VDB

CISA-2023-21651

CISA-2023-21651 PUBLISHED CVSS 9.3 CRITICAL

Reported by qualcomm · Published August 8, 2023

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

Risk Scores

CVSS 3.1
9.3
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersions
Qualcomm, Inc.SnapdragonAQT1000, AR8031, AR8035
qualcommqca9984_firmware0, 0
qualcommwsa8815_firmware0, 0
qualcommsd695_firmware0, 0
qualcommqcn9011_firmware0, 0
qualcommsd480_firmware0, 0
qualcommsm7325p_firmware0, 0
qualcommwcn3988_firmware0, 0
qualcommqsm8350_firmware0, 0
qualcommwcd9340_firmware0, 0
qualcommqcs4290_firmware0, 0
qualcommqcn7606_firmware0, 0
qualcommqca6574au_firmware0, 0
qualcommqca6595au_firmware0, 0
qualcommsxr1230p_firmware0, 0
qualcommsa6155_firmware0, 0
qualcommsd850_firmware0, 0
qualcommwcn3980_firmware0, 0
qualcommsd460_firmware0, 0
qualcommsd855_firmware0, 0

…and 122 more

Timeline

  • Aug 8, 2023 CVE Published
  • Oct 22, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›