GSD-2023-21651 — Vulnetix

GSD-2023-21651 PUBLISHED CVSS 9.300000190734863 CRITICAL

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

Risk Scores

CVSS v3.1

9.300000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
qualcomm	qcn9024_firmware	0
qualcomm	sd662_firmware	0
qualcomm	mdm9205_firmware	0
qualcomm	qca6421_firmware	0
qualcomm	qsm8250_firmware	0
qualcomm	qca6310_firmware	0
qualcomm	wcn3988_firmware	0
qualcomm	sd750g_firmware	0
qualcomm	sa8295p_firmware	0
qualcomm	sd_8cx_firmware	0
qualcomm	qca6574au_firmware	0
qualcomm	sd695_firmware	0
qualcomm	wcn7851_firmware	0
qualcomm	sm7250p_firmware	0
qualcomm	wsa8832_firmware	0
qualcomm	qca9984_firmware	0
qualcomm	wcn6740_firmware	0
qualcomm	wcd9360_firmware	0
qualcomm	sa8155p_firmware	0
qualcomm	qcn9011_firmware	0

…and 121 more

Exploit Intelligence

https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin (circl)

Timeline

Apr 20, 2026 CVE Published

References

https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›