CVE-2023-24855 Use of Out-of-range Pointer Offset in Modem

🗓️ 03 Oct 2023 05:00:34Reported by qualcommType

Memory corruption in Modem due to out-of-range pointer offse

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of embedded Qualcomm microprogramming software, related to the pointer shifting beyond the allocated memory space, allows a hacker to execute arbitrary code.	11 Oct 202300:00	–	bdu_fstec
Circl	CVE-2023-24855	3 Oct 202312:41	–	circl
CNNVD	Qualcomm Chip Buffer Error Vulnerability	3 Oct 202300:00	–	cnnvd
CVE	CVE-2023-24855	3 Oct 202305:00	–	cve
EUVD	EUVD-2023-28845	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Google Android and Samsung Mobile	5 Oct 202300:00	–	ncsc
NVD	CVE-2023-24855	3 Oct 202306:15	–	nvd
Prion	Memory corruption	3 Oct 202306:15	–	prion
Positive Technologies	PT-2023-5876 · Qualcomm · Qualcomm	2 Oct 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-24855	23 May 202501:56	–	redhatcve

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Auto",
      "Snapdragon Compute",
      "Snapdragon Consumer IOT",
      "Snapdragon Industrial IOT",
      "Snapdragon Mobile"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "AR8035"
      },
      {
        "status": "affected",
        "version": "FastConnect 6200"
      },
      {
        "status": "affected",
        "version": "FastConnect 6700"
      },
      {
        "status": "affected",
        "version": "FastConnect 6900"
      },
      {
        "status": "affected",
        "version": "FastConnect 7800"
      },
      {
        "status": "affected",
        "version": "QCA6391"
      },
      {
        "status": "affected",
        "version": "QCA8081"
      },
      {
        "status": "affected",
        "version": "QCA8337"
      },
      {
        "status": "affected",
        "version": "QCC710"
      },
      {
        "status": "affected",
        "version": "QCM4490"
      },
      {
        "status": "affected",
        "version": "QCM6490"
      },
      {
        "status": "affected",
        "version": "QCM8550"
      },
      {
        "status": "affected",
        "version": "QCN6024"
      },
      {
        "status": "affected",
        "version": "QCN6224"
      },
      {
        "status": "affected",
        "version": "QCN6274"
      },
      {
        "status": "affected",
        "version": "QCN9024"
      },
      {
        "status": "affected",
        "version": "QCS4490"
      },
      {
        "status": "affected",
        "version": "QCS6490"
      },
      {
        "status": "affected",
        "version": "QCS8550"
      },
      {
        "status": "affected",
        "version": "QFW7114"
      },
      {
        "status": "affected",
        "version": "QFW7124"
      },
      {
        "status": "affected",
        "version": "Qualcomm Video Collaboration VC3 Platform"
      },
      {
        "status": "affected",
        "version": "SDX57M"
      },
      {
        "status": "affected",
        "version": "SG8275P"
      },
      {
        "status": "affected",
        "version": "SM7325P"
      },
      {
        "status": "affected",
        "version": "SM8550P"
      },
      {
        "status": "affected",
        "version": "Snapdragon 4 Gen 1 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 4 Gen 2 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 480 5G Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 480+ 5G Mobile Platform (SM4350-AC)"
      },
      {
        "status": "affected",
        "version": "Snapdragon 695 5G Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 778G 5G Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)"
      },
      {
        "status": "affected",
        "version": "Snapdragon 780G 5G Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 782G Mobile Platform (SM7325-AF)"
      },
      {
        "status": "affected",
        "version": "Snapdragon 7c+ Gen 3 Compute"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8 Gen 1 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8 Gen 2 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8+ Gen 1 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8+ Gen 2 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 888 5G Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 888+ 5G Mobile Platform (SM8350-AC)"
      },
      {
        "status": "affected",
        "version": "Snapdragon X65 5G Modem-RF System"
      },
      {
        "status": "affected",
        "version": "Snapdragon X70 Modem-RF System"
      },
      {
        "status": "affected",
        "version": "Snapdragon X75 5G Modem-RF System"
      },
      {
        "status": "affected",
        "version": "WCD9340"
      },
      {
        "status": "affected",
        "version": "WCD9370"
      },
      {
        "status": "affected",
        "version": "WCD9375"
      },
      {
        "status": "affected",
        "version": "WCD9380"
      },
      {
        "status": "affected",
        "version": "WCD9385"
      },
      {
        "status": "affected",
        "version": "WCD9390"
      },
      {
        "status": "affected",
        "version": "WCD9395"
      },
      {
        "status": "affected",
        "version": "WCN3950"
      },
      {
        "status": "affected",
        "version": "WCN3988"
      },
      {
        "status": "affected",
        "version": "WCN6740"
      },
      {
        "status": "affected",
        "version": "WSA8810"
      },
      {
        "status": "affected",
        "version": "WSA8815"
      },
      {
        "status": "affected",
        "version": "WSA8830"
      },
      {
        "status": "affected",
        "version": "WSA8832"
      },
      {
        "status": "affected",
        "version": "WSA8835"
      },
      {
        "status": "affected",
        "version": "WSA8840"
      },
      {
        "status": "affected",
        "version": "WSA8845"
      },
      {
        "status": "affected",
        "version": "WSA8845H"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin

12 Apr 2024 16:20Current

9.8High risk

Vulners AI Score9.8

CVSS 3.19.8

EPSS0.00538

CWE-823