Vulnerabilities > CVE-2023-33067 - Out-of-bounds Write vulnerability in Qualcomm products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

qualcomm

CWE-787

NVD

Published: 2024-02-06

Updated: 2024-04-12

Summary

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm 9206 LTE Modem Firmware - Qualcomm Aqt1000 Firmware - Qualcomm Ar8035 Firmware - Qualcomm C V2X 9150 Firmware - Qualcomm Fastconnect 6200 Firmware - Qualcomm Fastconnect 6700 Firmware - Qualcomm Fastconnect 6800 Firmware - Qualcomm Fastconnect 6900 Firmware - Qualcomm Fastconnect 7800 Firmware - Qualcomm Mdm9628 Firmware - Qualcomm Mdm9650 Firmware - Qualcomm Msm8996Au Firmware - Qualcomm Qam8255P Firmware - Qualcomm Qam8295P Firmware - Qualcomm Qam8650P Firmware - Qualcomm Qam8775P Firmware - Qualcomm Qamsrv1H Firmware - Qualcomm Qamsrv1M Firmware - Qualcomm Qca6310 Firmware - Qualcomm Qca6320 Firmware - Qualcomm Qca6391 Firmware - Qualcomm Qca6420 Firmware - Qualcomm Qca6426 Firmware - Qualcomm Qca6430 Firmware - Qualcomm Qca6436 Firmware - Qualcomm Qca6564A Firmware - Qualcomm Qca6564Au Firmware - Qualcomm Qca6574A Firmware - Qualcomm Qca6574Au Firmware - Qualcomm Qca6584Au Firmware - Qualcomm Qca6696 Firmware - Qualcomm Qca6698Aq Firmware - Qualcomm Qca8081 Firmware - Qualcomm Qca8337 Firmware - Qualcomm Qca9367 Firmware - Qualcomm Qca9377 Firmware - Qualcomm Qcc710 Firmware - Qualcomm Qcn6224 Firmware - Qualcomm Qcn6274 Firmware - Qualcomm Qcn9074 Firmware - Qualcomm Qcs410 Firmware - Qualcomm Qcs610 Firmware - Qualcomm Qfw7114 Firmware - Qualcomm Qfw7124 Firmware - Qualcomm Qualcomm Video Collaboration VC1 Platform Firmware - Qualcomm Qualcomm Video Collaboration VC3 Platform Firmware - Qualcomm Sa6145P Firmware - Qualcomm Sa6150P Firmware - Qualcomm Sa6155P Firmware - Qualcomm Sa8145P Firmware - Qualcomm Sa8150P Firmware - Qualcomm Sa8155P Firmware - Qualcomm Sa8195P Firmware - Qualcomm Sa8255P Firmware - Qualcomm Sa8295P Firmware - Qualcomm Sa8650P Firmware - Qualcomm Sa8770P Firmware - Qualcomm Sa8775P Firmware - Qualcomm Sa9000P Firmware - Qualcomm Sd835 Firmware - Qualcomm Sd855 Firmware - Qualcomm Sd865 5G Firmware - Qualcomm Sd888 Firmware - Qualcomm Sdm429W Firmware - Qualcomm Sm7315 Firmware - Qualcomm Sm7325P Firmware - Qualcomm Smart Audio 200 Platform Firmware - Qualcomm Snapdragon 1200 Wearable Platform Firmware - Qualcomm Snapdragon 429 Mobile Platform Firmware - Qualcomm Snapdragon 778G 5G Mobile Platform Firmware - Qualcomm Snapdragon 778G+ 5G Mobile Platform Firmware - Qualcomm Snapdragon 780G 5G Mobile Platform Firmware - Qualcomm Snapdragon 782G Mobile Platform Firmware - Qualcomm Snapdragon 7C+ GEN 3 Compute Firmware - Qualcomm Snapdragon 820 Automotive Platform Firmware - Qualcomm Snapdragon 835 Mobile PC Platform Firmware - Qualcomm Snapdragon 855 Mobile Platform Firmware - Qualcomm Snapdragon 855+/860 Mobile Platform Firmware - Qualcomm Snapdragon 865 5G Mobile Platform Firmware - Qualcomm Snapdragon 865+ 5G Mobile Platform Firmware - Qualcomm Snapdragon 870 5G Mobile Platform Firmware - Qualcomm Snapdragon 888 5G Mobile Platform Firmware - Qualcomm Snapdragon 888+ 5G Mobile Platform Firmware - Qualcomm Snapdragon Auto 5G Modem RF GEN 2 Firmware - Qualcomm Snapdragon Wear 4100+ Platform Firmware - Qualcomm Snapdragon X5 LTE Modem Firmware - Qualcomm Snapdragon X55 5G Modem RF System Firmware - Qualcomm Snapdragon X75 5G Modem RF System Firmware - Qualcomm Snapdragon XR2 5G Platform Firmware - Qualcomm Srv1H Firmware - Qualcomm Srv1M Firmware - Qualcomm Sxr2130 Firmware - Qualcomm Wcd9326 Firmware - Qualcomm Wcd9330 Firmware - Qualcomm Wcd9335 Firmware - Qualcomm Wcd9340 Firmware - Qualcomm Wcd9341 Firmware - Qualcomm Wcd9370 Firmware - Qualcomm Wcd9375 Firmware - Qualcomm Wcd9380 Firmware - Qualcomm Wcd9385 Firmware - Qualcomm Wcn3610 Firmware - Qualcomm Wcn3620 Firmware - Qualcomm Wcn3660B Firmware - Qualcomm Wcn3680B Firmware - Qualcomm Wcn3950 Firmware - Qualcomm Wcn3980 Firmware - Qualcomm Wcn3990 Firmware - Qualcomm Wcn6740 Firmware - Qualcomm Wsa8810 Firmware - Qualcomm Wsa8815 Firmware - Qualcomm Wsa8830 Firmware - Qualcomm Wsa8835 Firmware -	113
Hardware	Qualcomm Qualcomm 9206 LTE Modem - Qualcomm Aqt1000 - Qualcomm Ar8035 - Qualcomm C V2X 9150 - Qualcomm Fastconnect 6200 - Qualcomm Fastconnect 6700 - Qualcomm Fastconnect 6800 - Qualcomm Fastconnect 6900 - Qualcomm Fastconnect 7800 - Qualcomm Mdm9628 - Qualcomm Mdm9650 - Qualcomm Msm8996Au - Qualcomm Qam8255P - Qualcomm Qam8295P - Qualcomm Qam8650P - Qualcomm Qam8775P - Qualcomm Qamsrv1H - Qualcomm Qamsrv1M - Qualcomm Qca6310 - Qualcomm Qca6320 - Qualcomm Qca6391 - Qualcomm Qca6420 - Qualcomm Qca6426 - Qualcomm Qca6430 - Qualcomm Qca6436 - Qualcomm Qca6564A - Qualcomm Qca6564Au - Qualcomm Qca6574A - Qualcomm Qca6574Au - Qualcomm Qca6584Au - Qualcomm Qca6696 - Qualcomm Qca6698Aq - Qualcomm Qca8081 - Qualcomm Qca8337 - Qualcomm Qca9367 - Qualcomm Qca9377 - Qualcomm Qcc710 - Qualcomm Qcn6224 - Qualcomm Qcn6274 - Qualcomm Qcn9074 - Qualcomm Qcs410 - Qualcomm Qcs610 - Qualcomm Qfw7114 - Qualcomm Qfw7124 - Qualcomm Qualcomm Video Collaboration VC1 Platform - Qualcomm Qualcomm Video Collaboration VC3 Platform - Qualcomm Sa6145P - Qualcomm Sa6150P - Qualcomm Sa6155P - Qualcomm Sa8145P - Qualcomm Sa8150P - Qualcomm Sa8155P - Qualcomm Sa8195P - Qualcomm Sa8255P - Qualcomm Sa8295P - Qualcomm Sa8650P - Qualcomm Sa8770P - Qualcomm Sa8775P - Qualcomm Sa9000P - Qualcomm Sd835 - Qualcomm Sd855 - Qualcomm Sd865 5G - Qualcomm Sd888 - Qualcomm Sdm429W - Qualcomm Sm7315 - Qualcomm Sm7325P - Qualcomm Smart Audio 200 Platform - Qualcomm Snapdragon 1200 Wearable Platform - Qualcomm Snapdragon 429 Mobile Platform - Qualcomm Snapdragon 778G 5G Mobile Platform - Qualcomm Snapdragon 778G+ 5G Mobile Platform - Qualcomm Snapdragon 780G 5G Mobile Platform - Qualcomm Snapdragon 782G Mobile Platform - Qualcomm Snapdragon 7C+ GEN 3 Compute - Qualcomm Snapdragon 820 Automotive Platform - Qualcomm Snapdragon 835 Mobile PC Platform - Qualcomm Snapdragon 855 Mobile Platform - Qualcomm Snapdragon 855+/860 Mobile Platform - Qualcomm Snapdragon 865 5G Mobile Platform - Qualcomm Snapdragon 865+ 5G Mobile Platform - Qualcomm Snapdragon 870 5G Mobile Platform - Qualcomm Snapdragon 888 5G Mobile Platform - Qualcomm Snapdragon 888+ 5G Mobile Platform - Qualcomm Snapdragon Auto 5G Modem RF GEN 2 - Qualcomm Snapdragon Wear 4100+ Platform - Qualcomm Snapdragon X5 LTE Modem - Qualcomm Snapdragon X55 5G Modem RF System - Qualcomm Snapdragon X75 5G Modem RF System - Qualcomm Snapdragon XR2 5G Platform - Qualcomm Srv1H - Qualcomm Srv1M - Qualcomm Sxr2130 - Qualcomm Wcd9326 - Qualcomm Wcd9330 - Qualcomm Wcd9335 - Qualcomm Wcd9340 - Qualcomm Wcd9341 - Qualcomm Wcd9370 - Qualcomm Wcd9375 - Qualcomm Wcd9380 - Qualcomm Wcd9385 - Qualcomm Wcn3610 - Qualcomm Wcn3620 - Qualcomm Wcn3660B - Qualcomm Wcn3680B - Qualcomm Wcn3950 - Qualcomm Wcn3980 - Qualcomm Wcn3990 - Qualcomm Wcn6740 - Qualcomm Wsa8810 - Qualcomm Wsa8815 - Qualcomm Wsa8830 - Qualcomm Wsa8835 -	113

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin