CVE-2023-21671

nvd nist

Published: Nov 7, 2023Modified: Aug 11, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Memory Corruption in Core during syscall for Sectools Fuse comparison feature.

Affected (24)

Products: Qualcomm: Fastconnect 6700 Firmware, Fastconnect 6900 Firmware, Qca6391 Firmware, Qcm6490 Firmware, Qcs6490 Firmware, Qsm8350 Firmware, Video Collaboration Vc3 Platform Firmware, Sd888 Firmware, Sm7315 Firmware, Sm7325p Firmware, Snapdragon 778g+ 5g Mobile Platform Firmware, Snapdragon 780g 5g Mobile Platform Firmware, Snapdragon 782g Mobile Platform Firmware, Snapdragon 7c+ Gen 3 Compute Firmware, Snapdragon 888+ 5g Mobile Platform Firmware, Wcd9370 Firmware, Wcd9375 Firmware, Wcd9380 Firmware, Wcd9385 Firmware, Wcn6740 Firmware, Wsa8830 Firmware, Wsa8835 Firmware

Qualcomm

22 products

Fastconnect 6700 Firmware

Fastconnect 6900 Firmware

Video Collaboration Vc3 Platform Firmware

Sd888 Firmware

Sm7315 Firmware

Sm7325p Firmware

Snapdragon 778g+ 5g Mobile Platform Firmware

Snapdragon 780g 5g Mobile Platform Firmware

Snapdragon 782g Mobile Platform Firmware

Snapdragon 7c+ Gen 3 Compute Firmware

Snapdragon 888+ 5g Mobile Platform Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 6700 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 6700	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 6900 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 6900	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca6391 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca6391	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcm6490 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcm6490	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcs6490 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcs6490	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qsm8350 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qsm8350	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Video Collaboration Vc3 Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Video Collaboration Vc3 Platform	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd888 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sd888	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sm7315 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sm7315	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sm7325p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sm7325p	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 778g 5g Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 778g 5g Mobile Platform	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 778g+ 5g Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 778g+ 5g Mobile Platform	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 780g 5g Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 780g 5g Mobile Platform	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 782g Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 782g Mobile Platform	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 7c+ Gen 3 Compute Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 7c+ Gen 3 Compute	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 888 5g Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 888 5g Mobile Platform	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 888+ 5g Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 888+ 5g Mobile Platform	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9370 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9370	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9375 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9375	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9380 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9380	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9385 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9385	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn6740 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn6740	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8830 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8830	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8835 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8835	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin

Source: product-security@qualcomm.com

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.