Lucene search

[email protected]NVD:CVE-2023-21671

HistoryNov 07, 2023 - 6:15 a.m.

CVE-2023-21671

2023-11-0706:15:08

CWE-20

[email protected]

web.nvd.nist.gov

cve-2023-21671

memory corruption

core

syscall

comparison feature

sectools fuse

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Memory Corruption in Core during syscall for Sectools Fuse comparison feature.

Affected configurations

NVD

Node

qualcommfastconnect_6700_firmwareMatch-

AND

qualcommfastconnect_6700Match-

Node

qualcommfastconnect_6900_firmwareMatch-

AND

qualcommfastconnect_6900Match-

Node

qualcommqca6391_firmwareMatch-

AND

qualcommqca6391Match-

Node

qualcommqcm6490_firmwareMatch-

AND

qualcommqcm6490Match-

Node

qualcommqcs6490_firmwareMatch-

AND

qualcommqcs6490Match-

Node

qualcommqsm8350_firmwareMatch-

AND

qualcommqsm8350Match-

Node

qualcommqualcomm_video_collaboration_vc3_platform_firmwareMatch-

AND

qualcommqualcomm_video_collaboration_vc3_platformMatch-

Node

qualcommsd888_firmwareMatch-

AND

qualcommsd888Match-

Node

qualcommsm7315_firmwareMatch-

AND

qualcommsm7315Match-

Node

qualcommsm7325p_firmwareMatch-

AND

qualcommsm7325pMatch-

Node

qualcommsnapdragon_778g_5g_mobile_platform_firmwareMatch-

AND

qualcommsnapdragon_778g_5g_mobile_platformMatch-

Node

qualcommsnapdragon_778g\+_5g_mobile_platform_firmwareMatch-

AND

qualcommsnapdragon_778g\+_5g_mobile_platformMatch-

Node

qualcommsnapdragon_780g_5g_mobile_platform_firmwareMatch-

AND

qualcommsnapdragon_780g_5g_mobile_platformMatch-

Node

qualcommsnapdragon_782g_mobile_platform_firmwareMatch-

AND

qualcommsnapdragon_782g_mobile_platformMatch-

Node

qualcommsnapdragon_7c\+_gen_3_compute_firmwareMatch-

AND

qualcommsnapdragon_7c\+_gen_3_computeMatch-

Node

qualcommsnapdragon_888_5g_mobile_platform_firmwareMatch-

AND

qualcommsnapdragon_888_5g_mobile_platformMatch-

Node

qualcommsnapdragon_888\+_5g_mobile_platform__firmwareMatch-

AND

qualcommsnapdragon_888\+_5g_mobile_platform_Match-

Node

qualcommwcd9370_firmwareMatch-

AND

qualcommwcd9370Match-

Node

qualcommwcd9375_firmwareMatch-

AND

qualcommwcd9375Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcd9385_firmwareMatch-

AND

qualcommwcd9385Match-

Node

qualcommwcn6740_firmwareMatch-

AND

qualcommwcn6740Match-

Node

qualcommwsa8830_firmwareMatch-

AND

qualcommwsa8830Match-

Node

qualcommwsa8835_firmwareMatch-

AND

qualcommwsa8835Match-

References

www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2023-21671

cve1 prion1 cvelist1