CVE-2023-21653

EPSS 0.09%
Veröffentlicht 05.09.2023 07:15:12
Zuletzt bearbeitet 21.11.2024 07:43:18
Quelle product-security@qualcomm.com
Teams Watchlist Login
Unerledigt Login

Transient DOS in Modem while processing RRC reconfiguration message.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Ar8035 Firmware Version-

Qualcomm ≫ Ar8035 Version-

Qualcomm ≫ Qca8081 Firmware Version-

Qualcomm ≫ Qca8081 Version-

Qualcomm ≫ Qca8337 Firmware Version-

Qualcomm ≫ Qca8337 Version-

Qualcomm ≫ Qcn6024 Firmware Version-

Qualcomm ≫ Qcn6024 Version-

Qualcomm ≫ Qcn9024 Firmware Version-

Qualcomm ≫ Qcn9024 Version-

Qualcomm ≫ Sdx65 Firmware Version-

Qualcomm ≫ Sdx65 Version-

Qualcomm ≫ Sdx70m Firmware Version-

Qualcomm ≫ Sdx70m Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcn6855 Firmware Version-

Qualcomm ≫ Wcn6855 Version-

Qualcomm ≫ Wcn6856 Firmware Version-

Qualcomm ≫ Wcn6856 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.222

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
product-security@qualcomm.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-617 Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-21653

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-21653

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-21653

EUVD