Lucene search

K
cve[email protected]CVE-2023-33108
HistoryJan 02, 2024 - 6:15 a.m.

CVE-2023-33108

2024-01-0206:15:11
CWE-416
web.nvd.nist.gov
33
cve-2023-33108
memory corruption
graphics driver
kgsl_gpu_aux_command_timeline
nvd

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Memory corruption in Graphics Driver when destroying a context with KGSL_GPU_AUX_COMMAND_TIMELINE objects queued.

Affected configurations

NVD
Node
qualcommqam8255p_firmwareMatch-
AND
qualcommqam8255pMatch-
Node
qualcommqam8295p_firmwareMatch-
AND
qualcommqam8295pMatch-
Node
qualcommqam8650p_firmwareMatch-
AND
qualcommqam8650pMatch-
Node
qualcommqam8775p_firmwareMatch-
AND
qualcommqam8775pMatch-
Node
qualcommqca6391Match-
AND
qualcommqca6391_firmwareMatch-
Node
qualcommqca6574Match-
AND
qualcommqca6574_firmwareMatch-
Node
qualcommqca6574aMatch-
AND
qualcommqca6574a_firmwareMatch-
Node
qualcommqca6574auMatch-
AND
qualcommqca6574au_firmwareMatch-
Node
qualcommqca6595Match-
AND
qualcommqca6595_firmwareMatch-
Node
qualcommqca6595auMatch-
AND
qualcommqca6595au_firmwareMatch-
Node
qualcommqca6696Match-
AND
qualcommqca6696_firmwareMatch-
Node
qualcommqca6698aqMatch-
AND
qualcommqca6698aq_firmwareMatch-
Node
qualcommqca6797aq_firmwareMatch-
AND
qualcommqca6797aqMatch-
Node
qualcommqcs7230_firmwareMatch-
AND
qualcommqcs7230Match-
Node
qualcommqcs8250_firmwareMatch-
AND
qualcommqcs8250Match-
Node
qualcommqualcomm_video_collaboration_vc5_platform_firmwareMatch-
AND
qualcommqualcomm_video_collaboration_vc5_platformMatch-
Node
qualcommsa6155p_firmwareMatch-
AND
qualcommsa6155pMatch-
Node
qualcommsa8155p_firmwareMatch-
AND
qualcommsa8155pMatch-
Node
qualcommsa8195p_firmwareMatch-
AND
qualcommsa8195pMatch-
Node
qualcommsa8255p_firmwareMatch-
AND
qualcommsa8255pMatch-
Node
qualcommsa8295p_firmwareMatch-
AND
qualcommsa8295pMatch-
Node
qualcommsnapdragon_w5\+_gen_1_wearable_platform_firmwareMatch-
AND
qualcommsnapdragon_w5\+_gen_1_wearable_platformMatch-
Node
qualcommsw5100_firmwareMatch-
AND
qualcommsw5100Match-
Node
qualcommsw5100p_firmwareMatch-
AND
qualcommsw5100pMatch-
Node
qualcommwsa8830_firmwareMatch-
AND
qualcommwsa8830Match-
Node
qualcommwsa8835_firmwareMatch-
AND
qualcommwsa8835Match-

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Auto",
      "Snapdragon Consumer IOT",
      "Snapdragon Wearables"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "QAM8255P"
      },
      {
        "status": "affected",
        "version": "QAM8295P"
      },
      {
        "status": "affected",
        "version": "QAM8650P"
      },
      {
        "status": "affected",
        "version": "QAM8775P"
      },
      {
        "status": "affected",
        "version": "QCA6391"
      },
      {
        "status": "affected",
        "version": "QCA6574"
      },
      {
        "status": "affected",
        "version": "QCA6574A"
      },
      {
        "status": "affected",
        "version": "QCA6574AU"
      },
      {
        "status": "affected",
        "version": "QCA6595"
      },
      {
        "status": "affected",
        "version": "QCA6595AU"
      },
      {
        "status": "affected",
        "version": "QCA6696"
      },
      {
        "status": "affected",
        "version": "QCA6698AQ"
      },
      {
        "status": "affected",
        "version": "QCA6797AQ"
      },
      {
        "status": "affected",
        "version": "QCS7230"
      },
      {
        "status": "affected",
        "version": "QCS8250"
      },
      {
        "status": "affected",
        "version": "Qualcomm Video Collaboration VC5 Platform"
      },
      {
        "status": "affected",
        "version": "SA6155P"
      },
      {
        "status": "affected",
        "version": "SA8155P"
      },
      {
        "status": "affected",
        "version": "SA8195P"
      },
      {
        "status": "affected",
        "version": "SA8255P"
      },
      {
        "status": "affected",
        "version": "SA8295P"
      },
      {
        "status": "affected",
        "version": "Snapdragon W5+ Gen 1 Wearable Platform"
      },
      {
        "status": "affected",
        "version": "SW5100"
      },
      {
        "status": "affected",
        "version": "SW5100P"
      },
      {
        "status": "affected",
        "version": "WSA8830"
      },
      {
        "status": "affected",
        "version": "WSA8835"
      }
    ]
  }
]

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Related for CVE-2023-33108