CVE-2023-33046

nvd nist

Published: Feb 6, 2024Modified: Aug 11, 2025

7.0

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.0 / Impact: 5.9

Source: NVD

Description

Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.

Affected (49)

Products: Qualcomm: Ar8035 Firmware, Fastconnect 6900 Firmware, Fastconnect 7800 Firmware, Flight Rb5 5g Platform Firmware, Qam8295p Firmware, Qca6391 Firmware, Qca6574au Firmware, Qca6595 Firmware, Qca6696 Firmware, Qca6698aq Firmware, Qca8081 Firmware, Qca8337 Firmware, Qcm8550 Firmware, Qcn6024 Firmware, Qcn9011 Firmware, Qcn9012 Firmware, Qcn9024 Firmware, Qcs7230 Firmware, Qcs8250 Firmware, Qcs8550 Firmware, Qrb5165m Firmware, Qrb5165n Firmware, Video Collaboration Vc5 Platform Firmware, Robotics Rb5 Platform Firmware, Sa8295p Firmware, Sa8540p Firmware, Sa9000p Firmware, Sg8275p Firmware, Sm8550p Firmware, Snapdragon 8+ Gen 2 Mobile Platform Firmware, Snapdragon 8cx Gen 3 Compute Platform Firmware, Snapdragon Ar2 Gen 1 Platform Firmware, Snapdragon X65 5g Modem Rf System Firmware, Snapdragon X70 Modem Rf System Firmware, Ssg2115p Firmware, Ssg2125p Firmware, Sxr1230p Firmware, Sxr2230p Firmware, Wcd9380 Firmware, Wcd9385 Firmware, Wcd9390 Firmware, Wcd9395 Firmware, Wsa8830 Firmware, Wsa8832 Firmware, Wsa8835 Firmware, Wsa8840 Firmware, Wsa8845 Firmware, Wsa8845h Firmware

Qualcomm

48 products

Ar8035 Firmware

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Flight Rb5 5g Platform Firmware

Video Collaboration Vc5 Platform Firmware

Robotics Rb5 Platform Firmware

Snapdragon 8+ Gen 2 Mobile Platform Firmware

Snapdragon 8cx Gen 3 Compute Platform Firmware

Snapdragon Ar2 Gen 1 Platform Firmware

Snapdragon X65 5g Modem Rf System Firmware

Snapdragon X70 Modem Rf System Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ar8035 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ar8035	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 6900 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 6900	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 7800 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 7800	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Flight Rb5 5g Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Flight Rb5 5g Platform	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qam8295p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qam8295p	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca6391 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca6391	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca6574au Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca6574au	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca6595 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca6595	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca6696 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca6696	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca6698aq Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca6698aq	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8081 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8081	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8337 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8337	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcm8550 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcm8550	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn6024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn6024	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9011 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9011	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9012 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9012	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9024	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcs7230 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcs7230	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcs8250 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcs8250	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcs8550 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcs8550	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qrb5165m Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qrb5165m	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qrb5165n Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qrb5165n	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Video Collaboration Vc5 Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Video Collaboration Vc5 Platform	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Robotics Rb5 Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Robotics Rb5 Platform	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8295p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8295p	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8540p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8540p	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa9000p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa9000p	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sg8275p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sg8275p	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sm8550p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sm8550p	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 8 Gen 2 Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 8 Gen 2 Mobile Platform	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 8+ Gen 2 Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 8+ Gen 2 Mobile Platform	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 8cx Gen 3 Compute Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 8cx Gen 3 Compute Platform	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon Ar2 Gen 1 Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon Ar2 Gen 1 Platform	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon X65 5g Modem Rf System Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon X65 5g Modem Rf System	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon X70 Modem Rf System Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon X70 Modem Rf System	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ssg2115p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ssg2115p	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ssg2125p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ssg2125p	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sxr1230p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sxr1230p	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sxr2230p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sxr2230p	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9380 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9380	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9385 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9385	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9390 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9390	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9395 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9395	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8830 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8830	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8832 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8832	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8835 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8835	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8840 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8840	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8845 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8845	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8845h Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8845h	All versions

Related CWEs

CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin

Source: product-security@qualcomm.com

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.