CVE-2023-33074

EPSS 0.03%
Veröffentlicht 07.11.2023 06:15:11
Zuletzt bearbeitet 21.11.2024 08:04:42
Quelle product-security@qualcomm.com
Teams Watchlist Login
Unerledigt Login

Memory corruption in Audio when SSR event is triggered after music playback is stopped.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Wcn6750 Firmware Version-

Qualcomm ≫ Wcn6750 Version-

Qualcomm ≫ Wcn685x-5 Firmware Version-

Qualcomm ≫ Wcn685x-5 Version-

Qualcomm ≫ Wcn685x-1 Firmware Version-

Qualcomm ≫ Wcn685x-1 Version-

Qualcomm ≫ Wcn785x-1 Firmware Version-

Qualcomm ≫ Wcn785x-1 Version-

Qualcomm ≫ Wcn785x-5 Firmware Version-

Qualcomm ≫ Wcn785x-5 Version-

Qualcomm ≫ Qam8255p Firmware Version-

Qualcomm ≫ Qam8255p Version-

Qualcomm ≫ Qam8295p Firmware Version-

Qualcomm ≫ Qam8295p Version-

Qualcomm ≫ Qam8650p Firmware Version-

Qualcomm ≫ Qam8650p Version-

Qualcomm ≫ Qam8775p Firmware Version-

Qualcomm ≫ Qam8775p Version-

Qualcomm ≫ Qca6574 Firmware Version-

Qualcomm ≫ Qca6574 Version-

Qualcomm ≫ Qca6574a Firmware Version-

Qualcomm ≫ Qca6574a Version-

Qualcomm ≫ Qca6574au Firmware Version-

Qualcomm ≫ Qca6574au Version-

Qualcomm ≫ Qca6595 Firmware Version-

Qualcomm ≫ Qca6595 Version-

Qualcomm ≫ Qca6595au Firmware Version-

Qualcomm ≫ Qca6595au Version-

Qualcomm ≫ Qca6696 Firmware Version-

Qualcomm ≫ Qca6696 Version-

Qualcomm ≫ Qca6698aq Firmware Version-

Qualcomm ≫ Qca6698aq Version-

Qualcomm ≫ Qca6797aq Firmware Version-

Qualcomm ≫ Qca6797aq Version-

Qualcomm ≫ Qcm4325 Firmware Version-

Qualcomm ≫ Qcm4325 Version-

Qualcomm ≫ Sa4150p Firmware Version-

Qualcomm ≫ Sa4150p Version-

Qualcomm ≫ Sa4155p Firmware Version-

Qualcomm ≫ Sa4155p Version-

Qualcomm ≫ Sa6145p Firmware Version-

Qualcomm ≫ Sa6145p Version-

Qualcomm ≫ Sa6150p Firmware Version-

Qualcomm ≫ Sa6150p Version-

Qualcomm ≫ Sa6155p Firmware Version-

Qualcomm ≫ Sa6155p Version-

Qualcomm ≫ Sa8145p Firmware Version-

Qualcomm ≫ Sa8145p Version-

Qualcomm ≫ Sa8150p Firmware Version-

Qualcomm ≫ Sa8150p Version-

Qualcomm ≫ Sa8155p Firmware Version-

Qualcomm ≫ Sa8155p Version-

Qualcomm ≫ Sa8195p Firmware Version-

Qualcomm ≫ Sa8195p Version-

Qualcomm ≫ Sa8255p Firmware Version-

Qualcomm ≫ Sa8255p Version-

Qualcomm ≫ Sa8295p Firmware Version-

Qualcomm ≫ Sa8295p Version-

Qualcomm ≫ Sd865 5g Firmware Version-

Qualcomm ≫ Sd865 5g Version-

Qualcomm ≫ Sg8275p Firmware Version-

Qualcomm ≫ Sg8275p Version-

Qualcomm ≫ Sm8550p Firmware Version-

Qualcomm ≫ Sm8550p Version-

Qualcomm ≫ Sm6225 Firmware Version-

Qualcomm ≫ Sm6225 Version-

Qualcomm ≫ Sm6225-ad Firmware Version-

Qualcomm ≫ Sm6225-ad Version-

Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 8 Gen 2 Mobile Platform Version-

Qualcomm ≫ Sm8475 Firmware Version-

Qualcomm ≫ Sm8475 Version-

Qualcomm ≫ Snapdragon 8+ Gen 2 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 8+ Gen 2 Mobile Platform Version-

Qualcomm ≫ Snapdragon W5+ Gen 1 Wearable Platform Firmware Version-

Qualcomm ≫ Snapdragon W5+ Gen 1 Wearable Platform Version-

Qualcomm ≫ Snapdragon Xr2 5g Platform Firmware Version-

Qualcomm ≫ Snapdragon Xr2 5g Platform Version-

Qualcomm ≫ Ssg2115p Firmware Version-

Qualcomm ≫ Ssg2115p Version-

Qualcomm ≫ Ssg2125p Firmware Version-

Qualcomm ≫ Ssg2125p Version-

Qualcomm ≫ Sw5100 Firmware Version-

Qualcomm ≫ Sw5100 Version-

Qualcomm ≫ Sw5100p Firmware Version-

Qualcomm ≫ Sw5100p Version-

Qualcomm ≫ Sxr1230p Firmware Version-

Qualcomm ≫ Sxr1230p Version-

Qualcomm ≫ Sxr2230p Firmware Version-

Qualcomm ≫ Sxr2230p Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcd9390 Firmware Version-

Qualcomm ≫ Wcd9390 Version-

Qualcomm ≫ Wcd9395 Firmware Version-

Qualcomm ≫ Wcd9395 Version-

Qualcomm ≫ Wcn3950 Firmware Version-

Qualcomm ≫ Wcn3950 Version-

Qualcomm ≫ Wcn3980 Firmware Version-

Qualcomm ≫ Wcn3980 Version-

Qualcomm ≫ Wcn3988 Firmware Version-

Qualcomm ≫ Wcn3988 Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8832 Firmware Version-

Qualcomm ≫ Wsa8832 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Qualcomm ≫ Wsa8840 Firmware Version-

Qualcomm ≫ Wsa8840 Version-

Qualcomm ≫ Wsa8845 Firmware Version-

Qualcomm ≫ Wsa8845 Version-

Qualcomm ≫ Wsa8845h Firmware Version-

Qualcomm ≫ Wsa8845h Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.066

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
product-security@qualcomm.com	8.4	2.5	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-33074

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-33074

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-33074

EUVD