CVE-2023-28574

EPSS 0.05%
Published 07.11.2023 06:15:10
Last modified 21.11.2024 07:55:33
Source product-security@qualcomm.com
Teams watchlist Login
Open Login

Memory corruption in core services when Diag handler receives a command to configure event listeners.

Affected products Warnungen 0 Metrics 3 CWE 2 References 4

Data is provided by the National Vulnerability Database (NVD)

Qualcomm ≫ Ar8035 Firmware Version-

Qualcomm ≫ Ar8035 Version-

Qualcomm ≫ Wcn6750 Firmware Version-

Qualcomm ≫ Wcn6750 Version-

Qualcomm ≫ Wcn685x-5 Firmware Version-

Qualcomm ≫ Wcn685x-5 Version-

Qualcomm ≫ Wcn685x-1 Firmware Version-

Qualcomm ≫ Wcn685x-1 Version-

Qualcomm ≫ Wcn785x-1 Firmware Version-

Qualcomm ≫ Wcn785x-1 Version-

Qualcomm ≫ Wcn785x-5 Firmware Version-

Qualcomm ≫ Wcn785x-5 Version-

Qualcomm ≫ Qam8255p Firmware Version-

Qualcomm ≫ Qam8255p Version-

Qualcomm ≫ Qam8650p Firmware Version-

Qualcomm ≫ Qam8650p Version-

Qualcomm ≫ Qam8775p Firmware Version-

Qualcomm ≫ Qam8775p Version-

Qualcomm ≫ Qamsrv1h Firmware Version-

Qualcomm ≫ Qamsrv1h Version-

Qualcomm ≫ Qca6310 Firmware Version-

Qualcomm ≫ Qca6310 Version-

Qualcomm ≫ Qca6320 Firmware Version-

Qualcomm ≫ Qca6320 Version-

Qualcomm ≫ Qca6595 Firmware Version-

Qualcomm ≫ Qca6595 Version-

Qualcomm ≫ Qca6595au Firmware Version-

Qualcomm ≫ Qca6595au Version-

Qualcomm ≫ Qca6696 Firmware Version-

Qualcomm ≫ Qca6696 Version-

Qualcomm ≫ Qca6698aq Firmware Version-

Qualcomm ≫ Qca6698aq Version-

Qualcomm ≫ Qca6797aq Firmware Version-

Qualcomm ≫ Qca6797aq Version-

Qualcomm ≫ Qca8081 Firmware Version-

Qualcomm ≫ Qca8081 Version-

Qualcomm ≫ Qca8337 Firmware Version-

Qualcomm ≫ Qca8337 Version-

Qualcomm ≫ Qcc710 Firmware Version-

Qualcomm ≫ Qcc710 Version-

Qualcomm ≫ Qcm4490 Firmware Version-

Qualcomm ≫ Qcm4490 Version-

Qualcomm ≫ Qcm8550 Firmware Version-

Qualcomm ≫ Qcm8550 Version-

Qualcomm ≫ Qcn6024 Firmware Version-

Qualcomm ≫ Qcn6024 Version-

Qualcomm ≫ Qcn6224 Firmware Version-

Qualcomm ≫ Qcn6224 Version-

Qualcomm ≫ Qcn6274 Firmware Version-

Qualcomm ≫ Qcn6274 Version-

Qualcomm ≫ Qcn9024 Firmware Version-

Qualcomm ≫ Qcn9024 Version-

Qualcomm ≫ Qcs4490 Firmware Version-

Qualcomm ≫ Qcs4490 Version-

Qualcomm ≫ Qcs8550 Firmware Version-

Qualcomm ≫ Qcs8550 Version-

Qualcomm ≫ Qdu1000 Firmware Version-

Qualcomm ≫ Qdu1000 Version-

Qualcomm ≫ Qdu1010 Firmware Version-

Qualcomm ≫ Qdu1010 Version-

Qualcomm ≫ Qdu1110 Firmware Version-

Qualcomm ≫ Qdu1110 Version-

Qualcomm ≫ Qdu1210 Firmware Version-

Qualcomm ≫ Qdu1210 Version-

Qualcomm ≫ Qdx1010 Firmware Version-

Qualcomm ≫ Qdx1010 Version-

Qualcomm ≫ Qdx1011 Firmware Version-

Qualcomm ≫ Qdx1011 Version-

Qualcomm ≫ Qfw7114 Firmware Version-

Qualcomm ≫ Qfw7114 Version-

Qualcomm ≫ Qfw7124 Firmware Version-

Qualcomm ≫ Qfw7124 Version-

Qualcomm ≫ Qru1032 Firmware Version-

Qualcomm ≫ Qru1032 Version-

Qualcomm ≫ Qru1052 Firmware Version-

Qualcomm ≫ Qru1052 Version-

Qualcomm ≫ Qru1062 Firmware Version-

Qualcomm ≫ Qru1062 Version-

Qualcomm ≫ Sa8255p Firmware Version-

Qualcomm ≫ Sa8255p Version-

Qualcomm ≫ Sa8650p Firmware Version-

Qualcomm ≫ Sa8650p Version-

Qualcomm ≫ Sa9000p Firmware Version-

Qualcomm ≫ Sa9000p Version-

Qualcomm ≫ Sc8380xp Firmware Version-

Qualcomm ≫ Sc8380xp Version-

Qualcomm ≫ Sd835 Firmware Version-

Qualcomm ≫ Sd835 Version-

Qualcomm ≫ Sg8275p Firmware Version-

Qualcomm ≫ Sg8275p Version-

Qualcomm ≫ Sm8550p Firmware Version-

Qualcomm ≫ Sm8550p Version-

Qualcomm ≫ Snapdragon 4 Gen 2 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 4 Gen 2 Mobile Platform Version-

Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Platform Version-

Qualcomm ≫ Snapdragon 8+ Gen 2 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 8+ Gen 2 Mobile Platform Version-

Qualcomm ≫ Snapdragon 835 Mobile Pc Platform Firmware Version-

Qualcomm ≫ Snapdragon 835 Mobile Pc Platform Version-

Qualcomm ≫ Snapdragon Ar2 Gen 1 Platform Firmware Version-

Qualcomm ≫ Snapdragon Ar2 Gen 1 Platform Version-

Qualcomm ≫ Snapdragon X65 5g Modem-rf System Firmware Version-

Qualcomm ≫ Snapdragon X65 5g Modem-rf System Version-

Qualcomm ≫ Snapdragon X70 Modem-rf System Firmware Version-

Qualcomm ≫ Snapdragon X70 Modem-rf System Version-

Qualcomm ≫ Snapdragon X75 5g Modem-rf System Firmware Version-

Qualcomm ≫ Snapdragon X75 5g Modem-rf System Version-

Qualcomm ≫ Srv1h Firmware Version-

Qualcomm ≫ Srv1h Version-

Qualcomm ≫ Ssg2115p Firmware Version-

Qualcomm ≫ Ssg2115p Version-

Qualcomm ≫ Ssg2125p Firmware Version-

Qualcomm ≫ Ssg2125p Version-

Qualcomm ≫ Sxr1230p Firmware Version-

Qualcomm ≫ Sxr1230p Version-

Qualcomm ≫ Sxr2230p Firmware Version-

Qualcomm ≫ Sxr2230p Version-

Qualcomm ≫ Wcd9335 Firmware Version-

Qualcomm ≫ Wcd9335 Version-

Qualcomm ≫ Wcd9340 Firmware Version-

Qualcomm ≫ Wcd9340 Version-

Qualcomm ≫ Wcd9341 Firmware Version-

Qualcomm ≫ Wcd9341 Version-

Qualcomm ≫ Wcd9370 Firmware Version-

Qualcomm ≫ Wcd9370 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcd9390 Firmware Version-

Qualcomm ≫ Wcd9390 Version-

Qualcomm ≫ Wcd9395 Firmware Version-

Qualcomm ≫ Wcd9395 Version-

Qualcomm ≫ Wcn3950 Firmware Version-

Qualcomm ≫ Wcn3950 Version-

Qualcomm ≫ Wcn3988 Firmware Version-

Qualcomm ≫ Wcn3988 Version-

Qualcomm ≫ Wcn3990 Firmware Version-

Qualcomm ≫ Wcn3990 Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8832 Firmware Version-

Qualcomm ≫ Wsa8832 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Qualcomm ≫ Wsa8840 Firmware Version-

Qualcomm ≫ Wsa8840 Version-

Qualcomm ≫ Wsa8845 Firmware Version-

Qualcomm ≫ Wsa8845 Version-

Qualcomm ≫ Wsa8845h Firmware Version-

Qualcomm ≫ Wsa8845h Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.134

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
product-security@qualcomm.com	9	2.5	5.8	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-28574

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-28574

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-28574

EUVD