CVE-2023-22668

EPSS 0.04%
Published 05.12.2023 03:15:08
Last modified 21.11.2024 07:45:10
Source product-security@qualcomm.com
Teams watchlist Login
Open Login

Memory Corruption in Audio while invoking IOCTLs calls from the user-space.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Qualcomm ≫ Aqt1000 Firmware Version-

Qualcomm ≫ Aqt1000 Version-

Qualcomm ≫ Ar8035 Firmware Version-

Qualcomm ≫ Ar8035 Version-

Qualcomm ≫ Fastconnect 6200 Firmware Version-

Qualcomm ≫ Fastconnect 6200 Version-

Qualcomm ≫ Fastconnect 6800 Firmware Version-

Qualcomm ≫ Fastconnect 6800 Version-

Qualcomm ≫ Fastconnect 6900 Firmware Version-

Qualcomm ≫ Fastconnect 6900 Version-

Qualcomm ≫ Fastconnect 7800 Firmware Version-

Qualcomm ≫ Fastconnect 7800 Version-

Qualcomm ≫ Qam8255p Firmware Version-

Qualcomm ≫ Qam8255p Version-

Qualcomm ≫ Qam8775p Firmware Version-

Qualcomm ≫ Qam8775p Version-

Qualcomm ≫ Qca6391 Firmware Version-

Qualcomm ≫ Qca6391 Version-

Qualcomm ≫ Qca6420 Firmware Version-

Qualcomm ≫ Qca6420 Version-

Qualcomm ≫ Qca6426 Firmware Version-

Qualcomm ≫ Qca6426 Version-

Qualcomm ≫ Qca6430 Firmware Version-

Qualcomm ≫ Qca6430 Version-

Qualcomm ≫ Qca6436 Firmware Version-

Qualcomm ≫ Qca6436 Version-

Qualcomm ≫ Qca6584au Firmware Version-

Qualcomm ≫ Qca6584au Version-

Qualcomm ≫ Qca6698aq Firmware Version-

Qualcomm ≫ Qca6698aq Version-

Qualcomm ≫ Qca8081 Firmware Version-

Qualcomm ≫ Qca8081 Version-

Qualcomm ≫ Qca8337 Firmware Version-

Qualcomm ≫ Qca8337 Version-

Qualcomm ≫ Qcc710 Firmware Version-

Qualcomm ≫ Qcc710 Version-

Qualcomm ≫ Qcn6224 Firmware Version-

Qualcomm ≫ Qcn6224 Version-

Qualcomm ≫ Qcn6274 Firmware Version-

Qualcomm ≫ Qcn6274 Version-

Qualcomm ≫ Qfw7114 Firmware Version-

Qualcomm ≫ Qfw7114 Version-

Qualcomm ≫ Qfw7124 Firmware Version-

Qualcomm ≫ Qfw7124 Version-

Qualcomm ≫ Qualcomm 205 Mobile Platform Firmware Version-

Qualcomm ≫ Qualcomm 205 Mobile Platform Version-

Qualcomm ≫ Qualcomm 215 Mobile Platform Firmware Version-

Qualcomm ≫ Qualcomm 215 Mobile Platform Version-

Qualcomm ≫ Sa8255p Firmware Version-

Qualcomm ≫ Sa8255p Version-

Qualcomm ≫ Sa8770p Firmware Version-

Qualcomm ≫ Sa8770p Version-

Qualcomm ≫ Sa8775p Firmware Version-

Qualcomm ≫ Sa8775p Version-

Qualcomm ≫ Sa9000p Firmware Version-

Qualcomm ≫ Sa9000p Version-

Qualcomm ≫ Sd855 Firmware Version-

Qualcomm ≫ Sd855 Version-

Qualcomm ≫ Sd865 5g Firmware Version-

Qualcomm ≫ Sd865 5g Version-

Qualcomm ≫ Snapdragon 210 Processor Firmware Version-

Qualcomm ≫ Snapdragon 210 Processor Version-

Qualcomm ≫ Snapdragon 212 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 212 Mobile Platform Version-

Qualcomm ≫ Snapdragon 855 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 855 Mobile Platform Version-

Qualcomm ≫ Snapdragon 855+/860 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 855+/860 Mobile Platform Version-

Qualcomm ≫ Snapdragon 865 5g Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 865 5g Mobile Platform Version-

Qualcomm ≫ Snapdragon 865+ 5g Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 865+ 5g Mobile Platform Version-

Qualcomm ≫ Snapdragon 870 5g Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 870 5g Mobile Platform Version-

Qualcomm ≫ Snapdragon Auto 5g Modem-rf Gen 2 Firmware Version-

Qualcomm ≫ Snapdragon Auto 5g Modem-rf Gen 2 Version-

Qualcomm ≫ Snapdragon W5+ Gen 1 Wearable Platform Firmware Version-

Qualcomm ≫ Snapdragon W5+ Gen 1 Wearable Platform Version-

Qualcomm ≫ Snapdragon Wear 4100+ Platform Firmware Version-

Qualcomm ≫ Snapdragon Wear 4100+ Platform Version-

Qualcomm ≫ Snapdragon X55 5g Modem-rf System Firmware Version-

Qualcomm ≫ Snapdragon X55 5g Modem-rf System Version-

Qualcomm ≫ Snapdragon X75 5g Modem-rf System Firmware Version-

Qualcomm ≫ Snapdragon X75 5g Modem-rf System Version-

Qualcomm ≫ Snapdragon Xr2 5g Platform Firmware Version-

Qualcomm ≫ Snapdragon Xr2 5g Platform Version-

Qualcomm ≫ Sw5100 Firmware Version-

Qualcomm ≫ Sw5100 Version-

Qualcomm ≫ Sw5100p Firmware Version-

Qualcomm ≫ Sw5100p Version-

Qualcomm ≫ Sxr2130 Firmware Version-

Qualcomm ≫ Sxr2130 Version-

Qualcomm ≫ Wcd9340 Firmware Version-

Qualcomm ≫ Wcd9340 Version-

Qualcomm ≫ Wcd9341 Firmware Version-

Qualcomm ≫ Wcd9341 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcn3610 Firmware Version-

Qualcomm ≫ Wcn3610 Version-

Qualcomm ≫ Wcn3980 Firmware Version-

Qualcomm ≫ Wcn3980 Version-

Qualcomm ≫ Wcn3988 Firmware Version-

Qualcomm ≫ Wcn3988 Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.117

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
product-security@qualcomm.com	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-22668

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-22668

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-22668

EUVD