TROYANOSYVIRUS
Voltar para CVEs

CVE-2023-33106

HIGHCISA KEV
8.4

Descricao

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

Detalhes CVE

Pontuacao CVSS v3.18.4
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vetor de ataqueLOCAL
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado12/5/2023
Ultima modificacao10/28/2025
Fontekev
Avistamentos honeypot0

CISA KEV

FornecedorQualcomm
ProdutoMultiple Chipsets
Nome da vulnerabilidadeQualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
Data inclusao KEV2023-12-05
Prazo de remediacao2023-12-26
Uso em ransomwareUnknown

Produtos afetados

qualcomm:ar8035qualcomm:ar8035_firmwarequalcomm:csra6620qualcomm:csra6620_firmwarequalcomm:csra6640qualcomm:csra6640_firmwarequalcomm:fastconnect_6200qualcomm:fastconnect_6200_firmwarequalcomm:fastconnect_6700qualcomm:fastconnect_6700_firmwarequalcomm:fastconnect_6800qualcomm:fastconnect_6800_firmwarequalcomm:fastconnect_6900qualcomm:fastconnect_6900_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:flight_rb5_5g_platformqualcomm:flight_rb5_5g_platform_firmwarequalcomm:qam8255pqualcomm:qam8255p_firmwarequalcomm:qam8295pqualcomm:qam8295p_firmwarequalcomm:qam8650pqualcomm:qam8650p_firmwarequalcomm:qam8775pqualcomm:qam8775p_firmwarequalcomm:qca6174aqualcomm:qca6174a_firmwarequalcomm:qca6391qualcomm:qca6391_firmwarequalcomm:qca6426qualcomm:qca6426_firmwarequalcomm:qca6436qualcomm:qca6436_firmwarequalcomm:qca6574qualcomm:qca6574_firmwarequalcomm:qca6574aqualcomm:qca6574a_firmwarequalcomm:qca6574auqualcomm:qca6574au_firmwarequalcomm:qca6595qualcomm:qca6595_firmwarequalcomm:qca6595auqualcomm:qca6595au_firmwarequalcomm:qca6696qualcomm:qca6696_firmwarequalcomm:qca6698aqqualcomm:qca6698aq_firmwarequalcomm:qca6797aqqualcomm:qca6797aq_firmwarequalcomm:qca8081qualcomm:qca8081_firmwarequalcomm:qca8337qualcomm:qca8337_firmwarequalcomm:qca9377qualcomm:qca9377_firmwarequalcomm:qcm2290qualcomm:qcm2290_firmwarequalcomm:qcm4290qualcomm:qcm4290_firmwarequalcomm:qcm4325qualcomm:qcm4325_firmwarequalcomm:qcm4490qualcomm:qcm4490_firmwarequalcomm:qcm5430qualcomm:qcm5430_firmwarequalcomm:qcm6490qualcomm:qcm6490_firmwarequalcomm:qcm8550qualcomm:qcm8550_firmwarequalcomm:qcn6024qualcomm:qcn6024_firmwarequalcomm:qcn9011qualcomm:qcn9011_firmwarequalcomm:qcn9012qualcomm:qcn9012_firmwarequalcomm:qcn9024qualcomm:qcn9024_firmwarequalcomm:qcs2290qualcomm:qcs2290_firmwarequalcomm:qcs410qualcomm:qcs410_firmwarequalcomm:qcs4290qualcomm:qcs4290_firmwarequalcomm:qcs4490qualcomm:qcs4490_firmwarequalcomm:qcs5430qualcomm:qcs5430_firmwarequalcomm:qcs610qualcomm:qcs610_firmwarequalcomm:qcs6490qualcomm:qcs6490_firmwarequalcomm:qcs7230qualcomm:qcs7230_firmwarequalcomm:qcs8250qualcomm:qcs8250_firmwarequalcomm:qcs8550qualcomm:qcs8550_firmwarequalcomm:qrb5165mqualcomm:qrb5165m_firmwarequalcomm:qrb5165nqualcomm:qrb5165n_firmwarequalcomm:qualcomm_215_mobile_platformqualcomm:qualcomm_215_mobile_platform_firmwarequalcomm:robotics_rb5_platformqualcomm:robotics_rb5_platform_firmwarequalcomm:sa4150pqualcomm:sa4150p_firmwarequalcomm:sa4155pqualcomm:sa4155p_firmwarequalcomm:sa6145pqualcomm:sa6145p_firmwarequalcomm:sa6150pqualcomm:sa6150p_firmwarequalcomm:sa6155pqualcomm:sa6155p_firmwarequalcomm:sa8145pqualcomm:sa8145p_firmwarequalcomm:sa8150pqualcomm:sa8150p_firmwarequalcomm:sa8155pqualcomm:sa8155p_firmwarequalcomm:sa8195pqualcomm:sa8195p_firmwarequalcomm:sa8255pqualcomm:sa8255p_firmwarequalcomm:sa8295pqualcomm:sa8295p_firmwarequalcomm:sa8770pqualcomm:sa8770p_firmwarequalcomm:sa8775pqualcomm:sa8775p_firmwarequalcomm:sa9000pqualcomm:sa9000p_firmwarequalcomm:sd660qualcomm:sd660_firmwarequalcomm:sd865_5gqualcomm:sd865_5g_firmwarequalcomm:sd888qualcomm:sd888_firmwarequalcomm:sd_8_gen1_5gqualcomm:sd_8_gen1_5g_firmwarequalcomm:sg4150pqualcomm:sg4150p_firmwarequalcomm:sg8275pqualcomm:sg8275p_firmwarequalcomm:sm4125qualcomm:sm4125_firmwarequalcomm:sm7250pqualcomm:sm7250p_firmwarequalcomm:sm7315qualcomm:sm7315_firmwarequalcomm:sm7325pqualcomm:sm7325p_firmwarequalcomm:sm8550pqualcomm:sm8550p_firmwarequalcomm:smart_audio_400_platformqualcomm:smart_audio_400_platform_firmwarequalcomm:snapdragon_439_mobile_platformqualcomm:snapdragon_439_mobile_platform_firmwarequalcomm:snapdragon_460_mobile_platformqualcomm:snapdragon_460_mobile_platform_firmwarequalcomm:snapdragon_480\+_5g_mobile_platformqualcomm:snapdragon_480\+_5g_mobile_platform_firmwarequalcomm:snapdragon_480_5g_mobile_platformqualcomm:snapdragon_480_5g_mobile_platform_firmwarequalcomm:snapdragon_4_gen_1_mobile_platformqualcomm:snapdragon_4_gen_1_mobile_platform_firmwarequalcomm:snapdragon_4_gen_2_mobile_platformqualcomm:snapdragon_4_gen_2_mobile_platform_firmwarequalcomm:snapdragon_660_mobile_platformqualcomm:snapdragon_660_mobile_platform_firmwarequalcomm:snapdragon_662_mobile_platformqualcomm:snapdragon_662_mobile_platform_firmwarequalcomm:snapdragon_680_4g_mobile_platformqualcomm:snapdragon_680_4g_mobile_platform_firmwarequalcomm:snapdragon_685_4g_mobile_platformqualcomm:snapdragon_685_4g_mobile_platform_firmwarequalcomm:snapdragon_690_5g_mobile_platformqualcomm:snapdragon_690_5g_mobile_platform_firmwarequalcomm:snapdragon_695_5g_mobile_platformqualcomm:snapdragon_695_5g_mobile_platform_firmwarequalcomm:snapdragon_750g_5g_mobile_platformqualcomm:snapdragon_750g_5g_mobile_platform_firmwarequalcomm:snapdragon_765_5g_mobile_platformqualcomm:snapdragon_765_5g_mobile_platform_firmwarequalcomm:snapdragon_765g_5g_mobile_platformqualcomm:snapdragon_765g_5g_mobile_platform_firmwarequalcomm:snapdragon_768g_5g_mobile_platformqualcomm:snapdragon_768g_5g_mobile_platform_firmwarequalcomm:snapdragon_778g\+_5g_mobile_platformqualcomm:snapdragon_778g\+_5g_mobile_platform_firmwarequalcomm:snapdragon_778g_5g_mobile_platformqualcomm:snapdragon_778g_5g_mobile_platform_firmwarequalcomm:snapdragon_780g_5g_mobile_platformqualcomm:snapdragon_780g_5g_mobile_platform_firmwarequalcomm:snapdragon_782g_mobile_platformqualcomm:snapdragon_782g_mobile_platform_firmwarequalcomm:snapdragon_7c\+_gen_3_computequalcomm:snapdragon_7c\+_gen_3_compute_firmwarequalcomm:snapdragon_865\+_5g_mobile_platformqualcomm:snapdragon_865\+_5g_mobile_platform_firmwarequalcomm:snapdragon_865_5g_mobile_platformqualcomm:snapdragon_865_5g_mobile_platform_firmwarequalcomm:snapdragon_870_5g_mobile_platformqualcomm:snapdragon_870_5g_mobile_platform_firmwarequalcomm:snapdragon_888\+_5g_mobile_platformqualcomm:snapdragon_888\+_5g_mobile_platform_firmwarequalcomm:snapdragon_888_5g_mobile_platformqualcomm:snapdragon_888_5g_mobile_platform_firmwarequalcomm:snapdragon_8\+_gen_1_mobile_platformqualcomm:snapdragon_8\+_gen_1_mobile_platform_firmwarequalcomm:snapdragon_8\+_gen_2_mobile_platformqualcomm:snapdragon_8\+_gen_2_mobile_platform_firmwarequalcomm:snapdragon_8_gen_1_mobile_platformqualcomm:snapdragon_8_gen_1_mobile_platform_firmwarequalcomm:snapdragon_8_gen_2_mobile_platformqualcomm:snapdragon_8_gen_2_mobile_platform_firmwarequalcomm:snapdragon_ar2_gen_1_platformqualcomm:snapdragon_ar2_gen_1_platform_firmwarequalcomm:snapdragon_auto_5g_modem-rfqualcomm:snapdragon_auto_5g_modem-rf_firmwarequalcomm:snapdragon_w5\+_gen_1_wearable_platformqualcomm:snapdragon_w5\+_gen_1_wearable_platform_firmwarequalcomm:snapdragon_x12_lte_modemqualcomm:snapdragon_x12_lte_modem_firmwarequalcomm:snapdragon_x55_5g_modem-rf_systemqualcomm:snapdragon_x55_5g_modem-rf_system_firmwarequalcomm:snapdragon_x65_5g_modem-rf_systemqualcomm:snapdragon_x65_5g_modem-rf_system_firmwarequalcomm:snapdragon_xr2\+_gen_1_platformqualcomm:snapdragon_xr2\+_gen_1_platform_firmwarequalcomm:snapdragon_xr2_5g_platformqualcomm:snapdragon_xr2_5g_platform_firmwarequalcomm:ssg2115pqualcomm:ssg2115p_firmwarequalcomm:ssg2125pqualcomm:ssg2125p_firmwarequalcomm:sw5100qualcomm:sw5100_firmwarequalcomm:sw5100pqualcomm:sw5100p_firmwarequalcomm:sxr1230pqualcomm:sxr1230p_firmwarequalcomm:sxr2130qualcomm:sxr2130_firmwarequalcomm:sxr2230pqualcomm:sxr2230p_firmwarequalcomm:video_collaboration_vc1_platformqualcomm:video_collaboration_vc1_platform_firmwarequalcomm:video_collaboration_vc3_platformqualcomm:video_collaboration_vc3_platform_firmwarequalcomm:video_collaboration_vc5_platformqualcomm:video_collaboration_vc5_platform_firmwarequalcomm:wcd9326qualcomm:wcd9326_firmwarequalcomm:wcd9335qualcomm:wcd9335_firmwarequalcomm:wcd9341qualcomm:wcd9341_firmwarequalcomm:wcd9370qualcomm:wcd9370_firmwarequalcomm:wcd9375qualcomm:wcd9375_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcd9385qualcomm:wcd9385_firmwarequalcomm:wcd9390qualcomm:wcd9390_firmwarequalcomm:wcd9395qualcomm:wcd9395_firmwarequalcomm:wcn3615qualcomm:wcn3615_firmwarequalcomm:wcn3660bqualcomm:wcn3660b_firmwarequalcomm:wcn3680bqualcomm:wcn3680b_firmwarequalcomm:wcn3910qualcomm:wcn3910_firmwarequalcomm:wcn3950qualcomm:wcn3950_firmwarequalcomm:wcn3980qualcomm:wcn3980_firmwarequalcomm:wcn3988qualcomm:wcn3988_firmwarequalcomm:wcn3990qualcomm:wcn3990_firmwarequalcomm:wcn6740qualcomm:wcn6740_firmwarequalcomm:wsa8810qualcomm:wsa8810_firmwarequalcomm:wsa8815qualcomm:wsa8815_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8832qualcomm:wsa8832_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmware

Fraquezas (CWE)

CWE-823CWE-119

Referencias

https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin(product-security@qualcomm.com)
https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-33106(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.