Lucene search

[email protected]NVD:CVE-2023-21644

HistorySep 05, 2023 - 7:15 a.m.

CVE-2023-21644

2023-09-0507:15:12

CWE-680

CWE-190

[email protected]

web.nvd.nist.gov

memory corruption

ril

integer overflow

qcril_uim_request_apdu

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.

Affected configurations

NVD

Node

qualcommaqt1000_firmwareMatch-

AND

qualcommaqt1000Match-

Node

qualcommqca6390_firmwareMatch-

AND

qualcommqca6390Match-

Node

qualcommqca6391_firmwareMatch-

AND

qualcommqca6391Match-

Node

qualcommqca6420_firmwareMatch-

AND

qualcommqca6420Match-

Node

qualcommqca6426_firmwareMatch-

AND

qualcommqca6426Match-

Node

qualcommqca6430_firmwareMatch-

AND

qualcommqca6430Match-

Node

qualcommqca6436Match-

AND

qualcommqca6436_firmwareMatch-

Node

qualcommqca6574aMatch-

AND

qualcommqca6574a_firmwareMatch-

Node

qualcommqca6574auMatch-

AND

qualcommqca6574au_firmwareMatch-

Node

qualcommqca6595auMatch-

AND

qualcommqca6595au_firmwareMatch-

Node

qualcommqca6696Match-

AND

qualcommqca6696_firmwareMatch-

Node

qualcommqcc5100Match-

AND

qualcommqcc5100_firmwareMatch-

Node

qualcommsa515mMatch-

AND

qualcommsa515m_firmwareMatch-

Node

qualcommsa6145pMatch-

AND

qualcommsa6145p_firmwareMatch-

Node

qualcommsa6150pMatch-

AND

qualcommsa6150p_firmwareMatch-

Node

qualcommsa6155pMatch-

AND

qualcommsa6155p_firmwareMatch-

Node

qualcommsa8145pMatch-

AND

qualcommsa8145p_firmwareMatch-

Node

qualcommsa8150pMatch-

AND

qualcommsa8150p_firmwareMatch-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

Node

qualcommsd480_firmwareMatch-

AND

qualcommsd480Match-

Node

qualcommsd695_firmwareMatch-

AND

qualcommsd695Match-

Node

qualcommsd855_firmwareMatch-

AND

qualcommsd855Match-

Node

qualcommsd865_5g_firmwareMatch-

AND

qualcommsd865_5gMatch-

Node

qualcommsd870_firmwareMatch-

AND

qualcommsd870Match-

Node

qualcommsda429w_firmwareMatch-

AND

qualcommsda429wMatch-

Node

qualcommsdx55_firmwareMatch-

AND

qualcommsdx55Match-

Node

qualcommsdx55m_firmwareMatch-

AND

qualcommsdx55mMatch-

Node

qualcommsdxr2_5g_firmwareMatch-

AND

qualcommsdxr2_5gMatch-

Node

qualcommsm4375_firmwareMatch-

AND

qualcommsm4375Match-

Node

qualcommsw5100_firmwareMatch-

AND

qualcommsw5100Match-

Node

qualcommsw5100p_firmwareMatch-

AND

qualcommsw5100pMatch-

Node

qualcommwcd9341_firmwareMatch-

AND

qualcommwcd9341Match-

Node

qualcommwcd9360_firmwareMatch-

AND

qualcommwcd9360Match-

Node

qualcommwcd9370_firmwareMatch-

AND

qualcommwcd9370Match-

Node

qualcommwcd9375_firmwareMatch-

AND

qualcommwcd9375Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcd9385_firmwareMatch-

AND

qualcommwcd9385Match-

Node

qualcommwcn3610_firmwareMatch-

AND

qualcommwcn3610Match-

Node

qualcommwcn3660b_firmwareMatch-

AND

qualcommwcn3660bMatch-

Node

qualcommwcn3680b_firmwareMatch-

AND

qualcommwcn3680bMatch-

Node

qualcommwcn3980_firmwareMatch-

AND

qualcommwcn3980Match-

Node

qualcommwcn3988_firmwareMatch-

AND

qualcommwcn3988Match-

Node

qualcommwcn3991_firmwareMatch-

AND

qualcommwcn3991Match-

Node

qualcommwcn3998_firmwareMatch-

AND

qualcommwcn3998Match-

Node

qualcommwcn6850_firmwareMatch-

AND

qualcommwcn6850Match-

Node

qualcommwcn6851_firmwareMatch-

AND

qualcommwcn6851Match-

Node

qualcommwsa8810_firmwareMatch-

AND

qualcommwsa8810Match-

Node

qualcommwsa8815_firmwareMatch-

AND

qualcommwsa8815Match-

Node

qualcommwsa8830_firmwareMatch-

AND

qualcommwsa8830Match-

Node

qualcommwsa8835_firmwareMatch-

AND

qualcommwsa8835Match-

References

www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2023-21644

cve1 cvelist1 prion1