CVE-2024-38422

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 4, 2024

Updated: Nov 7, 2024

CWE ID 680

Summary

CVE-2024-38422 is a newly identified vulnerability that affects voice processing in ADSP systems. The issue involves memory corruption during the handling of voice packets containing arbitrary data. An attacker who successfully exploits this vulnerability may be able to execute arbitrary code or cause a denial-of-service condition, leading to potential security risks and system instability. The specific cause of the memory corruption has not been disclosed, but it is recommended that affected organizations apply patches or workarounds as soon as they become available to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wfl1wR
https://www.cve.org/CVERecord?id=CVE-2024-38422
https://nvd.nist.gov/vuln/detail/CVE-2024-38422

Back to Vulnerability Database

CVE-2024-38422

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations