Cyber Posture

CVE-2024-49839

High

Published: 03 February 2025

Published
03 February 2025
Modified
11 August 2025
KEV Added
Patch
CVSS Score 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
EPSS Score 0.0014 34.4th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

Memory corruption during management frame processing due to mismatch in T2LM info element.

Security Summary

CVE-2024-49839 is a memory corruption vulnerability stemming from a mismatch in the T2LM information element during management frame processing. It affects components in Qualcomm products, as detailed in their security bulletin. The issue is associated with CWE-126 (Buffer Over-read) and CWE-125 (Out-of-bounds Read), earning a CVSS v3.1 base score of 8.2 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L), indicating high severity due to its network accessibility and potential for significant confidentiality impact.

A remote, unauthenticated attacker can exploit this vulnerability by sending crafted management frames over the network with low complexity and no user interaction required. Successful exploitation could result in high-impact confidentiality violations, such as disclosure of sensitive information through memory corruption, alongside a low-impact availability disruption, potentially enabling denial-of-service conditions.

Qualcomm's February 2025 security bulletin at https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2025-bulletin.html provides details on affected products and recommended mitigations or patches.

Details

CWE(s)
CWE-126CWE-125

Affected Products

qualcomm
ar8035 firmware
all versions
qualcomm
csr8811 firmware
all versions
qualcomm
fastconnect 6700 firmware
all versions
qualcomm
fastconnect 6900 firmware
all versions
qualcomm
fastconnect 7800 firmware
all versions
qualcomm
immersive home 214 firmware
all versions
qualcomm
immersive home 216 firmware
all versions
qualcomm
immersive home 316 firmware
all versions
qualcomm
immersive home 318 firmware
all versions
qualcomm
immersive home 3210 firmware
all versions
+176 more product configuration(s) — see NVD for full list

References