CVE-2023-28576

🗓️ 08 Aug 2023 09:15:05Reported by qualcommType

The buffer obtained from kernel APIs may allow unauthorized access and modification, leading to out-of-bounds read/write issues

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-28576	3 Jan 202423:08	–	circl
CNNVD	Qualcomm Chipsets Security Vulnerability	8 Aug 202300:00	–	cnnvd
Cvelist	CVE-2023-28576 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Kernel Driver	8 Aug 202309:15	–	cvelist
EUVD	EUVD-2023-32246	3 Oct 202520:07	–	euvd
NVD	CVE-2023-28576	8 Aug 202310:15	–	nvd
Prion	Out-of-bounds	8 Aug 202310:15	–	prion
Positive Technologies	PT-2023-21825 · Qualcomm · Snapdragon +29	8 Aug 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-28576	23 May 202506:02	–	redhatcve
Vulnrichment	CVE-2023-28576 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Kernel Driver	8 Aug 202309:15	–	vulnrichment

NVD

Node

qualcomm fastconnect_6800_firmwareMatch-

AND

qualcomm fastconnect_6800Match-

Node

qualcomm fastconnect_6900_firmwareMatch-

AND

qualcomm fastconnect_6900Match-

Node

qualcomm fastconnect_7800_firmwareMatch-

AND

qualcomm fastconnect_7800Match-

Node

qualcomm qca6391_firmwareMatch-

AND

qualcomm qca6391Match-

Node

qualcomm qca6426_firmwareMatch-

AND

qualcomm qca6426Match-

Node

qualcomm qca6436_firmwareMatch-

AND

qualcomm qca6436Match-

Node

qualcomm qcn9074_firmwareMatch-

AND

qualcomm qcn9074Match-

Node

qualcomm qcs410_firmwareMatch-

AND

qualcomm qcs410Match-

Node

qualcomm qcs610_firmwareMatch-

AND

qualcomm qcs610Match-

Node

qualcomm sd865_5g_firmwareMatch-

AND

qualcomm sd865_5gMatch-

Node

qualcomm snapdragon_8_gen_1_firmwareMatch-

AND

qualcomm snapdragon_8_gen_1Match-

Node

qualcomm snapdragon_865_5g_firmwareMatch-

AND

qualcomm snapdragon_865_5gMatch-

Node

qualcomm snapdragon_865+_5g_firmwareMatch-

AND

qualcomm snapdragon_865+_5gMatch-

Node

qualcomm snapdragon_870_5g_firmwareMatch-

AND

qualcomm snapdragon_870_5gMatch-

Node

qualcomm snapdragon_x55_5g_firmwareMatch-

AND

qualcomm snapdragon_x55_5gMatch-

Node

qualcomm snapdragon_xr2_5g_firmwareMatch-

AND

qualcomm snapdragon_xr2_5gMatch-

Node

qualcomm sw5100_firmwareMatch-

AND

qualcomm sw5100Match-

Node

qualcomm sw5100p_firmwareMatch-

AND

qualcomm sw5100pMatch-

Node

qualcomm sxr2130_firmwareMatch-

AND

qualcomm sxr2130Match-

Node

qualcomm wcd9341_firmwareMatch-

AND

qualcomm wcd9341Match-

Node

qualcomm wcd9370_firmwareMatch-

AND

qualcomm wcd9370Match-

Node

qualcomm wcd9380_firmwareMatch-

AND

qualcomm wcd9380Match-

Node

qualcomm wcn3660b_firmwareMatch-

AND

qualcomm wcn3660bMatch-

Node

qualcomm wcn3680b_firmwareMatch-

AND

qualcomm wcn3680bMatch-

Node

qualcomm wcn3950_firmwareMatch-

AND

qualcomm wcn3950Match-

Node

qualcomm wcn3980_firmwareMatch-

AND

qualcomm wcn3980Match-

Node

qualcomm wcn3988_firmwareMatch-

AND

qualcomm wcn3988Match-

Node

qualcomm wsa8810_firmwareMatch-

AND

qualcomm wsa8810Match-

Node

qualcomm wsa8815_firmwareMatch-

AND

qualcomm wsa8815Match-

Node

qualcomm wsa8830_firmwareMatch-

AND

qualcomm wsa8830Match-

Node

qualcomm wsa8835_firmwareMatch-

AND

qualcomm wsa8835Match-

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Compute",
      "Snapdragon Consumer IOT",
      "Snapdragon Industrial IOT",
      "Snapdragon Mobile",
      "Snapdragon Wearables"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "FastConnect 6800"
      },
      {
        "status": "affected",
        "version": "FastConnect 6900"
      },
      {
        "status": "affected",
        "version": "FastConnect 7800"
      },
      {
        "status": "affected",
        "version": "QCA6391"
      },
      {
        "status": "affected",
        "version": "QCA6426"
      },
      {
        "status": "affected",
        "version": "QCA6436"
      },
      {
        "status": "affected",
        "version": "QCN9074"
      },
      {
        "status": "affected",
        "version": "QCS410"
      },
      {
        "status": "affected",
        "version": "QCS610"
      },
      {
        "status": "affected",
        "version": "SD865 5G"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8 Gen 1 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 865 5G Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 865+ 5G Mobile Platform (SM8250-AB)"
      },
      {
        "status": "affected",
        "version": "Snapdragon 870 5G Mobile Platform (SM8250-AC)"
      },
      {
        "status": "affected",
        "version": "Snapdragon X55 5G Modem-RF System"
      },
      {
        "status": "affected",
        "version": "Snapdragon XR2 5G Platform"
      },
      {
        "status": "affected",
        "version": "SW5100"
      },
      {
        "status": "affected",
        "version": "SW5100P"
      },
      {
        "status": "affected",
        "version": "SXR2130"
      },
      {
        "status": "affected",
        "version": "WCD9341"
      },
      {
        "status": "affected",
        "version": "WCD9370"
      },
      {
        "status": "affected",
        "version": "WCD9380"
      },
      {
        "status": "affected",
        "version": "WCN3660B"
      },
      {
        "status": "affected",
        "version": "WCN3680B"
      },
      {
        "status": "affected",
        "version": "WCN3950"
      },
      {
        "status": "affected",
        "version": "WCN3980"
      },
      {
        "status": "affected",
        "version": "WCN3988"
      },
      {
        "status": "affected",
        "version": "WSA8810"
      },
      {
        "status": "affected",
        "version": "WSA8815"
      },
      {
        "status": "affected",
        "version": "WSA8830"
      },
      {
        "status": "affected",
        "version": "WSA8835"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin

21 Nov 2024 07:55Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.4 - 7

EPSS0.00027

SSVC

CWE-367