What is the critical zero-day vulnerability affecting Qualcomm's DSP service?

The critical zero-day vulnerability, tracked as CVE-2024-43047 (CVSS score 7.8), is a use-after-free flaw in Qualcomm's Digital Signal Processor (DSP) service. It can lead to memory corruption when the DSP kernel improperly manages DMA handle file descriptors (FDs), allowing local attackers to potentially execute unauthorized code.

Who discovered and flagged the Qualcomm DSP vulnerability as exploited in the wild?

The vulnerability was flagged as exploited in the wild by Google's Threat Analysis Group (TAG) and Amnesty International, with indications that it has been used in targeted spyware attacks against high-risk individuals like journalists and political dissidents.

What other critical flaw did Qualcomm patch alongside CVE-2024-43047?

Qualcomm also patched CVE-2024-33066 (CVSS score 9.8) in its WLAN Resource Manager. This flaw is due to improper input validation and can result in memory corruption.

What should users do to protect their devices from these vulnerabilities?

Users are advised to ensure that their devices receive the relevant patches from their device manufacturers. They should contact their OEMs to confirm that the security updates have been applied.

How is Qualcomm addressing the CVE-2024-43047 vulnerability?

Qualcomm has released patches for the CVE-2024-43047 vulnerability and made them available for OEMs to integrate. The company has urged OEMs to deploy the updates swiftly to mitigate the risk of exploitation.

Advisory

Qualcomm patches actively exploited flaw in DSP Service in their chipsets

published: Oct. 8, 2024

Take action: One exploited flaw and one critical in Quallcom chips. It's wise to apply the Android patch as soon as your vendor releases an update for your phone. Depending on the vendor you might wait for some weeks/months before the update is released for your phone. But don't skip these updates - especially if you are working in sensitive professions requiring security of your devices.

Learn More

Qualcomm has released security patches for a critical zero-day vulnerability, affecting its Digital Signal Processor (DSP) service across numerous chipsets.

This flaw, tracked as CVE-2024-43047 (CVSS score 7.8) is a use-after-free vulnerability that can lead to memory corruption. The use-after-free flaw arises when the DSP kernel improperly manages DMA handle file descriptors (FDs). During the handling of these FDs, if invalid or reused descriptors are processed, it can result in a memory corruption situation. The vulnerability allows local attackers with low privileges to manipulate these FDs, potentially leading to unauthorized code execution.

Google's Threat Analysis Group (TAG) and Amnesty International have flagged this issue as exploited in the wild, likely in targeted spyware attacks against high-risk individuals such as journalists and political dissidents.

Qualcomm has made patches available for OEMs to integrate, urging them to deploy the updates swiftly to mitigate the risk. Users are advised to contact their device manufacturers to ensure their devices receive the relevant patches.

Alongside CVE-2024-43047, Qualcomm also patched a critical flaw CVE-2024-33066 (CVSS score 9.8) in its WLAN Resource Manager. This flaw is attributed to improper input validation and can result in memory corruption.

Users should ensure their devices are updated with the latest patches as soon as possible.

Qualcomm patches actively exploited flaw in DSP Service in their chipsets

Read More
Microsoft reports active exploitation of Paragon Partition Manager …
ESET researchers warn of active chained exploits of …
Samsung releases November update for Galaxy phones
CutOut.Pro AI Tool 20 million user records breached, …
Adobe Reader Zero-Day Exploited in Targeted Fingerprinting Campaign