CVE-2023-21653

Published: Sep 5, 2023Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Transient DOS in Modem while processing RRC reconfiguration message.

Affected (10)

Products: Qualcomm: Ar8035 Firmware, Qca8081 Firmware, Qca8337 Firmware, Qcn6024 Firmware, Qcn9024 Firmware, Sdx65 Firmware, Sdx70m Firmware, Wcd9380 Firmware, Wcn6855 Firmware, Wcn6856 Firmware

10 products

Ar8035 Firmware

Qca8081 Firmware

Qca8337 Firmware

Qcn6024 Firmware

Qcn9024 Firmware

Sdx70m Firmware

Wcd9380 Firmware

Wcn6855 Firmware

Wcn6856 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ar8035 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ar8035	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8081 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8081	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8337 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8337	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn6024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn6024	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9024	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sdx65 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sdx65	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sdx70m Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sdx70m	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9380 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9380	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn6855 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn6855	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn6856 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn6856	All versions

Related CWEs

Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (2)

https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin

Source: product-security@qualcomm.com

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.