CVE-2023-28562
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Memory corruption while handling payloads from remote ESL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Qualcomm, Inc. | Snapdragon | AQT1000 | affected |
| Qualcomm, Inc. | Snapdragon | FastConnect 6200 | affected |
| Qualcomm, Inc. | Snapdragon | FastConnect 6800 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6391 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6420 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6430 | affected |
| Qualcomm, Inc. | Snapdragon | QCN7606 | affected |
| Qualcomm, Inc. | Snapdragon | QCS410 | affected |
| Qualcomm, Inc. | Snapdragon | QCS610 | affected |
| Qualcomm, Inc. | Snapdragon | SC8180X+SDX55 | affected |
| Qualcomm, Inc. | Snapdragon | SD460 | affected |
| Qualcomm, Inc. | Snapdragon | SD662 | affected |
| Qualcomm, Inc. | Snapdragon | SD730 | affected |
| Qualcomm, Inc. | Snapdragon | SD855 | affected |
| Qualcomm, Inc. | Snapdragon | SDX55 | affected |
| Qualcomm, Inc. | Snapdragon | SM4125 | affected |
| Qualcomm, Inc. | Snapdragon | SM6250 | affected |
| Qualcomm, Inc. | Snapdragon | SM6250P | affected |
| Qualcomm, Inc. | Snapdragon | SM7250P | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 460 Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 480 5G Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 480+ 5G Mobile Platform (SM4350-AC) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 662 Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 675 Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 678 Mobile Platform (SM6150-AC) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 690 5G Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 695 5G Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 720G Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 730 Mobile Platform (SM7150-AA) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 730G Mobile Platform (SM7150-AB) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 732G Mobile Platform (SM7150-AC) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 750G 5G Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 765 5G Mobile Platform (SM7250-AA) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 765G 5G Mobile Platform (SM7250-AB) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 768G 5G Mobile Platform (SM7250-AC) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 855 Mobile Platform | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 855+/860 Mobile Platform (SM8150-AC) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 8cx Compute Platform (SC8180X-AA, AB) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon X50 5G Modem-RF System | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon X55 5G Modem-RF System | affected |
| Qualcomm, Inc. | Snapdragon | Vision Intelligence 400 Platform | affected |
| Qualcomm, Inc. | Snapdragon | WCD9326 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9335 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9340 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9341 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9370 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9375 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9380 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9385 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3910 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3950 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3980 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3988 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3990 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8810 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8815 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8830 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8835 | affected |
Weaknesses
- CWE-120: CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.