Action not permitted
Modal body text goes here.
Modal Title
Modal Body
wid-sec-w-2023-2842
Vulnerability from csaf_certbund
Published
2023-11-06 23:00
Modified
2023-11-06 23:00
Summary
Google Android: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Das Android Betriebssystem ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um einen Denial-of-Service-Zustand herbeizuführen, vertrauliche Informationen offenzulegen oder seine Rechte zu erweitern.
Betroffene Betriebssysteme
- Android
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Das Android Betriebssystem ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um einen Denial-of-Service-Zustand herbeizuführen, vertrauliche Informationen offenzulegen oder seine Rechte zu erweitern.", title: "Angriff", }, { category: "general", text: "- Android", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-2842 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2842.json", }, { category: "self", summary: "WID-SEC-2023-2842 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2842", }, { category: "external", summary: "Pixel Update Bulletin—November 2023 vom 2023-11-06", url: "https://source.android.com/docs/security/bulletin/pixel/2023-11-01", }, { category: "external", summary: "Android Security Bulletin—November 2023 vom 2023-11-06", url: "https://source.android.com/docs/security/bulletin/2023-11-01", }, ], source_lang: "en-US", title: "Google Android: Mehrere Schwachstellen", tracking: { current_release_date: "2023-11-06T23:00:00.000+00:00", generator: { date: "2024-08-15T18:01:13.137+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-2842", initial_release_date: "2023-11-06T23:00:00.000+00:00", revision_history: [ { date: "2023-11-06T23:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Google Android 11", product: { name: "Google Android 11", product_id: "T019739", product_identification_helper: { cpe: "cpe:/o:google:android:11", }, }, }, { category: "product_name", name: "Google Android 13", product: { name: "Google Android 13", product_id: "T024488", product_identification_helper: { cpe: "cpe:/o:google:android:13", }, }, }, { category: "product_name", name: "Google Android 14", product: { name: "Google Android 14", product_id: "T030833", product_identification_helper: { cpe: "cpe:/o:google:android:14", }, }, }, { category: "product_name", name: "Google Android 12", product: { name: "Google Android 12", product_id: "T030958", product_identification_helper: { cpe: "cpe:/o:google:android:12", }, }, }, { category: "product_name", name: "Google Android 12L", product: { name: "Google Android 12L", product_id: "T030959", product_identification_helper: { cpe: "cpe:/o:google:android:12l", }, }, }, ], category: "product_name", name: "Android", }, ], category: "vendor", name: "Google", }, ], }, vulnerabilities: [ { cve: "CVE-2023-40124", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40124", }, { cve: "CVE-2023-40115", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40115", }, { cve: "CVE-2023-40114", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40114", }, { cve: "CVE-2023-40113", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40113", }, { cve: "CVE-2023-40112", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40112", }, { cve: "CVE-2023-40111", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40111", }, { cve: "CVE-2023-40110", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40110", }, { cve: "CVE-2023-40109", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40109", }, { cve: "CVE-2023-40107", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40107", }, { cve: "CVE-2023-40106", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40106", }, { cve: "CVE-2023-40105", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40105", }, { cve: "CVE-2023-40104", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40104", }, { cve: "CVE-2023-40100", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-40100", }, { cve: "CVE-2023-33074", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33074", }, { cve: "CVE-2023-33061", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33061", }, { cve: "CVE-2023-33059", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33059", }, { cve: "CVE-2023-33056", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33056", }, { cve: "CVE-2023-33055", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33055", }, { cve: "CVE-2023-33048", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33048", }, { cve: "CVE-2023-33047", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33047", }, { cve: "CVE-2023-33045", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33045", }, { cve: "CVE-2023-33031", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-33031", }, { cve: "CVE-2023-32837", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-32837", }, { cve: "CVE-2023-32836", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-32836", }, { cve: "CVE-2023-32835", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-32835", }, { cve: "CVE-2023-32834", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-32834", }, { cve: "CVE-2023-32832", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-32832", }, { cve: "CVE-2023-28574", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28574", }, { cve: "CVE-2023-28572", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28572", }, { cve: "CVE-2023-28570", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28570", }, { cve: "CVE-2023-28569", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28569", }, { cve: "CVE-2023-28568", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28568", }, { cve: "CVE-2023-28566", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28566", }, { cve: "CVE-2023-28563", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28563", }, { cve: "CVE-2023-28556", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28556", }, { cve: "CVE-2023-28554", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28554", }, { cve: "CVE-2023-28553", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28553", }, { cve: "CVE-2023-28545", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28545", }, { cve: "CVE-2023-28469", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-28469", }, { cve: "CVE-2023-24852", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-24852", }, { cve: "CVE-2023-22388", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-22388", }, { cve: "CVE-2023-21671", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-21671", }, { cve: "CVE-2023-21111", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-21111", }, { cve: "CVE-2023-21103", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-21103", }, { cve: "CVE-2023-20702", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen im Kernel LTS, im Framework, im System sowie in den Komponenten von MediaTek, Arm und Qualcomm. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.", }, ], product_status: { known_affected: [ "T030833", "T019739", "T030958", "T024488", "T030959", ], }, release_date: "2023-11-06T23:00:00.000+00:00", title: "CVE-2023-20702", }, ], }
cve-2023-21103
Vulnerability from cvelistv5
Published
2023-05-15 00:00
Modified
2025-01-24 18:02
Severity ?
EPSS score ?
Summary
In registerPhoneAccount of PhoneAccountRegistrar.java, uncaught exceptions in parsing persisted user data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-259064622
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T09:28:25.802Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-05-01", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-21103", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2025-01-24T18:02:20.325625Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-209", description: "CWE-209 Generation of Error Message Containing Sensitive Information", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-01-24T18:02:24.785Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "Android", vendor: "n/a", versions: [ { status: "affected", version: "Android-11 Android-12 Android-12L Android-13", }, ], }, ], descriptions: [ { lang: "en", value: "In registerPhoneAccount of PhoneAccountRegistrar.java, uncaught exceptions in parsing persisted user data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-259064622", }, ], problemTypes: [ { descriptions: [ { description: "Denial of service", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-05-15T00:00:00.000Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://source.android.com/security/bulletin/2023-05-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-21103", datePublished: "2023-05-15T00:00:00.000Z", dateReserved: "2022-11-03T00:00:00.000Z", dateUpdated: "2025-01-24T18:02:24.785Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28563
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Information disclosure in IOE Firmware while handling WMI command.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: AR8031 Version: AR8035 Version: AR9380 Version: CSR8811 Version: CSRA6620 Version: CSRA6640 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: Home Hub 100 Platform Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: IPQ4018 Version: IPQ4019 Version: IPQ4028 Version: IPQ4029 Version: IPQ5010 Version: IPQ5028 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8064 Version: IPQ8065 Version: IPQ8068 Version: IPQ8069 Version: IPQ8070 Version: IPQ8070A Version: IPQ8071 Version: IPQ8071A Version: IPQ8072 Version: IPQ8072A Version: IPQ8074 Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: MDM9640 Version: MDM9650 Version: MSM8996AU Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA1023 Version: QCA4004 Version: QCA4010 Version: QCA4024 Version: QCA6174A Version: QCA6310 Version: QCA6320 Version: QCA6391 Version: QCA6420 Version: QCA6428 Version: QCA6430 Version: QCA6438 Version: QCA6554A Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA7500 Version: QCA8075 Version: QCA8081 Version: QCA9377 Version: QCA9531 Version: QCA9558 Version: QCA9561 Version: QCA9880 Version: QCA9882 Version: QCA9886 Version: QCA9887 Version: QCA9888 Version: QCA9889 Version: QCA9898 Version: QCA9980 Version: QCA9982 Version: QCA9984 Version: QCA9985 Version: QCA9986 Version: QCA9987 Version: QCA9990 Version: QCA9992 Version: QCA9994 Version: QCM4325 Version: QCM4490 Version: QCM6125 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5064 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN5550 Version: QCN6023 Version: QCN6024 Version: QCN6122 Version: QCN6132 Version: QCN7605 Version: QCN7606 Version: QCN9000 Version: QCN9012 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCS410 Version: QCS4490 Version: QCS610 Version: QCS6125 Version: QFE1922 Version: QFE1952 Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SC8180X+SDX55 Version: SD 675 Version: SD 8CX Version: SD460 Version: SD660 Version: SD662 Version: SD670 Version: SD675 Version: SD730 Version: SD820 Version: SD855 Version: SDX55 Version: SG4150P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: Smart Audio 400 Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 660 Mobile Platform Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 712 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 820 Automotive Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon XR1 Platform Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: SXR1120 Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN3999 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:23.473Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8031", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "AR9380", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "Home Hub 100 Platform", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "IPQ4018", }, { status: "affected", version: "IPQ4019", }, { status: "affected", version: "IPQ4028", }, { status: "affected", version: "IPQ4029", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8064", }, { status: "affected", version: "IPQ8065", }, { status: "affected", version: "IPQ8068", }, { status: "affected", version: "IPQ8069", }, { status: "affected", version: "IPQ8070", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "MDM9640", }, { status: "affected", version: "MDM9650", }, { status: "affected", version: "MSM8996AU", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA1023", }, { status: "affected", version: "QCA4004", }, { status: "affected", version: "QCA4010", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6428", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6438", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA7500", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCA9531", }, { status: "affected", version: "QCA9558", }, { status: "affected", version: "QCA9561", }, { status: "affected", version: "QCA9880", }, { status: "affected", version: "QCA9882", }, { status: "affected", version: "QCA9886", }, { status: "affected", version: "QCA9887", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCA9898", }, { status: "affected", version: "QCA9980", }, { status: "affected", version: "QCA9982", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCA9985", }, { status: "affected", version: "QCA9986", }, { status: "affected", version: "QCA9987", }, { status: "affected", version: "QCA9990", }, { status: "affected", version: "QCA9992", }, { status: "affected", version: "QCA9994", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5064", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN5550", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN7605", }, { status: "affected", version: "QCN7606", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "QFE1922", }, { status: "affected", version: "QFE1952", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8CX", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD820", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 660 Mobile Platform", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 712 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 820 Automotive Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN3999", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Information disclosure in IOE Firmware while handling WMI command.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:56.147Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in IOE Firmware", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28563", datePublished: "2023-11-07T05:26:37.887Z", dateReserved: "2023-03-17T11:41:45.848Z", dateUpdated: "2024-08-02T13:43:23.473Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-20702
Vulnerability from cvelistv5
Published
2023-11-06 03:50
Modified
2024-09-05 15:17
Severity ?
EPSS score ?
Summary
In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE received invalid 1-byte rlc sdu, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00921261; Issue ID: MOLY01128895.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| MediaTek, Inc. | MT6835, MT6873, MT6875, MT6879, MT6883, MT6885, MT6886, MT6889, MT6895, MT6980, MT6983, MT6985, MT6990, MT8673, MT8675, MT8791, MT8791T, MT8797, MT8798 |
Version: Modem NR15, NR16, NR17 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T09:14:40.992Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6835", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6873", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6875", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6879", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6883", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6885", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6886", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6889", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6895", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6980:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6980", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6983", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6985", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt6990", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt8673", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt8675", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt8791", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt8791t", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt8797", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "mt8798", vendor: "mediatek", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-20702", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-09-05T15:16:26.867886Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-09-05T15:17:22.422Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "MT6835, MT6873, MT6875, MT6879, MT6883, MT6885, MT6886, MT6889, MT6895, MT6980, MT6983, MT6985, MT6990, MT8673, MT8675, MT8791, MT8791T, MT8797, MT8798", vendor: "MediaTek, Inc.", versions: [ { status: "affected", version: "Modem NR15, NR16, NR17", }, ], }, ], descriptions: [ { lang: "en", value: "In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE received invalid 1-byte rlc sdu, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00921261; Issue ID: MOLY01128895.", }, ], problemTypes: [ { descriptions: [ { description: "Denial of Service", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-11-06T03:50:51.533Z", orgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", shortName: "MediaTek", }, references: [ { url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], }, }, cveMetadata: { assignerOrgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", assignerShortName: "MediaTek", cveId: "CVE-2023-20702", datePublished: "2023-11-06T03:50:51.533Z", dateReserved: "2022-10-28T02:03:10.759Z", dateUpdated: "2024-09-05T15:17:22.422Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28554
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: AR9380 Version: C-V2X 9150 Version: CSR8811 Version: FastConnect 6200 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: IPQ4019 Version: IPQ4028 Version: IPQ4029 Version: IPQ5010 Version: IPQ5028 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8064 Version: IPQ8065 Version: IPQ8068 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: PMP8074 Version: QAM8255P Version: QAM8295P Version: QCA4024 Version: QCA6310 Version: QCA6320 Version: QCA6391 Version: QCA6420 Version: QCA6426 Version: QCA6430 Version: QCA6436 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA7500 Version: QCA8072 Version: QCA8075 Version: QCA8081 Version: QCA8337 Version: QCA9880 Version: QCA9886 Version: QCA9888 Version: QCA9889 Version: QCA9898 Version: QCA9980 Version: QCA9984 Version: QCA9985 Version: QCA9990 Version: QCA9992 Version: QCA9994 Version: QCN5021 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5054 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6122 Version: QCN6132 Version: QCN9000 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCS410 Version: QCS610 Version: QCS8155 Version: QSM8250 Version: Qualcomm 205 Mobile Platform Version: Qualcomm 215 Mobile Platform Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: SA6145P Version: SA6150P Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SD835 Version: SD855 Version: SD865 5G Version: SDX55 Version: Snapdragon 210 Processor Version: Snapdragon 212 Mobile Platform Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 4100+ Platform Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: SW5100 Version: SW5100P Version: SXR2130 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9380 Version: WCD9385 Version: WCN3610 Version: WCN3660B Version: WCN3680B Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2023-28554", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-07-11T21:04:32.762413Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-11T21:04:40.321Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T13:43:23.243Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wearables", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR9380", }, { status: "affected", version: "C-V2X 9150", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "IPQ4019", }, { status: "affected", version: "IPQ4028", }, { status: "affected", version: "IPQ4029", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8064", }, { status: "affected", version: "IPQ8065", }, { status: "affected", version: "IPQ8068", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "PMP8074", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA7500", }, { status: "affected", version: "QCA8072", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9880", }, { status: "affected", version: "QCA9886", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCA9898", }, { status: "affected", version: "QCA9980", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCA9985", }, { status: "affected", version: "QCA9990", }, { status: "affected", version: "QCA9992", }, { status: "affected", version: "QCA9994", }, { status: "affected", version: "QCN5021", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5054", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS8155", }, { status: "affected", version: "QSM8250", }, { status: "affected", version: "Qualcomm 205 Mobile Platform", }, { status: "affected", version: "Qualcomm 215 Mobile Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "Snapdragon 210 Processor", }, { status: "affected", version: "Snapdragon 212 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 4100+ Platform", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3610", }, { status: "affected", version: "WCN3660B", }, { status: "affected", version: "WCN3680B", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:48.606Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in Qualcomm IPC", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28554", datePublished: "2023-11-07T05:26:35.362Z", dateReserved: "2023-03-17T11:41:45.847Z", dateUpdated: "2024-08-02T13:43:23.243Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28574
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Memory corruption in core services when Diag handler receives a command to configure event listeners.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: FastConnect 6700 Version: FastConnect 6900 Version: FastConnect 7800 Version: QAM8255P Version: QAM8650P Version: QAM8775P Version: QAMSRV1H Version: QCA6310 Version: QCA6320 Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8081 Version: QCA8337 Version: QCC710 Version: QCM4490 Version: QCM8550 Version: QCN6024 Version: QCN6224 Version: QCN6274 Version: QCN9024 Version: QCS4490 Version: QCS8550 Version: QDU1000 Version: QDU1010 Version: QDU1110 Version: QDU1210 Version: QDX1010 Version: QDX1011 Version: QFW7114 Version: QFW7124 Version: QRU1032 Version: QRU1052 Version: QRU1062 Version: SA8255P Version: SA8650P Version: SA9000P Version: SC8380XP Version: SD835 Version: SG8275P Version: SM8550P Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X70 Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: SRV1H Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: SXR2230P Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3950 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2023-28574", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-06-28T18:18:58.322605Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-06-28T18:19:04.318Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T13:43:22.874Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QAMSRV1H", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QDU1000", }, { status: "affected", version: "QDU1010", }, { status: "affected", version: "QDU1110", }, { status: "affected", version: "QDU1210", }, { status: "affected", version: "QDX1010", }, { status: "affected", version: "QDX1011", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRU1032", }, { status: "affected", version: "QRU1052", }, { status: "affected", version: "QRU1062", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8650P", }, { status: "affected", version: "SA9000P", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X70 Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "SRV1H", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in core services when Diag handler receives a command to configure event listeners.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 9, baseSeverity: "CRITICAL", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-20", description: "CWE-20 Improper Input Validation", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:17.129Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Improper Input Validation in Core", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28574", datePublished: "2023-11-07T05:26:45.653Z", dateReserved: "2023-03-17T11:41:45.850Z", dateUpdated: "2024-08-02T13:43:22.874Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33047
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 15:32
Severity ?
EPSS score ?
Summary
Transient DOS in WLAN Firmware while parsing no-inherit IES.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: AR9380 Version: CSR8811 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ5010 Version: IPQ5028 Version: IPQ5332 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8064 Version: IPQ8065 Version: IPQ8068 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: IPQ9008 Version: IPQ9554 Version: IPQ9570 Version: IPQ9574 Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA0000 Version: QCA2062 Version: QCA2064 Version: QCA2065 Version: QCA2066 Version: QCA4024 Version: QCA6391 Version: QCA6426 Version: QCA6436 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6678AQ Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8072 Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9886 Version: QCA9888 Version: QCA9889 Version: QCA9980 Version: QCA9984 Version: QCA9985 Version: QCA9986 Version: QCA9990 Version: QCA9992 Version: QCA9994 Version: QCC2073 Version: QCC2076 Version: QCC710 Version: QCF8000 Version: QCF8001 Version: QCM4490 Version: QCM6490 Version: QCM8550 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5054 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6100 Version: QCN6102 Version: QCN6112 Version: QCN6122 Version: QCN6132 Version: QCN6224 Version: QCN6274 Version: QCN9000 Version: QCN9001 Version: QCN9002 Version: QCN9003 Version: QCN9012 Version: QCN9013 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QCS4490 Version: QCS6490 Version: QCS8550 Version: QFW7114 Version: QFW7124 Version: QSM8350 Version: Qualcomm Video Collaboration VC3 Platform Version: SA8255P Version: SA8295P Version: SC8380XP Version: SD 8 Gen1 5G Version: SD865 5G Version: SD888 Version: SDX55 Version: SDX65M Version: SG8275P Version: SM8550P Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 1 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB) Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: SXR2130 Version: SXR2230P Version: WCD9340 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3950 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.561Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "AR9380", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ5332", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8064", }, { status: "affected", version: "IPQ8065", }, { status: "affected", version: "IPQ8068", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9554", }, { status: "affected", version: "IPQ9570", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA0000", }, { status: "affected", version: "QCA2062", }, { status: "affected", version: "QCA2064", }, { status: "affected", version: "QCA2065", }, { status: "affected", version: "QCA2066", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6678AQ", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8072", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9886", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCA9980", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCA9985", }, { status: "affected", version: "QCA9986", }, { status: "affected", version: "QCA9990", }, { status: "affected", version: "QCA9992", }, { status: "affected", version: "QCA9994", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCF8001", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5054", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6100", }, { status: "affected", version: "QCN6102", }, { status: "affected", version: "QCN6112", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9001", }, { status: "affected", version: "QCN9002", }, { status: "affected", version: "QCN9003", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9013", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QSM8350", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SD 8 Gen1 5G", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Transient DOS in WLAN Firmware while parsing no-inherit IES.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:27.661Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN Firmware", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33047", datePublished: "2023-11-07T05:26:48.751Z", dateReserved: "2023-05-17T09:28:53.123Z", dateUpdated: "2024-08-02T15:32:46.561Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40115
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-02 18:24
Severity ?
EPSS score ?
Summary
In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12l:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:13.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "11.0", }, { status: "affected", version: "12.0", }, { status: "affected", version: "12l", }, { status: "affected", version: "13.0", }, { status: "affected", version: "14.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40115", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-02-16T14:44:39.322245Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416 Use After Free", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T17:15:04.080Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.624Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/packages/modules/StatsD/+/e4cd2d8f75d1b7b83a759d752f38099a9aa9997e", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:16.207Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/packages/modules/StatsD/+/e4cd2d8f75d1b7b83a759d752f38099a9aa9997e", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40115", datePublished: "2024-02-15T22:31:16.207Z", dateReserved: "2023-08-09T02:29:31.889Z", dateUpdated: "2024-08-02T18:24:55.624Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40106
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-27 18:22
Severity ?
EPSS score ?
Summary
In sanitizeSbn of NotificationManagerService.java, there is a possible way to launch an activity from the background due to BAL Bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:54.880Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/base/+/442b4390c1f04b0e74ae4a7e349418dad4e7522e", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "14.0", }, ], }, { cpes: [ "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "13.0", }, ], }, { cpes: [ "cpe:2.3:o:google:android:12.0l:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "12.0l", }, ], }, { cpes: [ "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "12.0", }, ], }, { cpes: [ "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "11.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40106", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-02-16T17:03:09.843458Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-269", description: "CWE-269 Improper Privilege Management", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-27T18:22:07.493Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In sanitizeSbn of NotificationManagerService.java, there is a possible way to launch an activity from the background due to BAL Bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.055Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/base/+/442b4390c1f04b0e74ae4a7e349418dad4e7522e", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40106", datePublished: "2024-02-15T22:31:15.055Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2024-08-27T18:22:07.493Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28469
Vulnerability from cvelistv5
Published
2023-06-02 00:00
Modified
2025-01-08 20:11
Severity ?
EPSS score ?
Summary
An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T12:38:25.358Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-28469", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2025-01-08T20:11:12.277113Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416 Use After Free", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-01-08T20:11:17.558Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-06-02T00:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { url: "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities", }, ], }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2023-28469", datePublished: "2023-06-02T00:00:00", dateReserved: "2023-03-15T00:00:00", dateUpdated: "2025-01-08T20:11:17.558Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-22388
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2025-02-05 18:07
Severity ?
EPSS score ?
Summary
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: 315 5G IoT Modem Version: 9205 LTE Modem Version: 9206 LTE Modem Version: 9207 LTE Modem Version: APQ8017 Version: APQ8037 Version: AQT1000 Version: AR8035 Version: C-V2X 9150 Version: CSRA6620 Version: CSRA6640 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: MDM8207 Version: MDM9205S Version: MDM9250 Version: MDM9628 Version: MDM9640 Version: MSM8108 Version: MSM8209 Version: MSM8608 Version: MSM8909W Version: MSM8996AU Version: QCA4004 Version: QCA6174A Version: QCA6310 Version: QCA6320 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA8081 Version: QCA8337 Version: QCA9367 Version: QCA9377 Version: QCC710 Version: QCM2290 Version: QCM4290 Version: QCM4325 Version: QCM4490 Version: QCM6125 Version: QCM6490 Version: QCM8550 Version: QCN6024 Version: QCN6224 Version: QCN6274 Version: QCN9024 Version: QCS2290 Version: QCS410 Version: QCS4290 Version: QCS4490 Version: QCS610 Version: QCS6125 Version: QCS6490 Version: QCS8550 Version: QFW7114 Version: QFW7124 Version: QTS110 Version: Qualcomm 205 Mobile Platform Version: Qualcomm 215 Mobile Platform Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Robotics RB3 Platform Version: SC8180X+SDX55 Version: SD 455 Version: SD 675 Version: SD460 Version: SD626 Version: SD660 Version: SD662 Version: SD670 Version: SD675 Version: SD730 Version: SD820 Version: SD835 Version: SD855 Version: SD865 5G Version: SD888 Version: SDX55 Version: SDX57M Version: SG4150P Version: SG8275P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: SM7315 Version: SM7325P Version: SM8550P Version: Smart Audio 200 Platform Version: Smart Audio 400 Platform Version: Smart Display 200 Platform (APQ5053-AA) Version: Snapdragon 1100 Wearable Platform Version: Snapdragon 1200 Wearable Platform Version: Snapdragon 208 Processor Version: Snapdragon 210 Processor Version: Snapdragon 212 Mobile Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 425 Mobile Platform Version: Snapdragon 429 Mobile Platform Version: Snapdragon 430 Mobile Platform Version: Snapdragon 439 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 630 Mobile Platform Version: Snapdragon 636 Mobile Platform Version: Snapdragon 660 Mobile Platform Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 712 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 1 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 820 Automotive Platform Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 1300 Platform Version: Snapdragon Wear 2100 Platform Version: Snapdragon Wear 2500 Platform Version: Snapdragon Wear 3100 Platform Version: Snapdragon X12 LTE Modem Version: Snapdragon X20 LTE Modem Version: Snapdragon X24 LTE Modem Version: Snapdragon X5 LTE Modem Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X70 Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR1 Platform Version: Snapdragon XR2 5G Platform Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: SXR1120 Version: SXR2130 Version: Vision Intelligence 100 Platform (APQ8053-AA) Version: Vision Intelligence 200 Platform (APQ8053-AC) Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9306 Version: WCD9326 Version: WCD9330 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3610 Version: WCN3615 Version: WCN3620 Version: WCN3660B Version: WCN3680 Version: WCN3680B Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T10:07:06.523Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-22388", options: [ { Exploitation: "None", }, { Automatable: "Yes", }, { "Technical Impact": "Total", }, ], role: "CISA Coordinator", timestamp: "2023-11-15T16:40:46.049815Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-05T18:07:08.902Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "315 5G IoT Modem", }, { status: "affected", version: "9205 LTE Modem", }, { status: "affected", version: "9206 LTE Modem", }, { status: "affected", version: "9207 LTE Modem", }, { status: "affected", version: "APQ8017", }, { status: "affected", version: "APQ8037", }, { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "C-V2X 9150", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "MDM8207", }, { status: "affected", version: "MDM9205S", }, { status: "affected", version: "MDM9250", }, { status: "affected", version: "MDM9628", }, { status: "affected", version: "MDM9640", }, { status: "affected", version: "MSM8108", }, { status: "affected", version: "MSM8209", }, { status: "affected", version: "MSM8608", }, { status: "affected", version: "MSM8909W", }, { status: "affected", version: "MSM8996AU", }, { status: "affected", version: "QCA4004", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9367", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM2290", }, { status: "affected", version: "QCM4290", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCS2290", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4290", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QTS110", }, { status: "affected", version: "Qualcomm 205 Mobile Platform", }, { status: "affected", version: "Qualcomm 215 Mobile Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SD 455", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD626", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD820", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX57M", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 200 Platform", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Smart Display 200 Platform (APQ5053-AA)", }, { status: "affected", version: "Snapdragon 1100 Wearable Platform", }, { status: "affected", version: "Snapdragon 1200 Wearable Platform", }, { status: "affected", version: "Snapdragon 208 Processor", }, { status: "affected", version: "Snapdragon 210 Processor", }, { status: "affected", version: "Snapdragon 212 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 425 Mobile Platform", }, { status: "affected", version: "Snapdragon 429 Mobile Platform", }, { status: "affected", version: "Snapdragon 430 Mobile Platform", }, { status: "affected", version: "Snapdragon 439 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 630 Mobile Platform", }, { status: "affected", version: "Snapdragon 636 Mobile Platform", }, { status: "affected", version: "Snapdragon 660 Mobile Platform", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 712 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 820 Automotive Platform", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 1300 Platform", }, { status: "affected", version: "Snapdragon Wear 2100 Platform", }, { status: "affected", version: "Snapdragon Wear 2500 Platform", }, { status: "affected", version: "Snapdragon Wear 3100 Platform", }, { status: "affected", version: "Snapdragon X12 LTE Modem", }, { status: "affected", version: "Snapdragon X20 LTE Modem", }, { status: "affected", version: "Snapdragon X24 LTE Modem", }, { status: "affected", version: "Snapdragon X5 LTE Modem", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X70 Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "Vision Intelligence 100 Platform (APQ8053-AA)", }, { status: "affected", version: "Vision Intelligence 200 Platform (APQ8053-AC)", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9306", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9330", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3610", }, { status: "affected", version: "WCN3615", }, { status: "affected", version: "WCN3620", }, { status: "affected", version: "WCN3660B", }, { status: "affected", version: "WCN3680", }, { status: "affected", version: "WCN3680B", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory Corruption in Multi-mode Call Processor while processing bit mask API.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-823", description: "CWE-823 Use of Out-of-range Pointer Offset", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:33.274Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Use of Out-of-range Pointer Offset in Multi-mode Call Processor", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-22388", datePublished: "2023-11-07T05:26:29.886Z", dateReserved: "2022-12-21T09:50:17.669Z", dateUpdated: "2025-02-05T18:07:08.902Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40114
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-15 18:10
Severity ?
EPSS score ?
Summary
In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.559Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/av/+/2fdf54b050f728fd965c9afdd03116e9b9dafbae", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12l:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:13.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "11.0", }, { status: "affected", version: "12.0", }, { status: "affected", version: "12l", }, { status: "affected", version: "13.0", }, { status: "affected", version: "14.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40114", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-08-15T18:10:05.519171Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416 Use After Free", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-15T18:10:22.035Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.925Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/av/+/2fdf54b050f728fd965c9afdd03116e9b9dafbae", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40114", datePublished: "2024-02-15T22:31:15.925Z", dateReserved: "2023-08-09T02:29:31.889Z", dateUpdated: "2024-08-15T18:10:22.035Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33061
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 15:32
Severity ?
EPSS score ?
Summary
Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: CSR8811 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ5010 Version: IPQ5028 Version: IPQ5332 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: IPQ9008 Version: IPQ9554 Version: IPQ9570 Version: IPQ9574 Version: QAM8255P Version: QAM8650P Version: QAM8775P Version: QCA0000 Version: QCA4024 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9888 Version: QCA9889 Version: QCC2073 Version: QCC2076 Version: QCC710 Version: QCF8000 Version: QCF8001 Version: QCM8550 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6112 Version: QCN6122 Version: QCN6132 Version: QCN6224 Version: QCN6274 Version: QCN9000 Version: QCN9012 Version: QCN9013 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QFW7114 Version: QFW7124 Version: SC8380XP Version: SDX55 Version: SDX65M Version: SM8550P Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: SXR2230P Version: WCD9340 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.694Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ5332", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9554", }, { status: "affected", version: "IPQ9570", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA0000", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCF8001", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6112", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9013", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:45.853Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN Firmware", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33061", datePublished: "2023-11-07T05:26:55.389Z", dateReserved: "2023-05-17T09:28:53.127Z", dateUpdated: "2024-08-02T15:32:46.694Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40113
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-11-06 21:10
Severity ?
EPSS score ?
Summary
In multiple locations, there is a possible way for apps to access cross-user message data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40113", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-02-16T16:54:12.690787Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { description: "CWE-noinfo Not enough information", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-11-06T21:10:46.324Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.527Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/64ca6ba981745875dbf2064e0b2a47f8194c4f0a", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In multiple locations, there is a possible way for apps to access cross-user message data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Information disclosure", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.797Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/packages/providers/TelephonyProvider/+/64ca6ba981745875dbf2064e0b2a47f8194c4f0a", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40113", datePublished: "2024-02-15T22:31:15.797Z", dateReserved: "2023-08-09T02:29:31.889Z", dateUpdated: "2024-11-06T21:10:46.324Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-21111
Vulnerability from cvelistv5
Published
2023-05-15 00:00
Modified
2025-01-31 13:40
Severity ?
EPSS score ?
Summary
In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access to emergency services due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-256819769
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T09:28:25.666Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-05-01", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-21111", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2025-01-23T20:46:39.918730Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-1284", description: "CWE-1284 Improper Validation of Specified Quantity in Input", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-01-31T13:40:08.735Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "Android", vendor: "n/a", versions: [ { status: "affected", version: "Android-11 Android-12 Android-12L Android-13", }, ], }, ], descriptions: [ { lang: "en", value: "In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access to emergency services due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-256819769", }, ], problemTypes: [ { descriptions: [ { description: "Denial of service", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-05-15T00:00:00.000Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://source.android.com/security/bulletin/2023-05-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-21111", datePublished: "2023-05-15T00:00:00.000Z", dateReserved: "2022-11-03T00:00:00.000Z", dateUpdated: "2025-01-31T13:40:08.735Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40100
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-28 18:56
Severity ?
EPSS score ?
Summary
In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.359Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/packages/modules/DnsResolver/+/8e1561fb603fdaec15798372f865fb1750537f4f", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12l:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:13.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "11.0", }, { status: "affected", version: "12.0", }, { status: "affected", version: "12l", }, { status: "affected", version: "13.0", }, { status: "affected", version: "14.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40100", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-03-05T22:00:31.407991Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416 Use After Free", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-28T18:56:23.409Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:14.672Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/packages/modules/DnsResolver/+/8e1561fb603fdaec15798372f865fb1750537f4f", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40100", datePublished: "2024-02-15T22:31:14.672Z", dateReserved: "2023-08-09T02:29:30.483Z", dateUpdated: "2024-08-28T18:56:23.409Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40110
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2025-03-19 16:00
Severity ?
EPSS score ?
Summary
In multiple functions of MtpPacket.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.524Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/av/+/53243faf690a49e00952b3d3956d2fff0b8d4a3c", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12l:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:13.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "11.0", }, { status: "affected", version: "12.0", }, { status: "affected", version: "12l", }, { status: "affected", version: "13.0", }, { status: "affected", version: "14.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40110", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-03-19T15:59:27.542188Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-787", description: "CWE-787 Out-of-bounds Write", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-03-19T16:00:18.169Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In multiple functions of MtpPacket.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.450Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/av/+/53243faf690a49e00952b3d3956d2fff0b8d4a3c", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40110", datePublished: "2024-02-15T22:31:15.450Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2025-03-19T16:00:18.169Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33048
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 15:32
Severity ?
EPSS score ?
Summary
Transient DOS in WLAN Firmware while parsing t2lm buffers.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: CSR8811 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ5010 Version: IPQ5028 Version: IPQ5332 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: IPQ9008 Version: IPQ9554 Version: IPQ9570 Version: IPQ9574 Version: QAM8255P Version: QAM8650P Version: QAM8775P Version: QCA0000 Version: QCA4024 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9888 Version: QCA9889 Version: QCC2073 Version: QCC2076 Version: QCC710 Version: QCF8000 Version: QCF8001 Version: QCM8550 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6112 Version: QCN6122 Version: QCN6132 Version: QCN6224 Version: QCN6274 Version: QCN9000 Version: QCN9012 Version: QCN9013 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QFW7114 Version: QFW7124 Version: SC8380XP Version: SDX55 Version: SDX65M Version: SM8550P Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: SXR2230P Version: WCD9340 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ar8035_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "csr8811_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "fastconnect_6900_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "fastconnect_7800_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_214_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_214_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_216_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_216_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_316_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_316_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_318_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_318_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_3210_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_3210_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_326_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_326_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq5010_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq5010_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq5028_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq5028_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq5332_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq5332_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6010_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6018_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6028_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6028_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8070a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8070a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8071a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8071a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8072a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8072a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8074a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8074a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8076_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8076_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8076a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8076a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8078_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8078_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8078a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8078a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8173_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8173_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8174_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8174_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9008_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9008_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9554_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9554_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9570_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9574_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9574_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qam8255p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qam8650p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qam8775p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca0000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca0000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca4024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6554a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6554a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6564au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6574_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6574a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6574au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6584au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6595_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6595au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6696_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6698aq_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6797aq_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8075_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8075_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8081_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8082_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8082_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8084_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8084_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8085_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8085_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8337_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8386_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8386_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca9888_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca9889_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcc2073_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcc2073_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcc2076_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcc2076_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcc710_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcc710_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcf8000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcf8000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcf8001_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcf8001_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcm8550_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5022_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5022_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5052_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5052_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5122_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5122_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5124_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5124_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5152_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5152_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5154_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5154_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5164_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5164_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6023_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6023_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6112_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6112_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6122_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6122_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6132_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6132_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6224_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6224_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6274_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6274_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9012_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9012_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9013_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9013_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9022_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9022_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9070_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9070_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9072_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9072_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9074_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9100_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9100_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9274_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9274_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qfw7114_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qfw7114_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qfw7124_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qfw7124_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sc8380xp_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sdx55_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sdx65m_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sdx65m_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sm8550p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_8_gen_2_mobile_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_ar2_gen_1_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_ar2_gen_1_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_x65_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_x65_5g_modem-rf_system_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_x75_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_x75_5g_modem-rf_system_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ssg2115p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ssg2115p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ssg2125p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ssg2125p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sxr1230p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sxr1230p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sxr2230p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9340_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9380_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9385_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9390_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9395_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8830_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8832_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8835_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8840_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8845_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8845h_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2023-33048", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-04-12T19:51:41.288152Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-06-20T19:31:31.517Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.635Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ5332", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9554", }, { status: "affected", version: "IPQ9570", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA0000", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCF8001", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6112", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9013", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Transient DOS in WLAN Firmware while parsing t2lm buffers.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:31.128Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer over-read in WLAN Firmware", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33048", datePublished: "2023-11-07T05:26:49.815Z", dateReserved: "2023-05-17T09:28:53.123Z", dateUpdated: "2024-08-02T15:32:46.635Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28556
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Cryptographic issue in HLOS during key management.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: 315 5G IoT Modem Version: 9205 LTE Modem Version: AQT1000 Version: AR8031 Version: AR8035 Version: C-V2X 9150 Version: CSRA6620 Version: CSRA6640 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Flight RB5 5G Platform Version: FSM10056 Version: MDM9205S Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QAMSRV1H Version: QCA4004 Version: QCA6174A Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8081 Version: QCA8337 Version: QCA9377 Version: QCC710 Version: QCM2290 Version: QCM4290 Version: QCM4325 Version: QCM4490 Version: QCM6125 Version: QCM6490 Version: QCM8550 Version: QCN6024 Version: QCN6224 Version: QCN6274 Version: QCN7606 Version: QCN9011 Version: QCN9012 Version: QCN9024 Version: QCN9074 Version: QCS2290 Version: QCS410 Version: QCS4290 Version: QCS4490 Version: QCS610 Version: QCS6125 Version: QCS6490 Version: QCS7230 Version: QCS8155 Version: QCS8250 Version: QCS8550 Version: QDU1000 Version: QDU1010 Version: QDU1110 Version: QDU1210 Version: QDX1010 Version: QDX1011 Version: QFW7114 Version: QFW7124 Version: QRB5165M Version: QRB5165N Version: QRU1032 Version: QRU1052 Version: QRU1062 Version: QSM8250 Version: QSM8350 Version: QTS110 Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Qualcomm Video Collaboration VC5 Platform Version: Robotics RB5 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SA8540P Version: SA8650P Version: SA9000P Version: SC8180X+SDX55 Version: SC8380XP Version: SD 675 Version: SD 8 Gen1 5G Version: SD460 Version: SD662 Version: SD670 Version: SD675 Version: SD730 Version: SD855 Version: SD865 5G Version: SD888 Version: SDX55 Version: SG4150P Version: SG8275P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: SM7315 Version: SM7325P Version: SM8550P Version: Smart Audio 400 Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 1 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB) Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 1300 Platform Version: Snapdragon X24 LTE Modem Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR1 Platform Version: Snapdragon XR2 5G Platform Version: Snapdragon XR2+ Gen 1 Platform Version: Snapdragon Auto 4G Modem Version: SRV1H Version: SSG2115P Version: SSG2125P Version: SW5100 Version: SW5100P Version: SXR1120 Version: SXR1230P Version: SXR2130 Version: SXR2230P Version: WCD9306 Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN3999 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:22.844Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "315 5G IoT Modem", }, { status: "affected", version: "9205 LTE Modem", }, { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8031", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "C-V2X 9150", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Flight RB5 5G Platform", }, { status: "affected", version: "FSM10056", }, { status: "affected", version: "MDM9205S", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QAMSRV1H", }, { status: "affected", version: "QCA4004", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM2290", }, { status: "affected", version: "QCM4290", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN7606", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCS2290", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4290", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS7230", }, { status: "affected", version: "QCS8155", }, { status: "affected", version: "QCS8250", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QDU1000", }, { status: "affected", version: "QDU1010", }, { status: "affected", version: "QDU1110", }, { status: "affected", version: "QDU1210", }, { status: "affected", version: "QDX1010", }, { status: "affected", version: "QDX1011", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "QRU1032", }, { status: "affected", version: "QRU1052", }, { status: "affected", version: "QRU1062", }, { status: "affected", version: "QSM8250", }, { status: "affected", version: "QSM8350", }, { status: "affected", version: "QTS110", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC5 Platform", }, { status: "affected", version: "Robotics RB5 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SA8540P", }, { status: "affected", version: "SA8650P", }, { status: "affected", version: "SA9000P", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8 Gen1 5G", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 1300 Platform", }, { status: "affected", version: "Snapdragon X24 LTE Modem", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon XR2+ Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SRV1H", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9306", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN3999", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Cryptographic issue in HLOS during key management.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-285", description: "CWE-285 Improper Authorization", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:52.401Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Improper Authorization in HLOS", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28556", datePublished: "2023-11-07T05:26:36.631Z", dateReserved: "2023-03-17T11:41:45.847Z", dateUpdated: "2024-08-02T13:43:22.844Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40124
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-11-04 16:17
Severity ?
EPSS score ?
Summary
In multiple locations, there is a possible cross-user read due to a confused deputy. This could lead to local information disclosure of photos or other images with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40124", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-02-19T18:37:23.657937Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-125", description: "CWE-125 Out-of-bounds Read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-11-04T16:17:33.093Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.334Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/base/+/86c8421c1181816b6cb333eb62a78e32290c4b17", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In multiple locations, there is a possible cross-user read due to a confused deputy. This could lead to local information disclosure of photos or other images with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Information disclosure", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:16.353Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/base/+/86c8421c1181816b6cb333eb62a78e32290c4b17", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40124", datePublished: "2024-02-15T22:31:16.353Z", dateReserved: "2023-08-09T02:29:33.868Z", dateUpdated: "2024-11-04T16:17:33.093Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33074
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2025-02-05 18:05
Severity ?
EPSS score ?
Summary
Memory corruption in Audio when SSR event is triggered after music playback is stopped.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: FastConnect 6700 Version: FastConnect 6900 Version: FastConnect 7800 Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCM4325 Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SD865 5G Version: SG8275P Version: SM8550P Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 1 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon XR2 5G Platform Version: SSG2115P Version: SSG2125P Version: SW5100 Version: SW5100P Version: SXR1230P Version: SXR2230P Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.700Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-33074", options: [ { Exploitation: "None", }, { Automatable: "No", }, { "Technical Impact": "Total", }, ], role: "CISA Coordinator", timestamp: "2023-11-15T16:40:44.535029Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-05T18:05:21.889Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in Audio when SSR event is triggered after music playback is stopped.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416 Use After Free", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:49.231Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Use After Free in Audio", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33074", datePublished: "2023-11-07T05:26:56.441Z", dateReserved: "2023-05-17T09:28:53.132Z", dateUpdated: "2025-02-05T18:05:21.889Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28566
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Information disclosure in WLAN HAL while handling the WMI state info command.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: QCA6310 Version: QCA6320 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6430 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCM4325 Version: QCM4490 Version: QCM6125 Version: QCN7605 Version: QCN7606 Version: QCS410 Version: QCS4490 Version: QCS610 Version: QCS6125 Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Robotics RB3 Platform Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SC8180X+SDX55 Version: SD 675 Version: SD 8CX Version: SD460 Version: SD660 Version: SD662 Version: SD670 Version: SD675 Version: SD730 Version: SD835 Version: SD855 Version: SDX55 Version: SG4150P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 660 Mobile Platform Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 712 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 850 Mobile Compute Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon XR1 Platform Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: SXR1120 Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2023-28566", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-07-11T20:24:39.461795Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-11T20:24:45.401Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T13:43:22.544Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCN7605", }, { status: "affected", version: "QCN7606", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8CX", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 660 Mobile Platform", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 712 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 850 Mobile Compute Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Information disclosure in WLAN HAL while handling the WMI state info command.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:59.644Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN HAL", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28566", datePublished: "2023-11-07T05:26:38.950Z", dateReserved: "2023-03-17T11:41:45.849Z", dateUpdated: "2024-08-02T13:43:22.544Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33056
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 15:32
Severity ?
EPSS score ?
Summary
Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: CSR8811 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ5010 Version: IPQ5028 Version: IPQ5332 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: IPQ9008 Version: IPQ9554 Version: IPQ9570 Version: IPQ9574 Version: QAM8255P Version: QAM8650P Version: QAM8775P Version: QCA0000 Version: QCA4024 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9888 Version: QCA9889 Version: QCC2073 Version: QCC2076 Version: QCC710 Version: QCF8000 Version: QCF8001 Version: QCM8550 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6112 Version: QCN6122 Version: QCN6132 Version: QCN6224 Version: QCN6274 Version: QCN9000 Version: QCN9012 Version: QCN9013 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QCS8550 Version: QFW7114 Version: QFW7124 Version: SC8380XP Version: SDX55 Version: SDX65M Version: SM8550P Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: SXR2230P Version: WCD9340 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.617Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ5332", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9554", }, { status: "affected", version: "IPQ9570", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA0000", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCF8001", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6112", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9013", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-476", description: "CWE-476 NULL Pointer Dereference", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:38.145Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "NULL Pointer dereference in WLAN Firmware", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33056", datePublished: "2023-11-07T05:26:52.887Z", dateReserved: "2023-05-17T09:28:53.126Z", dateUpdated: "2024-08-02T15:32:46.617Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-32837
Vulnerability from cvelistv5
Published
2023-11-06 03:50
Modified
2025-04-25 16:03
Severity ?
EPSS score ?
Summary
In video, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08235273; Issue ID: ALPS08250357.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| MediaTek, Inc. | MT6883, MT6885, MT6889, MT6893, MT8797, MT8798 |
Version: Android 12.0 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:25:37.097Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, { tags: [ "x_transferred", ], url: "http://packetstormsecurity.com/files/175665/mtk-jpeg-Driver-Out-Of-Bounds-Read-Write.html", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-32837", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-04-23T13:25:47.757829Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-787", description: "CWE-787 Out-of-bounds Write", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-04-25T16:03:38.710Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "MT6883, MT6885, MT6889, MT6893, MT8797, MT8798", vendor: "MediaTek, Inc.", versions: [ { status: "affected", version: "Android 12.0", }, ], }, ], descriptions: [ { lang: "en", value: "In video, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08235273; Issue ID: ALPS08250357.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-11-14T03:06:37.833Z", orgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", shortName: "MediaTek", }, references: [ { url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, { url: "http://packetstormsecurity.com/files/175665/mtk-jpeg-Driver-Out-Of-Bounds-Read-Write.html", }, ], }, }, cveMetadata: { assignerOrgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", assignerShortName: "MediaTek", cveId: "CVE-2023-32837", datePublished: "2023-11-06T03:50:50.052Z", dateReserved: "2023-05-16T03:04:32.152Z", dateUpdated: "2025-04-25T16:03:38.710Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33031
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2025-02-05 18:06
Severity ?
EPSS score ?
Summary
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: APQ8017 Version: APQ8064AU Version: AQT1000 Version: AR8031 Version: AR8035 Version: C-V2X 9150 Version: CSRA6620 Version: CSRA6640 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Flight RB5 5G Platform Version: MDM9628 Version: MDM9640 Version: MDM9650 Version: MSM8108 Version: MSM8209 Version: MSM8608 Version: MSM8996AU Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA6174A Version: QCA6310 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8081 Version: QCA8337 Version: QCA9377 Version: QCC710 Version: QCM4325 Version: QCM6490 Version: QCM8550 Version: QCN6224 Version: QCN6274 Version: QCN9011 Version: QCN9012 Version: QCN9074 Version: QCS410 Version: QCS610 Version: QCS6490 Version: QCS7230 Version: QCS8250 Version: QCS8550 Version: QFW7114 Version: QFW7124 Version: QRB5165M Version: QRB5165N Version: Qualcomm 205 Mobile Platform Version: Qualcomm 215 Mobile Platform Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Qualcomm Video Collaboration VC5 Platform Version: Robotics RB3 Platform Version: Robotics RB5 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SD660 Version: SD855 Version: SD865 5G Version: SDM429W Version: SDX55 Version: SG4150P Version: SG8275P Version: SM7250P Version: SM8550P Version: Smart Audio 200 Platform Version: Smart Audio 400 Platform Version: Snapdragon 208 Processor Version: Snapdragon 210 Processor Version: Snapdragon 212 Mobile Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 429 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 660 Mobile Platform Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 820 Automotive Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 4100+ Platform Version: Snapdragon X12 LTE Modem Version: Snapdragon X5 LTE Modem Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: SW5100 Version: SW5100P Version: SXR2130 Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3610 Version: WCN3615 Version: WCN3620 Version: WCN3660B Version: WCN3680 Version: WCN3680B Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.546Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-33031", options: [ { Exploitation: "None", }, { Automatable: "No", }, { "Technical Impact": "Total", }, ], role: "CISA Coordinator", timestamp: "2023-11-15T16:40:42.923724Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-05T18:06:35.445Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "APQ8017", }, { status: "affected", version: "APQ8064AU", }, { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8031", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "C-V2X 9150", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Flight RB5 5G Platform", }, { status: "affected", version: "MDM9628", }, { status: "affected", version: "MDM9640", }, { status: "affected", version: "MDM9650", }, { status: "affected", version: "MSM8108", }, { status: "affected", version: "MSM8209", }, { status: "affected", version: "MSM8608", }, { status: "affected", version: "MSM8996AU", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS7230", }, { status: "affected", version: "QCS8250", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "Qualcomm 205 Mobile Platform", }, { status: "affected", version: "Qualcomm 215 Mobile Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC5 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "Robotics RB5 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SDM429W", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 200 Platform", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Snapdragon 208 Processor", }, { status: "affected", version: "Snapdragon 210 Processor", }, { status: "affected", version: "Snapdragon 212 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 429 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 660 Mobile Platform", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 820 Automotive Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 4100+ Platform", }, { status: "affected", version: "Snapdragon X12 LTE Modem", }, { status: "affected", version: "Snapdragon X5 LTE Modem", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3610", }, { status: "affected", version: "WCN3615", }, { status: "affected", version: "WCN3620", }, { status: "affected", version: "WCN3660B", }, { status: "affected", version: "WCN3680", }, { status: "affected", version: "WCN3680B", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:20.550Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Copy Without Checking Size of Input in Automotive Audio", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33031", datePublished: "2023-11-07T05:26:46.671Z", dateReserved: "2023-05-17T09:28:53.121Z", dateUpdated: "2025-02-05T18:06:35.445Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40105
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-10-31 17:09
Severity ?
EPSS score ?
Summary
In backupAgentCreated of ActivityManagerService.java, there is a possible way to leak sensitive data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40105", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-02-19T18:34:22.472131Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-862", description: "CWE-862 Missing Authorization", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-10-31T17:09:33.100Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.562Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/base/+/935eb5ed6be35860a99ea242fb753f687d54a308", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In backupAgentCreated of ActivityManagerService.java, there is a possible way to leak sensitive data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Information disclosure", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:14.906Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/base/+/935eb5ed6be35860a99ea242fb753f687d54a308", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40105", datePublished: "2024-02-15T22:31:14.906Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2024-10-31T17:09:33.100Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-32835
Vulnerability from cvelistv5
Published
2023-11-06 03:50
Modified
2025-04-24 15:47
Severity ?
EPSS score ?
Summary
In keyinstall, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08157918; Issue ID: ALPS08157918.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:25:37.189Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-32835", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-04-23T13:25:50.681245Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-843", description: "CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-04-24T15:47:50.374Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "MT6580, MT6731, MT6735, MT6737, MT6739, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT8185, MT8321, MT8385, MT8666, MT8667, MT8673, MT8675, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797, MT8798", vendor: "MediaTek, Inc.", versions: [ { status: "affected", version: "Android 11.0, 12.0, 13.0", }, ], }, ], descriptions: [ { lang: "en", value: "In keyinstall, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08157918; Issue ID: ALPS08157918.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-11-06T03:50:47.125Z", orgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", shortName: "MediaTek", }, references: [ { url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], }, }, cveMetadata: { assignerOrgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", assignerShortName: "MediaTek", cveId: "CVE-2023-32835", datePublished: "2023-11-06T03:50:47.125Z", dateReserved: "2023-05-16T03:04:32.152Z", dateUpdated: "2025-04-24T15:47:50.374Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33055
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2025-02-05 18:06
Severity ?
EPSS score ?
Summary
Memory Corruption in Audio while invoking callback function in driver from ADSP.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: AR8035 Version: CSRA6620 Version: CSRA6640 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Flight RB5 5G Platform Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA6174A Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8081 Version: QCA8337 Version: QCA9377 Version: QCC710 Version: QCM2290 Version: QCM4290 Version: QCM4325 Version: QCM6125 Version: QCM6490 Version: QCM8550 Version: QCN6224 Version: QCN6274 Version: QCN9011 Version: QCN9012 Version: QCS2290 Version: QCS410 Version: QCS4290 Version: QCS610 Version: QCS6125 Version: QCS6490 Version: QCS7230 Version: QCS8250 Version: QCS8550 Version: QFW7114 Version: QFW7124 Version: QRB5165M Version: QRB5165N Version: Qualcomm 215 Mobile Platform Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Qualcomm Video Collaboration VC5 Platform Version: Robotics RB5 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SD660 Version: SD855 Version: SD865 5G Version: SD888 Version: SDX55 Version: SG4150P Version: SG8275P Version: SM4125 Version: SM7250P Version: SM7315 Version: SM7325P Version: SM8550P Version: Smart Audio 400 Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 439 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 660 Mobile Platform Version: Snapdragon 662 Mobile Platform Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon X12 LTE Modem Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: Snapdragon XR2+ Gen 1 Platform Version: SW5100 Version: SW5100P Version: SXR2130 Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3615 Version: WCN3660B Version: WCN3680B Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.680Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-33055", options: [ { Exploitation: "None", }, { Automatable: "No", }, { "Technical Impact": "Total", }, ], role: "CISA Coordinator", timestamp: "2023-11-15T16:40:43.471354Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-05T18:06:14.313Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Flight RB5 5G Platform", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM2290", }, { status: "affected", version: "QCM4290", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCS2290", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4290", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS7230", }, { status: "affected", version: "QCS8250", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "Qualcomm 215 Mobile Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC5 Platform", }, { status: "affected", version: "Robotics RB5 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 439 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 660 Mobile Platform", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon X12 LTE Modem", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon XR2+ Gen 1 Platform", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3615", }, { status: "affected", version: "WCN3660B", }, { status: "affected", version: "WCN3680B", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory Corruption in Audio while invoking callback function in driver from ADSP.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:34.667Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Copy Without Checking Size of Input in Audio", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33055", datePublished: "2023-11-07T05:26:50.923Z", dateReserved: "2023-05-17T09:28:53.125Z", dateUpdated: "2025-02-05T18:06:14.313Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40107
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-21 20:15
Severity ?
EPSS score ?
Summary
In ARTPWriter of ARTPWriter.cpp, there is a possible use after free due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.504Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/av/+/acb81624b4f50fed52cb1b3829809ee2f7377093", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:12.0l:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "12.0", }, { status: "affected", version: "12.0l", }, { status: "affected", version: "13.0", }, { status: "affected", version: "14.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40107", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-08-21T20:14:51.321523Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-416", description: "CWE-416 Use After Free", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-21T20:15:47.531Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, ], }, ], descriptions: [ { lang: "en", value: "In ARTPWriter of ARTPWriter.cpp, there is a possible use after free due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.170Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/av/+/acb81624b4f50fed52cb1b3829809ee2f7377093", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40107", datePublished: "2024-02-15T22:31:15.170Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2024-08-21T20:15:47.531Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28545
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Memory corruption in TZ Secure OS while loading an app ELF.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: 315 5G IoT Modem Version: 9205 LTE Modem Version: AQT1000 Version: AR8031 Version: AR8035 Version: CSRA6620 Version: CSRA6640 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Flight RB5 5G Platform Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QAMSRV1H Version: QCA4004 Version: QCA6174A Version: QCA6310 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8081 Version: QCA8337 Version: QCA9377 Version: QCA9984 Version: QCC710 Version: QCM2290 Version: QCM4290 Version: QCM4325 Version: QCM4490 Version: QCM6490 Version: QCM8550 Version: QCN6024 Version: QCN6224 Version: QCN6274 Version: QCN7606 Version: QCN9011 Version: QCN9012 Version: QCN9024 Version: QCS2290 Version: QCS4290 Version: QCS4490 Version: QCS6490 Version: QCS7230 Version: QCS8250 Version: QCS8550 Version: QDU1000 Version: QDU1010 Version: QDU1110 Version: QDU1210 Version: QDX1010 Version: QDX1011 Version: QFW7114 Version: QFW7124 Version: QRB5165M Version: QRB5165N Version: QRU1032 Version: QRU1052 Version: QRU1062 Version: QSM8250 Version: QSM8350 Version: Qualcomm Video Collaboration VC3 Platform Version: Qualcomm Video Collaboration VC5 Platform Version: Robotics RB3 Platform Version: Robotics RB5 Platform Version: SA6145P Version: SA6155 Version: SA6155P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8255P Version: SA8295P Version: SA8540P Version: SA8650P Version: SA9000P Version: SC8380XP Version: SD 675 Version: SD 8 Gen1 5G Version: SD 8CX Version: SD460 Version: SD662 Version: SD670 Version: SD675 Version: SD855 Version: SD865 5G Version: SD888 Version: SDX55 Version: SDX57M Version: SG4150P Version: SG8275P Version: SM4125 Version: SM7250P Version: SM7315 Version: SM7325P Version: SM8550P Version: Smart Audio 400 Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 1 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 850 Mobile Compute Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB) Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 1300 Platform Version: Snapdragon X24 LTE Modem Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X70 Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: Snapdragon XR2+ Gen 1 Platform Version: SRV1H Version: SSG2115P Version: SSG2125P Version: SW5100 Version: SW5100P Version: SXR1230P Version: SXR2130 Version: SXR2230P Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9306 Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN3999 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:22.294Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "315 5G IoT Modem", }, { status: "affected", version: "9205 LTE Modem", }, { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8031", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Flight RB5 5G Platform", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QAMSRV1H", }, { status: "affected", version: "QCA4004", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM2290", }, { status: "affected", version: "QCM4290", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN7606", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCS2290", }, { status: "affected", version: "QCS4290", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS7230", }, { status: "affected", version: "QCS8250", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QDU1000", }, { status: "affected", version: "QDU1010", }, { status: "affected", version: "QDU1110", }, { status: "affected", version: "QDU1210", }, { status: "affected", version: "QDX1010", }, { status: "affected", version: "QDX1011", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "QRU1032", }, { status: "affected", version: "QRU1052", }, { status: "affected", version: "QRU1062", }, { status: "affected", version: "QSM8250", }, { status: "affected", version: "QSM8350", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC5 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "Robotics RB5 Platform", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SA8540P", }, { status: "affected", version: "SA8650P", }, { status: "affected", version: "SA9000P", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8 Gen1 5G", }, { status: "affected", version: "SD 8CX", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX57M", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 850 Mobile Compute Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 1300 Platform", }, { status: "affected", version: "Snapdragon X24 LTE Modem", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X70 Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon XR2+ Gen 1 Platform", }, { status: "affected", version: "SRV1H", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9306", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN3999", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in TZ Secure OS while loading an app ELF.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-119", description: "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:41.496Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Improper Restriction of Operations within the Bounds of a Memory Buffer in TZ Secure OS", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28545", datePublished: "2023-11-07T05:26:32.849Z", dateReserved: "2023-03-17T11:41:45.846Z", dateUpdated: "2024-08-02T13:43:22.294Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33045
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 15:32
Severity ?
EPSS score ?
Summary
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: CSR8811 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ5010 Version: IPQ5028 Version: IPQ5332 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: IPQ9008 Version: IPQ9554 Version: IPQ9570 Version: IPQ9574 Version: QAM8255P Version: QAM8650P Version: QAM8775P Version: QCA0000 Version: QCA4024 Version: QCA6391 Version: QCA6426 Version: QCA6436 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9888 Version: QCA9889 Version: QCC2073 Version: QCC2076 Version: QCC710 Version: QCF8000 Version: QCF8001 Version: QCM8550 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6112 Version: QCN6122 Version: QCN6132 Version: QCN6224 Version: QCN6274 Version: QCN9000 Version: QCN9012 Version: QCN9013 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QFW7114 Version: QFW7124 Version: SC8380XP Version: SD 8 Gen1 5G Version: SD865 5G Version: SDX55 Version: SDX65M Version: SM8550P Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: SSG2115P Version: SSG2125P Version: SXR1230P Version: SXR2230P Version: WCD9340 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ar8035_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "csr8811_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "fastconnect_6800_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "fastconnect_6900_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "fastconnect_7800_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_214_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_214_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_216_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_216_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_316_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_316_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_318_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_318_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_3210_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_3210_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:immersive_home_326_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "immersive_home_326_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq5010_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq5010_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq5028_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq5028_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq5332_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq5332_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6010_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6018_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq6028_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq6028_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8070a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8070a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8071a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8071a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8072a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8072a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8074a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8074a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8076_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8076_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8076a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8076a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8078_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8078_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8078a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8078a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8173_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8173_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq8174_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq8174_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9008_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9008_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9554_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9554_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9570_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9570_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ipq9574_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ipq9574_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qam8255p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qam8650p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qam8775p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca0000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca0000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca4024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6391_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6426_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6436_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6554a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6554a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6564au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6574_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6584au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6595_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6595au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6696_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6698aq_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6797aq_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8075_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8075_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8081_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8082_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8082_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8084_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8084_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8085_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8085_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8337_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca8386_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca8386_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca9888_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca9889_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcc2073_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcc2073_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcc2076_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcc2076_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcc710_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcc710_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcf8000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcf8000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcf8001_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcf8001_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcm8550_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6574au_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qca6574a_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5022_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5022_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5052_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5052_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5122_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5122_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5124_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5124_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5152_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5152_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5154_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5154_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn5164_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn5164_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6023_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6023_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6112_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6112_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6122_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6122_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6132_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6132_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6224_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6224_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn6274_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn6274_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9000_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9012_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9012_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9013_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9013_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9022_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9022_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9024_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9070_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9070_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9072_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9072_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9074_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9100_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9100_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qcn9274_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qcn9274_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qfw7114_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qfw7114_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:qfw7124_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "qfw7124_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sc8380xp_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sd_8_gen1_5g_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sd865_5g_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sdx55_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sdx65m_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sdx65m_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sm8550p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_8_gen_1_mobile_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_8_gen_2_mobile_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_8\\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_8\\+_gen_2_mobile_platform_firmware", vendor: "qualcomm", versions: [ { status: "affected", version: "0", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_865_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_865_5g_mobile_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_865\\+_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_865\\+_5g_mobile_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_870_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_870_5g_mobile_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_ar2_gen_1_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_ar2_gen_1_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_x65_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_x65_5g_modem-rf_system_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_x75_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_x75_5g_modem-rf_system_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:snapdragon_xr2_5g_platform_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "snapdragon_xr2_5g_platform_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ssg2115p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ssg2115p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:ssg2125p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "ssg2125p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sxr1230p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sxr1230p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "sxr2230p_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9340_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9380_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9385_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9390_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcd9395_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wcn6740_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wcn6740_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8810_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8815_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8830_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8832_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8835_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8840_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8845_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, { cpes: [ "cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "wsa8845h_firmware", vendor: "qualcomm", versions: [ { lessThanOrEqual: "*", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2023-33045", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-06-27T20:21:17.768990Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-06-28T18:12:42.898Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.585Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ5332", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9554", }, { status: "affected", version: "IPQ9570", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA0000", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCF8001", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6112", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9013", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SD 8 Gen1 5G", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:24.156Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Copy Without Checking Size of Input in WLAN Firmware", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33045", datePublished: "2023-11-07T05:26:47.720Z", dateReserved: "2023-05-17T09:28:53.123Z", dateUpdated: "2024-08-02T15:32:46.585Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28569
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Information disclosure in WLAN HAL while handling command through WMI interfaces.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: AR9380 Version: CSR8811 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: IPQ4018 Version: IPQ4019 Version: IPQ4028 Version: IPQ4029 Version: IPQ5010 Version: IPQ5028 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8064 Version: IPQ8065 Version: IPQ8068 Version: IPQ8069 Version: IPQ8070 Version: IPQ8070A Version: IPQ8071 Version: IPQ8071A Version: IPQ8072 Version: IPQ8072A Version: IPQ8074 Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA4024 Version: QCA6310 Version: QCA6320 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6428 Version: QCA6430 Version: QCA6438 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA7500 Version: QCA8075 Version: QCA8081 Version: QCA9880 Version: QCA9886 Version: QCA9888 Version: QCA9889 Version: QCA9898 Version: QCA9980 Version: QCA9984 Version: QCA9985 Version: QCA9986 Version: QCA9987 Version: QCA9990 Version: QCA9992 Version: QCA9994 Version: QCM4325 Version: QCM4490 Version: QCM6125 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5064 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN5550 Version: QCN6023 Version: QCN6024 Version: QCN6122 Version: QCN6132 Version: QCN7605 Version: QCN7606 Version: QCN9000 Version: QCN9012 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCS410 Version: QCS4490 Version: QCS610 Version: QCS6125 Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Robotics RB3 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SC8180X+SDX55 Version: SD 675 Version: SD 8CX Version: SD460 Version: SD662 Version: SD670 Version: SD675 Version: SD730 Version: SD835 Version: SD855 Version: SDX55 Version: SG4150P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 712 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 850 Mobile Compute Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon XR1 Platform Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: SXR1120 Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:22.620Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR9380", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "IPQ4018", }, { status: "affected", version: "IPQ4019", }, { status: "affected", version: "IPQ4028", }, { status: "affected", version: "IPQ4029", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8064", }, { status: "affected", version: "IPQ8065", }, { status: "affected", version: "IPQ8068", }, { status: "affected", version: "IPQ8069", }, { status: "affected", version: "IPQ8070", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6428", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6438", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA7500", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA9880", }, { status: "affected", version: "QCA9886", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCA9898", }, { status: "affected", version: "QCA9980", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCA9985", }, { status: "affected", version: "QCA9986", }, { status: "affected", version: "QCA9987", }, { status: "affected", version: "QCA9990", }, { status: "affected", version: "QCA9992", }, { status: "affected", version: "QCA9994", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5064", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN5550", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN7605", }, { status: "affected", version: "QCN7606", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8CX", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 712 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 850 Mobile Compute Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Information disclosure in WLAN HAL while handling command through WMI interfaces.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:06.885Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN HAL", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28569", datePublished: "2023-11-07T05:26:42.279Z", dateReserved: "2023-03-17T11:41:45.849Z", dateUpdated: "2024-08-02T13:43:22.620Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-32832
Vulnerability from cvelistv5
Published
2023-11-06 03:50
Modified
2025-04-25 16:03
Severity ?
EPSS score ?
Summary
In video, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08235273; Issue ID: ALPS08235273.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| MediaTek, Inc. | MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT6985, MT8797, MT8798 |
Version: Android 12.0, 13.0 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:25:37.123Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, { tags: [ "x_transferred", ], url: "http://packetstormsecurity.com/files/175662/Android-mtk_jpeg-Driver-Race-Condition-Privilege-Escalation.html", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-32832", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-04-23T13:25:54.802828Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-787", description: "CWE-787 Out-of-bounds Write", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-04-25T16:03:53.474Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "MT6883, MT6885, MT6889, MT6893, MT6895, MT6983, MT6985, MT8797, MT8798", vendor: "MediaTek, Inc.", versions: [ { status: "affected", version: "Android 12.0, 13.0", }, ], }, ], descriptions: [ { lang: "en", value: "In video, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08235273; Issue ID: ALPS08235273.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-11-14T03:07:21.509Z", orgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", shortName: "MediaTek", }, references: [ { url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, { url: "http://packetstormsecurity.com/files/175662/Android-mtk_jpeg-Driver-Race-Condition-Privilege-Escalation.html", }, ], }, }, cveMetadata: { assignerOrgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", assignerShortName: "MediaTek", cveId: "CVE-2023-32832", datePublished: "2023-11-06T03:50:42.455Z", dateReserved: "2023-05-16T03:04:32.151Z", dateUpdated: "2025-04-25T16:03:53.474Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-32836
Vulnerability from cvelistv5
Published
2023-11-06 03:50
Modified
2025-04-25 16:03
Severity ?
EPSS score ?
Summary
In display, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08126725; Issue ID: ALPS08126725.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| MediaTek, Inc. | MT6893, MT6895, MT6983, MT6985, MT8797, MT8798 |
Version: Android 11.0, 12.0, 13.0 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:25:37.055Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], title: "CVE Program Container", }, { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-32836", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-04-23T13:25:49.173576Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-787", description: "CWE-787 Out-of-bounds Write", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-04-25T16:03:46.268Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "MT6893, MT6895, MT6983, MT6985, MT8797, MT8798", vendor: "MediaTek, Inc.", versions: [ { status: "affected", version: "Android 11.0, 12.0, 13.0", }, ], }, ], descriptions: [ { lang: "en", value: "In display, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08126725; Issue ID: ALPS08126725.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-11-06T03:50:48.561Z", orgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", shortName: "MediaTek", }, references: [ { url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], }, }, cveMetadata: { assignerOrgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", assignerShortName: "MediaTek", cveId: "CVE-2023-32836", datePublished: "2023-11-06T03:50:48.561Z", dateReserved: "2023-05-16T03:04:32.152Z", dateUpdated: "2025-04-25T16:03:46.268Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28553
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-09-04 18:53
Severity ?
EPSS score ?
Summary
Information Disclosure in WLAN Host when processing WMI event command.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AR8035 Version: AR9380 Version: CSR8811 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Immersive Home 214 Platform Version: Immersive Home 216 Platform Version: Immersive Home 316 Platform Version: Immersive Home 318 Platform Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ4019 Version: IPQ4028 Version: IPQ4029 Version: IPQ5010 Version: IPQ5028 Version: IPQ6000 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ8064 Version: IPQ8065 Version: IPQ8068 Version: IPQ8070A Version: IPQ8071A Version: IPQ8072A Version: IPQ8074A Version: IPQ8076 Version: IPQ8076A Version: IPQ8078 Version: IPQ8078A Version: IPQ8173 Version: IPQ8174 Version: IPQ9008 Version: IPQ9574 Version: QAM8295P Version: QCA4024 Version: QCA6175A Version: QCA6391 Version: QCA6426 Version: QCA6436 Version: QCA6554A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6678AQ Version: QCA6696 Version: QCA6698AQ Version: QCA7500 Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9880 Version: QCA9886 Version: QCA9888 Version: QCA9889 Version: QCA9898 Version: QCA9980 Version: QCA9984 Version: QCA9985 Version: QCA9990 Version: QCA9992 Version: QCA9994 Version: QCC2073 Version: QCC2076 Version: QCC710 Version: QCF8000 Version: QCN5022 Version: QCN5024 Version: QCN5052 Version: QCN5122 Version: QCN5124 Version: QCN5152 Version: QCN5154 Version: QCN5164 Version: QCN6023 Version: QCN6024 Version: QCN6112 Version: QCN6122 Version: QCN6132 Version: QCN6224 Version: QCN6274 Version: QCN9000 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9100 Version: QCN9274 Version: QFW7114 Version: QFW7124 Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155P Version: SA8195P Version: SA8295P Version: SD865 5G Version: SDX55 Version: SDX65M Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: SXR2130 Version: WCD9340 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3980 Version: WCN3988 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:23.302Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-28553", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-09-04T18:36:29.578825Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-09-04T18:53:58.506Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wearables", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AR8035", }, { status: "affected", version: "AR9380", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Immersive Home 214 Platform", }, { status: "affected", version: "Immersive Home 216 Platform", }, { status: "affected", version: "Immersive Home 316 Platform", }, { status: "affected", version: "Immersive Home 318 Platform", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ4019", }, { status: "affected", version: "IPQ4028", }, { status: "affected", version: "IPQ4029", }, { status: "affected", version: "IPQ5010", }, { status: "affected", version: "IPQ5028", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ8064", }, { status: "affected", version: "IPQ8065", }, { status: "affected", version: "IPQ8068", }, { status: "affected", version: "IPQ8070A", }, { status: "affected", version: "IPQ8071A", }, { status: "affected", version: "IPQ8072A", }, { status: "affected", version: "IPQ8074A", }, { status: "affected", version: "IPQ8076", }, { status: "affected", version: "IPQ8076A", }, { status: "affected", version: "IPQ8078", }, { status: "affected", version: "IPQ8078A", }, { status: "affected", version: "IPQ8173", }, { status: "affected", version: "IPQ8174", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6175A", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6678AQ", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA7500", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9880", }, { status: "affected", version: "QCA9886", }, { status: "affected", version: "QCA9888", }, { status: "affected", version: "QCA9889", }, { status: "affected", version: "QCA9898", }, { status: "affected", version: "QCA9980", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCA9985", }, { status: "affected", version: "QCA9990", }, { status: "affected", version: "QCA9992", }, { status: "affected", version: "QCA9994", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5024", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5124", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN5154", }, { status: "affected", version: "QCN5164", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6112", }, { status: "affected", version: "QCN6122", }, { status: "affected", version: "QCN6132", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9100", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Information Disclosure in WLAN Host when processing WMI event command.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:45.090Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN Host", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28553", datePublished: "2023-11-07T05:26:33.920Z", dateReserved: "2023-03-17T11:41:45.847Z", dateUpdated: "2024-09-04T18:53:58.506Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28572
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: CSRB31024 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: MDM9628 Version: MSM8996AU Version: QAM8295P Version: QCA6174A Version: QCA6175A Version: QCA6391 Version: QCA6421 Version: QCA6426 Version: QCA6431 Version: QCA6436 Version: QCA6554A Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6678AQ Version: QCA6696 Version: QCA6698AQ Version: QCA9377 Version: QCA9379 Version: QCC2073 Version: QCC2076 Version: SA6145P Version: SA6150P Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155P Version: SA8195P Version: SA8295P Version: Snapdragon 820 Automotive Platform Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: WCD9380 Version: WCD9385 Version: WCN3980 Version: WCN3988 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 |
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2023-28572", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-07-09T20:30:50.696999Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-07-09T20:31:00.555Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T13:43:22.628Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Connectivity", "Snapdragon Consumer Electronics Connectivity", "Snapdragon Mobile", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "MDM9628", }, { status: "affected", version: "MSM8996AU", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6175A", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6678AQ", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCA9379", }, { status: "affected", version: "QCC2073", }, { status: "affected", version: "QCC2076", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "Snapdragon 820 Automotive Platform", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:13.732Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN HOST", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28572", datePublished: "2023-11-07T05:26:44.626Z", dateReserved: "2023-03-17T11:41:45.850Z", dateUpdated: "2024-08-02T13:43:22.628Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40112
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-10-31 13:49
Severity ?
EPSS score ?
Summary
In ippSetValueTag of ipp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of past print jobs or other print-related information, with no additional execution privileges needed. User interaction is not needed for exploitation.
References
{ containers: { adp: [ { metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40112", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-02-16T17:33:15.621150Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-125", description: "CWE-125 Out-of-bounds Read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-10-31T13:49:25.722Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.551Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/packages/services/BuiltInPrintService/+/d7cb53cb5b47f4afdb84cb0e161d84fdc2c32ce7", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In ippSetValueTag of ipp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of past print jobs or other print-related information, with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Information disclosure", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.687Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/packages/services/BuiltInPrintService/+/d7cb53cb5b47f4afdb84cb0e161d84fdc2c32ce7", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40112", datePublished: "2024-02-15T22:31:15.687Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2024-10-31T13:49:25.722Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-24852
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 11:03
Severity ?
EPSS score ?
Summary
Memory Corruption in Core due to secure memory access by user while loading modem image.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: 315 5G IoT Modem Version: 9205 LTE Modem Version: AQT1000 Version: AR8031 Version: AR8035 Version: C-V2X 9150 Version: CSR8811 Version: CSRA6620 Version: CSRA6640 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Flight RB5 5G Platform Version: FSM10056 Version: Immersive Home 3210 Platform Version: Immersive Home 326 Platform Version: IPQ5332 Version: IPQ6000 Version: IPQ6005 Version: IPQ6010 Version: IPQ6018 Version: IPQ6028 Version: IPQ9008 Version: IPQ9554 Version: IPQ9570 Version: IPQ9574 Version: MDM9205S Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QAMSRV1H Version: QCA0000 Version: QCA4004 Version: QCA4024 Version: QCA6174A Version: QCA6310 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8072 Version: QCA8075 Version: QCA8081 Version: QCA8082 Version: QCA8084 Version: QCA8085 Version: QCA8337 Version: QCA8386 Version: QCA9377 Version: QCA9984 Version: QCC710 Version: QCF8000 Version: QCF8001 Version: QCM2290 Version: QCM4290 Version: QCM4325 Version: QCM4490 Version: QCM6125 Version: QCM6490 Version: QCM8550 Version: QCN5021 Version: QCN5022 Version: QCN5052 Version: QCN5121 Version: QCN5122 Version: QCN5152 Version: QCN6023 Version: QCN6024 Version: QCN6224 Version: QCN6274 Version: QCN7606 Version: QCN9000 Version: QCN9011 Version: QCN9012 Version: QCN9013 Version: QCN9022 Version: QCN9024 Version: QCN9070 Version: QCN9072 Version: QCN9074 Version: QCN9274 Version: QCS2290 Version: QCS410 Version: QCS4290 Version: QCS4490 Version: QCS610 Version: QCS6125 Version: QCS6490 Version: QCS7230 Version: QCS8155 Version: QCS8250 Version: QCS8550 Version: QDU1000 Version: QDU1010 Version: QDU1110 Version: QDU1210 Version: QDX1010 Version: QDX1011 Version: QFW7114 Version: QFW7124 Version: QRB5165M Version: QRB5165N Version: QRU1032 Version: QRU1052 Version: QRU1062 Version: QSM8250 Version: QSM8350 Version: QTS110 Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Qualcomm Video Collaboration VC5 Platform Version: Robotics RB3 Platform Version: Robotics RB5 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SA8540P Version: SA8650P Version: SA9000P Version: SC8180X+SDX55 Version: SC8380XP Version: SD 675 Version: SD 8 Gen1 5G Version: SD 8CX Version: SD460 Version: SD662 Version: SD670 Version: SD675 Version: SD730 Version: SD855 Version: SD865 5G Version: SD888 Version: SDX55 Version: SDX57M Version: SDX65M Version: SG4150P Version: SG8275P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: SM7315 Version: SM7325P Version: SM8550P Version: Smart Audio 400 Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 8 Gen 1 Mobile Platform Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 1 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 850 Mobile Compute Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB) Version: Snapdragon AR2 Gen 1 Platform Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 1300 Platform Version: Snapdragon X24 LTE Modem Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X65 5G Modem-RF System Version: Snapdragon X70 Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: Snapdragon XR2+ Gen 1 Platform Version: Snapdragon Auto 4G Modem Version: SRV1H Version: SSG2115P Version: SSG2125P Version: SW5100 Version: SW5100P Version: SXR1230P Version: SXR2130 Version: SXR2230P Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9306 Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN3999 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T11:03:19.294Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", "Snapdragon Wired Infrastructure and Networking", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "315 5G IoT Modem", }, { status: "affected", version: "9205 LTE Modem", }, { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8031", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "C-V2X 9150", }, { status: "affected", version: "CSR8811", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Flight RB5 5G Platform", }, { status: "affected", version: "FSM10056", }, { status: "affected", version: "Immersive Home 3210 Platform", }, { status: "affected", version: "Immersive Home 326 Platform", }, { status: "affected", version: "IPQ5332", }, { status: "affected", version: "IPQ6000", }, { status: "affected", version: "IPQ6005", }, { status: "affected", version: "IPQ6010", }, { status: "affected", version: "IPQ6018", }, { status: "affected", version: "IPQ6028", }, { status: "affected", version: "IPQ9008", }, { status: "affected", version: "IPQ9554", }, { status: "affected", version: "IPQ9570", }, { status: "affected", version: "IPQ9574", }, { status: "affected", version: "MDM9205S", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QAMSRV1H", }, { status: "affected", version: "QCA0000", }, { status: "affected", version: "QCA4004", }, { status: "affected", version: "QCA4024", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8072", }, { status: "affected", version: "QCA8075", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8082", }, { status: "affected", version: "QCA8084", }, { status: "affected", version: "QCA8085", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA8386", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCA9984", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCF8000", }, { status: "affected", version: "QCF8001", }, { status: "affected", version: "QCM2290", }, { status: "affected", version: "QCM4290", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN5021", }, { status: "affected", version: "QCN5022", }, { status: "affected", version: "QCN5052", }, { status: "affected", version: "QCN5121", }, { status: "affected", version: "QCN5122", }, { status: "affected", version: "QCN5152", }, { status: "affected", version: "QCN6023", }, { status: "affected", version: "QCN6024", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN7606", }, { status: "affected", version: "QCN9000", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9013", }, { status: "affected", version: "QCN9022", }, { status: "affected", version: "QCN9024", }, { status: "affected", version: "QCN9070", }, { status: "affected", version: "QCN9072", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCN9274", }, { status: "affected", version: "QCS2290", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4290", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS7230", }, { status: "affected", version: "QCS8155", }, { status: "affected", version: "QCS8250", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QDU1000", }, { status: "affected", version: "QDU1010", }, { status: "affected", version: "QDU1110", }, { status: "affected", version: "QDU1210", }, { status: "affected", version: "QDX1010", }, { status: "affected", version: "QDX1011", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "QRU1032", }, { status: "affected", version: "QRU1052", }, { status: "affected", version: "QRU1062", }, { status: "affected", version: "QSM8250", }, { status: "affected", version: "QSM8350", }, { status: "affected", version: "QTS110", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC5 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "Robotics RB5 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SA8540P", }, { status: "affected", version: "SA8650P", }, { status: "affected", version: "SA9000P", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SC8380XP", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD 8 Gen1 5G", }, { status: "affected", version: "SD 8CX", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SDX57M", }, { status: "affected", version: "SDX65M", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 8 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 850 Mobile Compute Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)", }, { status: "affected", version: "Snapdragon AR2 Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 1300 Platform", }, { status: "affected", version: "Snapdragon X24 LTE Modem", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X65 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X70 Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon XR2+ Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SRV1H", }, { status: "affected", version: "SSG2115P", }, { status: "affected", version: "SSG2125P", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1230P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "SXR2230P", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9306", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN3999", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory Corruption in Core due to secure memory access by user while loading modem image.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-287", description: "CWE-287 Improper Authentication", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:37.685Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Improper Authentication in Core", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-24852", datePublished: "2023-11-07T05:26:31.358Z", dateReserved: "2023-01-31T16:25:23.369Z", dateUpdated: "2024-08-02T11:03:19.294Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28568
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Information disclosure in WLAN HAL when reception status handler is called.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: QCA6310 Version: QCA6320 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6430 Version: QCM4325 Version: QCM4490 Version: QCS4490 Version: Robotics RB3 Platform Version: SC8180X+SDX55 Version: SD460 Version: SD662 Version: SD670 Version: SD730 Version: SD835 Version: SD855 Version: SDX55 Version: SG4150P Version: SM4125 Version: SM6250 Version: SM6250P Version: SM7250P Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 4 Gen 2 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 662 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 712 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 7c Compute Platform (SC7180-AC) Version: Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro" Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 850 Mobile Compute Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" Version: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" Version: Snapdragon 8cx Compute Platform (SC8180X-AA, AB) Version: Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" Version: Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon XR1 Platform Version: SW5100 Version: SW5100P Version: SXR1120 Version: Vision Intelligence 300 Platform Version: Vision Intelligence 400 Platform Version: WCD9326 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8832 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:23.667Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM4490", }, { status: "affected", version: "QCS4490", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "SC8180X+SDX55", }, { status: "affected", version: "SD460", }, { status: "affected", version: "SD662", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM6250P", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 712 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 7c Compute Platform (SC7180-AC)", }, { status: "affected", version: "Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) \"Rennell Pro\"", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 850 Mobile Compute Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180X-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\"", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180X-AA, AB)", }, { status: "affected", version: "Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) \"Poipu Pro\"", }, { status: "affected", version: "Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "Vision Intelligence 300 Platform", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8832", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Information disclosure in WLAN HAL when reception status handler is called.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 6.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-126", description: "CWE-126 Buffer Over-read", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:03.099Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Over-read in WLAN HAL", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28568", datePublished: "2023-11-07T05:26:40.000Z", dateReserved: "2023-03-17T11:41:45.849Z", dateUpdated: "2024-08-02T13:43:23.667Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-28570
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2024-08-02 13:43
Severity ?
EPSS score ?
Summary
Memory corruption while processing audio effects.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: AQT1000 Version: AR8035 Version: FastConnect 6200 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: MDM9628 Version: MSM8996AU Version: QAM8295P Version: QCA6310 Version: QCA6320 Version: QCA6391 Version: QCA6420 Version: QCA6426 Version: QCA6430 Version: QCA6436 Version: QCA6554A Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA8081 Version: QCA8337 Version: QCC710 Version: QCN6224 Version: QCN6274 Version: QCN9074 Version: QCS410 Version: QCS610 Version: QFW7114 Version: QFW7124 Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: SA6145P Version: SA6150P Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155P Version: SA8195P Version: SA8295P Version: SD835 Version: SD855 Version: SD865 5G Version: SDM429W Version: SDX55 Version: Snapdragon 429 Mobile Platform Version: Snapdragon 820 Automotive Platform Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 4100+ Platform Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR2 5G Platform Version: SW5100 Version: SW5100P Version: SXR2130 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9380 Version: WCN3610 Version: WCN3620 Version: WCN3660B Version: WCN3680B Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T13:43:23.303Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "MDM9628", }, { status: "affected", version: "MSM8996AU", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6554A", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SDM429W", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "Snapdragon 429 Mobile Platform", }, { status: "affected", version: "Snapdragon 820 Automotive Platform", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 4100+ Platform", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCN3610", }, { status: "affected", version: "WCN3620", }, { status: "affected", version: "WCN3660B", }, { status: "affected", version: "WCN3680B", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption while processing audio effects.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:10.326Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Copy without Checking Size of Input in Audio", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-28570", datePublished: "2023-11-07T05:26:43.590Z", dateReserved: "2023-03-17T11:41:45.849Z", dateUpdated: "2024-08-02T13:43:23.303Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40104
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-02 18:24
Severity ?
EPSS score ?
Summary
In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Impacted products
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*", "cpe:2.3:o:google:android:12l:*:*:*:*:*:*:*", "cpe:2.3:o:google:android:13.0:-:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "11.0", }, { status: "affected", version: "12.0", }, { status: "affected", version: "12l", }, { status: "affected", version: "13.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40104", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-02-16T14:46:52.606970Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-295", description: "CWE-295 Improper Certificate Validation", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-07-26T17:16:13.303Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.545Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/system/ca-certificates/+/91204b9fdbd77b3f27f94b73868607b2dccbfdad", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Information disclosure", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:14.778Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/system/ca-certificates/+/91204b9fdbd77b3f27f94b73868607b2dccbfdad", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40104", datePublished: "2024-02-15T22:31:14.778Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2024-08-02T18:24:55.545Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-33059
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2025-02-05 18:05
Severity ?
EPSS score ?
Summary
Memory corruption in Audio while processing the VOC packet data from ADSP.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: 315 5G IoT Modem Version: 9206 LTE Modem Version: APQ8017 Version: APQ8052 Version: APQ8056 Version: APQ8064AU Version: APQ8076 Version: AQT1000 Version: AR8031 Version: AR8035 Version: C-V2X 9150 Version: CSRA6620 Version: CSRA6640 Version: CSRB31024 Version: FastConnect 6200 Version: FastConnect 6700 Version: FastConnect 6800 Version: FastConnect 6900 Version: FastConnect 7800 Version: Flight RB5 5G Platform Version: Home Hub 100 Platform Version: MDM9230 Version: MDM9250 Version: MDM9330 Version: MDM9628 Version: MDM9630 Version: MDM9640 Version: MDM9650 Version: MSM8108 Version: MSM8209 Version: MSM8608 Version: MSM8909W Version: MSM8996AU Version: QAM8255P Version: QAM8295P Version: QAM8650P Version: QAM8775P Version: QCA6174 Version: QCA6174A Version: QCA6310 Version: QCA6320 Version: QCA6335 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6584 Version: QCA6584AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA6698AQ Version: QCA6797AQ Version: QCA8081 Version: QCA8337 Version: QCA9367 Version: QCA9377 Version: QCA9379 Version: QCC710 Version: QCM2290 Version: QCM4290 Version: QCM4325 Version: QCM6125 Version: QCM6490 Version: QCM8550 Version: QCN6224 Version: QCN6274 Version: QCN9011 Version: QCN9012 Version: QCN9074 Version: QCS2290 Version: QCS410 Version: QCS4290 Version: QCS610 Version: QCS6125 Version: QCS6490 Version: QCS7230 Version: QCS8250 Version: QCS8550 Version: QFW7114 Version: QFW7124 Version: QRB5165M Version: QRB5165N Version: QSM8250 Version: Qualcomm 205 Mobile Platform Version: Qualcomm 215 Mobile Platform Version: Qualcomm Video Collaboration VC1 Platform Version: Qualcomm Video Collaboration VC3 Platform Version: Qualcomm Video Collaboration VC5 Platform Version: Robotics RB3 Platform Version: Robotics RB5 Platform Version: SA4150P Version: SA4155P Version: SA6145P Version: SA6150P Version: SA6155 Version: SA6155P Version: SA8145P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8195P Version: SA8255P Version: SA8295P Version: SD 675 Version: SD626 Version: SD660 Version: SD670 Version: SD675 Version: SD730 Version: SD820 Version: SD821 Version: SD835 Version: SD855 Version: SD865 5G Version: SD888 Version: SDM429W Version: SDX20M Version: SDX55 Version: SG4150P Version: SG8275P Version: SM4125 Version: SM6250 Version: SM7250P Version: SM7315 Version: SM7325P Version: SM8550P Version: Smart Audio 200 Platform Version: Smart Audio 400 Platform Version: Smart Display 200 Platform (APQ5053-AA) Version: Snapdragon 1200 Wearable Platform Version: Snapdragon 208 Processor Version: Snapdragon 210 Processor Version: Snapdragon 212 Mobile Platform Version: Snapdragon 4 Gen 1 Mobile Platform Version: Snapdragon 425 Mobile Platform Version: Snapdragon 429 Mobile Platform Version: Snapdragon 439 Mobile Platform Version: Snapdragon 460 Mobile Platform Version: Snapdragon 480 5G Mobile Platform Version: Snapdragon 480+ 5G Mobile Platform (SM4350-AC) Version: Snapdragon 617 Processor Version: Snapdragon 625 Mobile Platform Version: Snapdragon 626 Mobile Platform Version: Snapdragon 630 Mobile Platform Version: Snapdragon 632 Mobile Platform Version: Snapdragon 636 Mobile Platform Version: Snapdragon 650 Mobile Platform Version: Snapdragon 652 Mobile Platform Version: Snapdragon 653 Mobile Platform Version: Snapdragon 660 Mobile Platform Version: Snapdragon 662 Mobile Platform Version: Snapdragon 665 Mobile Platform Version: Snapdragon 670 Mobile Platform Version: Snapdragon 675 Mobile Platform Version: Snapdragon 678 Mobile Platform (SM6150-AC) Version: Snapdragon 680 4G Mobile Platform Version: Snapdragon 685 4G Mobile Platform (SM6225-AD) Version: Snapdragon 690 5G Mobile Platform Version: Snapdragon 695 5G Mobile Platform Version: Snapdragon 710 Mobile Platform Version: Snapdragon 720G Mobile Platform Version: Snapdragon 730 Mobile Platform (SM7150-AA) Version: Snapdragon 730G Mobile Platform (SM7150-AB) Version: Snapdragon 732G Mobile Platform (SM7150-AC) Version: Snapdragon 750G 5G Mobile Platform Version: Snapdragon 765 5G Mobile Platform (SM7250-AA) Version: Snapdragon 765G 5G Mobile Platform (SM7250-AB) Version: Snapdragon 768G 5G Mobile Platform (SM7250-AC) Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 8 Gen 2 Mobile Platform Version: Snapdragon 8+ Gen 2 Mobile Platform Version: Snapdragon 820 Automotive Platform Version: Snapdragon 820 Mobile Platform Version: Snapdragon 821 Mobile Platform Version: Snapdragon 835 Mobile PC Platform Version: Snapdragon 845 Mobile Platform Version: Snapdragon 855 Mobile Platform Version: Snapdragon 855+/860 Mobile Platform (SM8150-AC) Version: Snapdragon 865 5G Mobile Platform Version: Snapdragon 865+ 5G Mobile Platform (SM8250-AB) Version: Snapdragon 870 5G Mobile Platform (SM8250-AC) Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: Snapdragon Auto 5G Modem-RF Version: Snapdragon W5+ Gen 1 Wearable Platform Version: Snapdragon Wear 2100 Platform Version: Snapdragon Wear 2500 Platform Version: Snapdragon Wear 3100 Platform Version: Snapdragon Wear 4100+ Platform Version: Snapdragon X12 LTE Modem Version: Snapdragon X20 LTE Modem Version: Snapdragon X24 LTE Modem Version: Snapdragon X5 LTE Modem Version: Snapdragon X50 5G Modem-RF System Version: Snapdragon X55 5G Modem-RF System Version: Snapdragon X75 5G Modem-RF System Version: Snapdragon XR1 Platform Version: Snapdragon XR2 5G Platform Version: Snapdragon XR2+ Gen 1 Platform Version: Snapdragon Auto 4G Modem Version: SW5100 Version: SW5100P Version: SXR1120 Version: SXR2130 Version: Vision Intelligence 100 Platform (APQ8053-AA) Version: Vision Intelligence 200 Platform (APQ8053-AC) Version: Vision Intelligence 400 Platform Version: WCD9326 Version: WCD9330 Version: WCD9335 Version: WCD9340 Version: WCD9341 Version: WCD9360 Version: WCD9370 Version: WCD9371 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCD9390 Version: WCD9395 Version: WCN3610 Version: WCN3615 Version: WCN3620 Version: WCN3660B Version: WCN3680 Version: WCN3680B Version: WCN3910 Version: WCN3950 Version: WCN3980 Version: WCN3988 Version: WCN3990 Version: WCN6740 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 Version: WSA8840 Version: WSA8845 Version: WSA8845H |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:32:46.949Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-33059", options: [ { Exploitation: "None", }, { Automatable: "No", }, { "Technical Impact": "Total", }, ], role: "CISA Coordinator", timestamp: "2023-11-15T16:40:44.037662Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-05T18:05:47.592Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Connectivity", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon Mobile", "Snapdragon Voice & Music", "Snapdragon Wearables", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "315 5G IoT Modem", }, { status: "affected", version: "9206 LTE Modem", }, { status: "affected", version: "APQ8017", }, { status: "affected", version: "APQ8052", }, { status: "affected", version: "APQ8056", }, { status: "affected", version: "APQ8064AU", }, { status: "affected", version: "APQ8076", }, { status: "affected", version: "AQT1000", }, { status: "affected", version: "AR8031", }, { status: "affected", version: "AR8035", }, { status: "affected", version: "C-V2X 9150", }, { status: "affected", version: "CSRA6620", }, { status: "affected", version: "CSRA6640", }, { status: "affected", version: "CSRB31024", }, { status: "affected", version: "FastConnect 6200", }, { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6800", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "FastConnect 7800", }, { status: "affected", version: "Flight RB5 5G Platform", }, { status: "affected", version: "Home Hub 100 Platform", }, { status: "affected", version: "MDM9230", }, { status: "affected", version: "MDM9250", }, { status: "affected", version: "MDM9330", }, { status: "affected", version: "MDM9628", }, { status: "affected", version: "MDM9630", }, { status: "affected", version: "MDM9640", }, { status: "affected", version: "MDM9650", }, { status: "affected", version: "MSM8108", }, { status: "affected", version: "MSM8209", }, { status: "affected", version: "MSM8608", }, { status: "affected", version: "MSM8909W", }, { status: "affected", version: "MSM8996AU", }, { status: "affected", version: "QAM8255P", }, { status: "affected", version: "QAM8295P", }, { status: "affected", version: "QAM8650P", }, { status: "affected", version: "QAM8775P", }, { status: "affected", version: "QCA6174", }, { status: "affected", version: "QCA6174A", }, { status: "affected", version: "QCA6310", }, { status: "affected", version: "QCA6320", }, { status: "affected", version: "QCA6335", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCA6420", }, { status: "affected", version: "QCA6421", }, { status: "affected", version: "QCA6426", }, { status: "affected", version: "QCA6430", }, { status: "affected", version: "QCA6431", }, { status: "affected", version: "QCA6436", }, { status: "affected", version: "QCA6564", }, { status: "affected", version: "QCA6564A", }, { status: "affected", version: "QCA6564AU", }, { status: "affected", version: "QCA6574", }, { status: "affected", version: "QCA6574A", }, { status: "affected", version: "QCA6574AU", }, { status: "affected", version: "QCA6584", }, { status: "affected", version: "QCA6584AU", }, { status: "affected", version: "QCA6595", }, { status: "affected", version: "QCA6595AU", }, { status: "affected", version: "QCA6696", }, { status: "affected", version: "QCA6698AQ", }, { status: "affected", version: "QCA6797AQ", }, { status: "affected", version: "QCA8081", }, { status: "affected", version: "QCA8337", }, { status: "affected", version: "QCA9367", }, { status: "affected", version: "QCA9377", }, { status: "affected", version: "QCA9379", }, { status: "affected", version: "QCC710", }, { status: "affected", version: "QCM2290", }, { status: "affected", version: "QCM4290", }, { status: "affected", version: "QCM4325", }, { status: "affected", version: "QCM6125", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCM8550", }, { status: "affected", version: "QCN6224", }, { status: "affected", version: "QCN6274", }, { status: "affected", version: "QCN9011", }, { status: "affected", version: "QCN9012", }, { status: "affected", version: "QCN9074", }, { status: "affected", version: "QCS2290", }, { status: "affected", version: "QCS410", }, { status: "affected", version: "QCS4290", }, { status: "affected", version: "QCS610", }, { status: "affected", version: "QCS6125", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QCS7230", }, { status: "affected", version: "QCS8250", }, { status: "affected", version: "QCS8550", }, { status: "affected", version: "QFW7114", }, { status: "affected", version: "QFW7124", }, { status: "affected", version: "QRB5165M", }, { status: "affected", version: "QRB5165N", }, { status: "affected", version: "QSM8250", }, { status: "affected", version: "Qualcomm 205 Mobile Platform", }, { status: "affected", version: "Qualcomm 215 Mobile Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC1 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "Qualcomm Video Collaboration VC5 Platform", }, { status: "affected", version: "Robotics RB3 Platform", }, { status: "affected", version: "Robotics RB5 Platform", }, { status: "affected", version: "SA4150P", }, { status: "affected", version: "SA4155P", }, { status: "affected", version: "SA6145P", }, { status: "affected", version: "SA6150P", }, { status: "affected", version: "SA6155", }, { status: "affected", version: "SA6155P", }, { status: "affected", version: "SA8145P", }, { status: "affected", version: "SA8150P", }, { status: "affected", version: "SA8155", }, { status: "affected", version: "SA8155P", }, { status: "affected", version: "SA8195P", }, { status: "affected", version: "SA8255P", }, { status: "affected", version: "SA8295P", }, { status: "affected", version: "SD 675", }, { status: "affected", version: "SD626", }, { status: "affected", version: "SD660", }, { status: "affected", version: "SD670", }, { status: "affected", version: "SD675", }, { status: "affected", version: "SD730", }, { status: "affected", version: "SD820", }, { status: "affected", version: "SD821", }, { status: "affected", version: "SD835", }, { status: "affected", version: "SD855", }, { status: "affected", version: "SD865 5G", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SDM429W", }, { status: "affected", version: "SDX20M", }, { status: "affected", version: "SDX55", }, { status: "affected", version: "SG4150P", }, { status: "affected", version: "SG8275P", }, { status: "affected", version: "SM4125", }, { status: "affected", version: "SM6250", }, { status: "affected", version: "SM7250P", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "SM8550P", }, { status: "affected", version: "Smart Audio 200 Platform", }, { status: "affected", version: "Smart Audio 400 Platform", }, { status: "affected", version: "Smart Display 200 Platform (APQ5053-AA)", }, { status: "affected", version: "Snapdragon 1200 Wearable Platform", }, { status: "affected", version: "Snapdragon 208 Processor", }, { status: "affected", version: "Snapdragon 210 Processor", }, { status: "affected", version: "Snapdragon 212 Mobile Platform", }, { status: "affected", version: "Snapdragon 4 Gen 1 Mobile Platform", }, { status: "affected", version: "Snapdragon 425 Mobile Platform", }, { status: "affected", version: "Snapdragon 429 Mobile Platform", }, { status: "affected", version: "Snapdragon 439 Mobile Platform", }, { status: "affected", version: "Snapdragon 460 Mobile Platform", }, { status: "affected", version: "Snapdragon 480 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)", }, { status: "affected", version: "Snapdragon 617 Processor", }, { status: "affected", version: "Snapdragon 625 Mobile Platform", }, { status: "affected", version: "Snapdragon 626 Mobile Platform", }, { status: "affected", version: "Snapdragon 630 Mobile Platform", }, { status: "affected", version: "Snapdragon 632 Mobile Platform", }, { status: "affected", version: "Snapdragon 636 Mobile Platform", }, { status: "affected", version: "Snapdragon 650 Mobile Platform", }, { status: "affected", version: "Snapdragon 652 Mobile Platform", }, { status: "affected", version: "Snapdragon 653 Mobile Platform", }, { status: "affected", version: "Snapdragon 660 Mobile Platform", }, { status: "affected", version: "Snapdragon 662 Mobile Platform", }, { status: "affected", version: "Snapdragon 665 Mobile Platform", }, { status: "affected", version: "Snapdragon 670 Mobile Platform", }, { status: "affected", version: "Snapdragon 675 Mobile Platform", }, { status: "affected", version: "Snapdragon 678 Mobile Platform (SM6150-AC)", }, { status: "affected", version: "Snapdragon 680 4G Mobile Platform", }, { status: "affected", version: "Snapdragon 685 4G Mobile Platform (SM6225-AD)", }, { status: "affected", version: "Snapdragon 690 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 695 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 710 Mobile Platform", }, { status: "affected", version: "Snapdragon 720G Mobile Platform", }, { status: "affected", version: "Snapdragon 730 Mobile Platform (SM7150-AA)", }, { status: "affected", version: "Snapdragon 730G Mobile Platform (SM7150-AB)", }, { status: "affected", version: "Snapdragon 732G Mobile Platform (SM7150-AC)", }, { status: "affected", version: "Snapdragon 750G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 765 5G Mobile Platform (SM7250-AA)", }, { status: "affected", version: "Snapdragon 765G 5G Mobile Platform (SM7250-AB)", }, { status: "affected", version: "Snapdragon 768G 5G Mobile Platform (SM7250-AC)", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 8 Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 8+ Gen 2 Mobile Platform", }, { status: "affected", version: "Snapdragon 820 Automotive Platform", }, { status: "affected", version: "Snapdragon 820 Mobile Platform", }, { status: "affected", version: "Snapdragon 821 Mobile Platform", }, { status: "affected", version: "Snapdragon 835 Mobile PC Platform", }, { status: "affected", version: "Snapdragon 845 Mobile Platform", }, { status: "affected", version: "Snapdragon 855 Mobile Platform", }, { status: "affected", version: "Snapdragon 855+/860 Mobile Platform (SM8150-AC)", }, { status: "affected", version: "Snapdragon 865 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)", }, { status: "affected", version: "Snapdragon 870 5G Mobile Platform (SM8250-AC)", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "Snapdragon Auto 5G Modem-RF", }, { status: "affected", version: "Snapdragon W5+ Gen 1 Wearable Platform", }, { status: "affected", version: "Snapdragon Wear 2100 Platform", }, { status: "affected", version: "Snapdragon Wear 2500 Platform", }, { status: "affected", version: "Snapdragon Wear 3100 Platform", }, { status: "affected", version: "Snapdragon Wear 4100+ Platform", }, { status: "affected", version: "Snapdragon X12 LTE Modem", }, { status: "affected", version: "Snapdragon X20 LTE Modem", }, { status: "affected", version: "Snapdragon X24 LTE Modem", }, { status: "affected", version: "Snapdragon X5 LTE Modem", }, { status: "affected", version: "Snapdragon X50 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X55 5G Modem-RF System", }, { status: "affected", version: "Snapdragon X75 5G Modem-RF System", }, { status: "affected", version: "Snapdragon XR1 Platform", }, { status: "affected", version: "Snapdragon XR2 5G Platform", }, { status: "affected", version: "Snapdragon XR2+ Gen 1 Platform", }, { status: "affected", version: "Snapdragon Auto 4G Modem", }, { status: "affected", version: "SW5100", }, { status: "affected", version: "SW5100P", }, { status: "affected", version: "SXR1120", }, { status: "affected", version: "SXR2130", }, { status: "affected", version: "Vision Intelligence 100 Platform (APQ8053-AA)", }, { status: "affected", version: "Vision Intelligence 200 Platform (APQ8053-AC)", }, { status: "affected", version: "Vision Intelligence 400 Platform", }, { status: "affected", version: "WCD9326", }, { status: "affected", version: "WCD9330", }, { status: "affected", version: "WCD9335", }, { status: "affected", version: "WCD9340", }, { status: "affected", version: "WCD9341", }, { status: "affected", version: "WCD9360", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9371", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCD9390", }, { status: "affected", version: "WCD9395", }, { status: "affected", version: "WCN3610", }, { status: "affected", version: "WCN3615", }, { status: "affected", version: "WCN3620", }, { status: "affected", version: "WCN3660B", }, { status: "affected", version: "WCN3680", }, { status: "affected", version: "WCN3680B", }, { status: "affected", version: "WCN3910", }, { status: "affected", version: "WCN3950", }, { status: "affected", version: "WCN3980", }, { status: "affected", version: "WCN3988", }, { status: "affected", version: "WCN3990", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8810", }, { status: "affected", version: "WSA8815", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, { status: "affected", version: "WSA8840", }, { status: "affected", version: "WSA8845", }, { status: "affected", version: "WSA8845H", }, ], }, ], descriptions: [ { lang: "en", value: "Memory corruption in Audio while processing the VOC packet data from ADSP.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-191", description: "CWE-191 Integer Underflow (Wrap or Wraparound)", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:19:42.133Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Buffer Copy Without Checking Size of Input in Audio", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-33059", datePublished: "2023-11-07T05:26:54.139Z", dateReserved: "2023-05-17T09:28:53.126Z", dateUpdated: "2025-02-05T18:05:47.592Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-32834
Vulnerability from cvelistv5
Published
2023-11-06 03:50
Modified
2024-08-02 15:25
Severity ?
EPSS score ?
Summary
In secmem, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161762; Issue ID: ALPS08161762.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T15:25:37.099Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "MT6580, MT6735, MT6737, MT6739, MT6753, MT6761, MT6765, MT6768, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6983, MT6985, MT8185, MT8321, MT8385, MT8666, MT8667, MT8673, MT8675, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797, MT8798", vendor: "MediaTek, Inc.", versions: [ { status: "affected", version: "Android 11.0, 12.0, 13.0", }, ], }, ], descriptions: [ { lang: "en", value: "In secmem, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161762; Issue ID: ALPS08161762.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-11-06T03:50:45.515Z", orgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", shortName: "MediaTek", }, references: [ { url: "https://corp.mediatek.com/product-security-bulletin/November-2023", }, ], }, }, cveMetadata: { assignerOrgId: "ee979b05-11f8-4f25-a7e0-a1fa9c190374", assignerShortName: "MediaTek", cveId: "CVE-2023-32834", datePublished: "2023-11-06T03:50:45.515Z", dateReserved: "2023-05-16T03:04:32.152Z", dateUpdated: "2024-08-02T15:25:37.099Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40109
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2024-08-16 15:32
Severity ?
EPSS score ?
Summary
In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL) due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.596Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/base/+/387d258cf10a30537fc48dc0e48d28071efa92e7", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "android", vendor: "google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12l", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40109", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-08-16T15:24:33.886541Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-266", description: "CWE-266 Incorrect Privilege Assignment", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-16T15:32:15.092Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, { status: "affected", version: "13", }, { status: "affected", version: "12L", }, { status: "affected", version: "12", }, { status: "affected", version: "11", }, ], }, ], descriptions: [ { lang: "en", value: "In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL) due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.329Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/base/+/387d258cf10a30537fc48dc0e48d28071efa92e7", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40109", datePublished: "2024-02-15T22:31:15.329Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2024-08-16T15:32:15.092Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-21671
Vulnerability from cvelistv5
Published
2023-11-07 05:26
Modified
2025-02-27 20:34
Severity ?
EPSS score ?
Summary
Memory Corruption in Core during syscall for Sectools Fuse comparison feature.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon |
Version: FastConnect 6700 Version: FastConnect 6900 Version: QCA6391 Version: QCM6490 Version: QCS6490 Version: QSM8350 Version: Qualcomm Video Collaboration VC3 Platform Version: SD888 Version: SM7315 Version: SM7325P Version: Snapdragon 778G 5G Mobile Platform Version: Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) Version: Snapdragon 780G 5G Mobile Platform Version: Snapdragon 782G Mobile Platform (SM7325-AF) Version: Snapdragon 7c+ Gen 3 Compute Version: Snapdragon 888 5G Mobile Platform Version: Snapdragon 888+ 5G Mobile Platform (SM8350-AC) Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN6740 Version: WSA8830 Version: WSA8835 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T09:44:01.986Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-21671", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-02-26T21:49:14.080494Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-27T20:34:18.988Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Snapdragon Auto", "Snapdragon Compute", "Snapdragon Industrial IOT", "Snapdragon Mobile", ], product: "Snapdragon", vendor: "Qualcomm, Inc.", versions: [ { status: "affected", version: "FastConnect 6700", }, { status: "affected", version: "FastConnect 6900", }, { status: "affected", version: "QCA6391", }, { status: "affected", version: "QCM6490", }, { status: "affected", version: "QCS6490", }, { status: "affected", version: "QSM8350", }, { status: "affected", version: "Qualcomm Video Collaboration VC3 Platform", }, { status: "affected", version: "SD888", }, { status: "affected", version: "SM7315", }, { status: "affected", version: "SM7325P", }, { status: "affected", version: "Snapdragon 778G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)", }, { status: "affected", version: "Snapdragon 780G 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 782G Mobile Platform (SM7325-AF)", }, { status: "affected", version: "Snapdragon 7c+ Gen 3 Compute", }, { status: "affected", version: "Snapdragon 888 5G Mobile Platform", }, { status: "affected", version: "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)", }, { status: "affected", version: "WCD9370", }, { status: "affected", version: "WCD9375", }, { status: "affected", version: "WCD9380", }, { status: "affected", version: "WCD9385", }, { status: "affected", version: "WCN6740", }, { status: "affected", version: "WSA8830", }, { status: "affected", version: "WSA8835", }, ], }, ], descriptions: [ { lang: "en", value: "Memory Corruption in Core during syscall for Sectools Fuse comparison feature.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 9.3, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-20", description: "CWE-20 Improper Input Validation", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-04-12T16:18:29.278Z", orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", shortName: "qualcomm", }, references: [ { url: "https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin", }, ], title: "Improper Input Validation in Core", }, }, cveMetadata: { assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", assignerShortName: "qualcomm", cveId: "CVE-2023-21671", datePublished: "2023-11-07T05:26:28.659Z", dateReserved: "2022-12-07T02:58:25.875Z", dateUpdated: "2025-02-27T20:34:18.988Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-40111
Vulnerability from cvelistv5
Published
2024-02-15 22:31
Modified
2025-03-28 23:14
Severity ?
EPSS score ?
Summary
In setMediaButtonReceiver of MediaSessionRecord.java, there is a possible way to send a pending intent on behalf of system_server due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:24:55.542Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://android.googlesource.com/platform/frameworks/base/+/55d3d57cbffc838c52d610af14a056dea87b422e", }, { tags: [ "x_transferred", ], url: "https://source.android.com/security/bulletin/2023-11-01", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "android", vendor: "google", versions: [ { status: "affected", version: "14.0", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, }, { other: { content: { id: "CVE-2023-40111", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-02-16T16:07:02.330911Z", version: "2.0.3", }, type: "ssvc", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-441", description: "CWE-441 Unintended Proxy or Intermediary ('Confused Deputy')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2025-03-28T23:14:06.733Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Android", vendor: "Google", versions: [ { status: "affected", version: "14", }, ], }, ], descriptions: [ { lang: "en", value: "In setMediaButtonReceiver of MediaSessionRecord.java, there is a possible way to send a pending intent on behalf of system_server due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of privilege", lang: "en", }, ], }, ], providerMetadata: { dateUpdated: "2024-02-15T22:31:15.565Z", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { url: "https://android.googlesource.com/platform/frameworks/base/+/55d3d57cbffc838c52d610af14a056dea87b422e", }, { url: "https://source.android.com/security/bulletin/2023-11-01", }, ], }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2023-40111", datePublished: "2024-02-15T22:31:15.565Z", dateReserved: "2023-08-09T02:29:31.021Z", dateUpdated: "2025-03-28T23:14:06.733Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.