CVE-2024-21459

high-risk

Published 2024-08-05

Information disclosure while handling beacon or probe response frame in STA.

Do I need to act?

0.14% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Snapdragon W5\+ Gen 1 Wearable Platform Firmware

Snapdragon 870 5G Mobile Platform \(Sm8250-Ac\) Firmware

Snapdragon 865\+ 5G Mobile Platform \(Sm8250-Ab\) Firmware

Wsa8835 Firmware

Wsa8830 Firmware

Wsa8815 Firmware

Wsa8810 Firmware

Wcn3988 Firmware

Wcn3980 Firmware

Wcn3950 Firmware

Wcd9385 Firmware

Wcd9380 Firmware

Wcd9370 Firmware

Wcd9341 Firmware

Wcd9340 Firmware

Sxr2130 Firmware

Sw5100P Firmware

Sw5100 Firmware

Srv1M Firmware

Srv1H Firmware

Qualcomm

Vendor Advisory https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-b...

/ 100

high-risk

Severity 24/34 · High

Exploitability 1/34 · Minimal

Exposure 33/34 · Critical