Lucene search

[email protected]NVD:CVE-2023-33071

HistoryDec 05, 2023 - 3:15 a.m.

CVE-2023-33071

2023-12-0503:15:12

CWE-863

CWE-284

[email protected]

web.nvd.nist.gov

memory corruption

automotive os

untrusted apps

access

hab

graphics

cve-2023-33071

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

9.0%

JSON

Memory corruption in Automotive OS whenever untrusted apps try to access HAb for graphics functionalities.

Affected configurations

Nvd

Node

qualcommqca6574_firmwareMatch-

AND

qualcommqca6574Match-

Node

qualcommqca6574a_firmwareMatch-

AND

qualcommqca6574aMatch-

Node

qualcommqca6574au_firmwareMatch-

AND

qualcommqca6574auMatch-

Node

qualcommqca6595au_firmwareMatch-

AND

qualcommqca6595auMatch-

Node

qualcommsa6145p_firmwareMatch-

AND

qualcommsa6145pMatch-

Node

qualcommsa6150p_firmwareMatch-

AND

qualcommsa6150pMatch-

Node

qualcommsa6155_firmwareMatch-

AND

qualcommsa6155Match-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8145p_firmwareMatch-

AND

qualcommsa8145pMatch-

Node

qualcommsa8150p_firmwareMatch-

AND

qualcommsa8150pMatch-

Node

qualcommsa8155_firmwareMatch-

AND

qualcommsa8155Match-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

VendorProductVersionCPE
qualcommqca6574_firmware-cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*
qualcommqca6574-cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*
qualcommqca6574a_firmware-cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*
qualcommqca6574a-cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*
qualcommqca6574au_firmware-cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
qualcommqca6574au-cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*
qualcommqca6595au_firmware-cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*
qualcommqca6595au-cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*
qualcommsa6145p_firmware-cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
qualcommsa6145p-cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	qca6574_firmware	-	cpe:2.3:o:qualcomm:qca6574_firmware:-:::::::*
qualcomm	qca6574	-	cpe:2.3:h:qualcomm:qca6574:-:::::::*
qualcomm	qca6574a_firmware	-	cpe:2.3:o:qualcomm:qca6574a_firmware:-:::::::*
qualcomm	qca6574a	-	cpe:2.3:h:qualcomm:qca6574a:-:::::::*
qualcomm	qca6574au_firmware	-	cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::*
qualcomm	qca6574au	-	cpe:2.3:h:qualcomm:qca6574au:-:::::::*
qualcomm	qca6595au_firmware	-	cpe:2.3:o:qualcomm:qca6595au_firmware:-:::::::*
qualcomm	qca6595au	-	cpe:2.3:h:qualcomm:qca6595au:-:::::::*
qualcomm	sa6145p_firmware	-	cpe:2.3:o:qualcomm:sa6145p_firmware:-:::::::*
qualcomm	sa6145p	-	cpe:2.3:h:qualcomm:sa6145p:-:::::::*

Rows per page:

1-10 of 261

References

www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2023-33071

cve1 cvelist1 prion1