-April 2025 release from device manufacturer

📡 Detection & Monitoring

Log Indicators:

Unexpected TEE/TZ/MPSS service crashes
Memory access violation logs in secure world

Network Indicators:

Not network exploitable - local vulnerability

SIEM Query:

Search for TEE/TZ service crash events or unexpected secure world memory access patterns

📊 Metadata

CVE ID: CVE-2024-45557

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-823

EPSS Score: 0.07% exploit probability (20.9th percentile)

Published: April 7, 2025

Last Updated: August 19, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qdu1000 Firmware by Qualcomm

Qdu1010 Firmware by Qualcomm

Qdu1110 Firmware by Qualcomm

Qdu1210 Firmware by Qualcomm

Qdx1010 Firmware by Qualcomm

Qdx1011 Firmware by Qualcomm

Qep8111 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm

Qfw7124 Firmware by Qualcomm

Qru1032 Firmware by Qualcomm

Qru1052 Firmware by Qualcomm

Qru1062 Firmware by Qualcomm

Sc8380xp Firmware by Qualcomm

Sd 8 Gen1 5g Firmware by Qualcomm

Sm8635 Firmware by Qualcomm

Snapdragon 4 Gen 2 Mobile Platform Firmware by Qualcomm

Snapdragon 8 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 8 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 8 Gen 3 Mobile Platform Firmware by Qualcomm

Snapdragon Ar2 Gen 1 Platform Firmware by Qualcomm

Snapdragon Auto 5g Modem Rf Gen 2 Firmware by Qualcomm

Snapdragon X35 5g Modem Rf System Firmware by Qualcomm

Snapdragon X72 5g Modem Rf System Firmware by Qualcomm

Snapdragon X75 5g Modem Rf System Firmware by Qualcomm

Ssg2115p Firmware by Qualcomm

Ssg2125p Firmware by Qualcomm

Sxr1230p Firmware by Qualcomm

Sxr2230p Firmware by Qualcomm

Talynplus Firmware by Qualcomm

Wcd9340 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcd9390 Firmware by Qualcomm

Wcd9395 Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wcn6755 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8832 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm

Wsa8840 Firmware by Qualcomm

Wsa8845 Firmware by Qualcomm

Wsa8845h Firmware by Qualcomm