SB2023100254 - Multiple vulnerabilities in Qualcomm chipsets
Published: October 2, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 22 secuirty vulnerabilities.
1) Improper Access Control (CVE-ID: CVE-2023-24844)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Core. A local application can execute arbitrary code.
2) Use After Free (CVE-ID: CVE-2023-33029)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in DSP Service. A local application can execute arbitrary code.
3) Use After Free (CVE-ID: CVE-2023-33039)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Automotive Display. A local application can execute arbitrary code.
4) Buffer over-read (CVE-ID: CVE-2023-33027)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can perform a denial of service (DoS) attack.
5) Buffer over-read (CVE-ID: CVE-2023-33026)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can perform a denial of service (DoS) attack.
6) Memory corruption (CVE-ID: CVE-2023-24853)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in HLOS. A local application can execute arbitrary code.
7) Improper Validation of Array Index (CVE-ID: CVE-2023-24850)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in HLOS. A local application can execute arbitrary code.
8) Buffer over-read (CVE-ID: CVE-2023-24849)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Modem. A remote attacker can read and manipulate data.
9) Buffer over-read (CVE-ID: CVE-2023-24848)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Modem. A remote attacker can read and manipulate data.
10) NULL Pointer Dereference (CVE-ID: CVE-2023-24847)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in Modem. A remote attacker can perform a denial of service (DoS) attack.
11) Reachable Assertion (CVE-ID: CVE-2023-24843)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in Modem. A remote attacker can perform a denial of service (DoS) attack.
12) Improper input validation (CVE-ID: CVE-2023-22382)
The vulnerability allows a local application to compromise the affected device.
The vulnerability exists due to improper input validation in Automotive. A local application can compromise the affected device.
13) Buffer over-read (CVE-ID: CVE-2023-22385)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Modem. A remote attacker can read and manipulate data.
14) Improper Access Control (CVE-ID: CVE-2023-21673)
The vulnerability allows a local application to escalate privileges on the device.
The vulnerability exists due to improper input validation in Kernel. A local application can escalate privileges on the device.
15) Stack-based buffer overflow (CVE-ID: CVE-2023-33028)
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can execute arbitrary code.
16) Improper Authentication (CVE-ID: CVE-2023-28540)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Modem. A remote attacker can read and manipulate data.
17) Use of Out-of-range Pointer Offset (CVE-ID: CVE-2023-24855)
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to improper input validation in Modem. A remote attacker can execute arbitrary code.
18) Buffer over-read (CVE-ID: CVE-2023-28571)
The vulnerability allows a local application to read and manipulate data.
The vulnerability exists due to improper input validation in WLAN HOST. A local application can read and manipulate data.
19) Buffer overflow (CVE-ID: CVE-2023-22384)
The vulnerability allows a local privileged application to execute arbitrary code.
The vulnerability exists due to improper input validation in VR Service. A local privileged application can execute arbitrary code.
20) Buffer overflow (CVE-ID: CVE-2023-28539)
The vulnerability allows a local application to read and manipulate data.
The vulnerability exists due to improper input validation in WLAN Host. A local application can read and manipulate data.
21) Buffer overflow (CVE-ID: CVE-2023-33035)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Audio. A local application can execute arbitrary code.
22) Signed to Unsigned Conversion Error (CVE-ID: CVE-2023-33034)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Audio. A local application can execute arbitrary code.
Remediation
Install update from vendor's website.