VDB

CISA-2023-28557

CISA-2023-28557 PUBLISHED CVSS 7.8 HIGH

Reported by qualcomm · Published September 5, 2023

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Qualcomm, Inc.Snapdragon315 5G IoT Modem, AQT1000, AR8031
qualcommaqt1000_firmware0, 0
qualcommipq9008_firmware0, 0
qualcommipq8072a_firmware0, 0
qualcommqcm2290_firmware0, 0
qualcommqca6696_firmware0, 0
qualcommqca9984_firmware0, 0
qualcommar9380_firmware0, 0
qualcommcsr8811_firmware0, 0
qualcommqca6426_firmware0, 0
qualcommipq8076_firmware0, 0
qualcommqcn5021_firmware0, 0
qualcommqcn5054_firmware0, 0
qualcommqca8082_firmware0, 0
qualcommqca8081_firmware0, 0
qualcommfastconnect_6200_firmware0, 0
qualcommqca9992_firmware0, 0
qualcommipq6018_firmware0, 0
qualcommimmersive_home_316_platform_firmware0, 0
qualcommipq4018_firmware0, 0

…and 92 more

Timeline

  • Sep 5, 2023 CVE Published
  • Jul 16, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›