CVE-2024-45549

high-risk

Published 2025-04-07

Information disclosure while creating MQ channels.

Do I need to act?

0.08% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.7/10 High

LOCAL / LOW complexity

Sm8550P Firmware

Sm8635 Firmware

Sm8635P Firmware

Sm8650Q Firmware

Sm8735 Firmware

Sm8750 Firmware

Sm8750P Firmware

Snapdragon 4 Gen 2 Mobile Platform Firmware

Snapdragon 429 Mobile Platform Firmware

Snapdragon 8 Gen 1 Mobile Platform Firmware

Snapdragon 8 Gen 2 Mobile Platform Firmware

Snapdragon 8 Gen 3 Mobile Platform Firmware

Snapdragon 8\+ Gen 1 Mobile Platform Firmware

Snapdragon 8\+ Gen 2 Mobile Platform Firmware

Snapdragon 865 5G Mobile Platform Firmware

Snapdragon 865\+ 5G Mobile Platform \(Sm8250-Ab\) Firmware

Snapdragon 870 5G Mobile Platform \(Sm8250-Ac\) Firmware

Snapdragon 8Cx Gen 3 Compute Platform \(Sc8280Xp-Ab\) Firmware

Snapdragon 8Cx Gen 3 Compute Platform \(Sc8280Xp-Bb\) Firmware

Snapdragon Ar1 Gen 1 Platform Firmware

Qualcomm

Vendor Advisory https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bu...

/ 100

high-risk

Severity 24/34 · High

Exploitability 0/34 · Minimal

Exposure 33/34 · Critical