Action not permitted
Modal body text goes here.
Modal Title
Modal Body
ghsa-4cr9-gqmq-6g3v
Vulnerability from github
Published
2023-09-05 09:30
Modified
2024-04-04 07:27
Severity ?
Details
Memory corruption in Core Platform while printing the response buffer in log.
{ affected: [], aliases: [ "CVE-2023-21662", ], database_specific: { cwe_ids: [ "CWE-120", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2023-09-05T07:15:12Z", severity: "HIGH", }, details: "Memory corruption in Core Platform while printing the response buffer in log.", id: "GHSA-4cr9-gqmq-6g3v", modified: "2024-04-04T07:27:04Z", published: "2023-09-05T09:30:19Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-21662", }, { type: "WEB", url: "https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], }
cve-2023-21662
Vulnerability from cvelistv5
Published
2023-09-05 06:24
Modified
2025-02-27 21:02
Severity ?
EPSS score ?
Summary
Memory corruption in Core Platform while printing the response buffer in log.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: AR8035 Version: FSM10056 Version: IPQ5010 Version: IPQ5018 Version: IPQ5028 Version: IPQ9008 Version: IPQ9574 Version: QAM8295P Version: QCA6174A Version: QCA6310 Version: QCA6335 Version: QCA6390 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9377 Version: QCM6490 Version: QCN6023 Version: QCN6024 Version: QCN6122 Version: QCN6132 Version: QCN9000 Version: QCN9011 Version: QCN9012 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QCS603 Version: QCS605 Version: QCS6490 Version: QCS8155 Version: QRB5165 Version: QRB5165M Version: QRB5165N Version: QSM8350 Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8295P Version: SA8540P Version: SA9000P Version: SD 675 Version: SD 8 Gen1 5G Version: SD 8CX Version: SD 8cx Gen2 Version: SD 8cx Gen3 Version: SD660 Version: SD670 Version: SD675 Version: SD678 Version: SD765 Version: SD765G Version: SD768G Version: SD778G Version: SD780G Version: SD845 Version: SD850 Version: SD855 Version: SD865 5G Version: SD870 Version: SD888 Version: SD888 5G Version: SDX24 Version: SDX50M Version: SDX55 Version: SDX55M Version: SDX57M Version: SDX65 Version: SDX65M Version: SDX70M Version: SDXR2 5G Version: SM7250P Version: SM7315 Version: SM7325P Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3950 Version: WCN3980 Version: WCN3990 Version: WCN3991 Version: WCN3998 Version: WCN6740 Version: WCN6750 Version: WCN6850 Version: WCN6851 Version: WCN6855 Version: WCN6856 Version: WCN7850 Version: WCN7851 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T09:44:02.077Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-21662", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-02-26T21:53:05.262256Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-27T21:02:56.010Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "FSM10056", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5018", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6390", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QCS603", }, { status: "affected", version: "QCS605", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS8155", }, { status: "affected", version: "QRB5165", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "QSM8350", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SA8540P", }, { status: "affected", version: "SA9000P", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8 Gen1 5G", }, { status: "affected", version: "SD 8CX", }, { status: "affected", version: "SD 8cx Gen2", }, { status: "affected", version: "SD 8cx Gen3", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD678", }, { status: "affected", version: "SD765", }, { status: "affected", version: "SD765G", }, { status: "affected", version: "SD768G", }, { status: "affected", version: "SD778G", }, { status: "affected", version: "SD780G", }, { status: "affected", version: "SD845", }, { status: "affected", version: "SD850", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD870", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SD888 5G", }, { status: "affected", version: "SDX24", }, { status: "affected", version: "SDX50M", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX55M", }, { status: "affected", version: "SDX57M", }, { status: "affected", version: "SDX65", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SDX70M", }, { status: "affected", version: "SDXR2 5G", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN3991", }, { status: "affected", version: "WCN3998", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WCN6750", }, { status: "affected", version: "WCN6850", }, { status: "affected", version: "WCN6851", }, { status: "affected", version: "WCN6855", }, { status: "affected", version: "WCN6856", }, { status: "affected", version: "WCN7850", }, { status: "affected", version: "WCN7851", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in Core Platform while printing the response buffer in log.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:21:49.230Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin", }, ], title: "Buffer Copy without Checking the Size of Input(Classic Buffer Overflow) in Core Platform", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-21662", datePublished: "2023-09-05T06:24:00.471Z", dateReserved: "2022-12-07T02:58:25.871Z", dateUpdated: "2025-02-27T21:02:56.010Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.