SB2024020551 - Multiple vulnerabilities in Qualcomm chipsets

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2024020551

SB2024020551 - Multiple vulnerabilities in Qualcomm chipsets

Published: February 5, 2024

Security Bulletin ID SB2024020551
Severity
High
Patch available
YES
Number of vulnerabilities 26
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 12% Medium 31% Low 58%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 26 secuirty vulnerabilities.


1) Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-ID: CVE-2023-33046)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Trusted Execution Environment. A local application can execute arbitrary code.


2) Use of Out-of-range Pointer Offset (CVE-ID: CVE-2023-43513)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in PCIe. A local application can execute arbitrary code.


3) Buffer over-read (CVE-ID: CVE-2023-43536)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can perform a denial of service (DoS) attack.


4) Buffer over-read (CVE-ID: CVE-2023-43533)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can perform a denial of service (DoS) attack.


5) Reachable Assertion (CVE-ID: CVE-2023-43523)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can perform a denial of service (DoS) attack.


6) NULL Pointer Dereference (CVE-ID: CVE-2023-43522)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN Firmware. A remote attacker can perform a denial of service (DoS) attack.


7) Improper Access Control (CVE-ID: CVE-2023-43517)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Automotive Multimedia. A local application can execute arbitrary code.


8) Configuration (CVE-ID: CVE-2023-33076)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Core. A local application can read and manipulate data.


9) Buffer over-read (CVE-ID: CVE-2023-33060)

The vulnerability allows a local application to crash the entire system.

The vulnerability exists due to improper input validation in Core. A local application can crash the entire system.


10) Buffer over-read (CVE-ID: CVE-2023-33058)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Modem. A remote attacker can read and manipulate data.


11) Improper input validation (CVE-ID: CVE-2023-33057)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in Multi-Mode Call Processor. A remote attacker can perform a denial of service (DoS) attack.


12) Missing release of memory after effective lifetime (CVE-ID: CVE-2023-33049)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in Multi-Mode Call Processor. A remote attacker can perform a denial of service (DoS) attack.


13) Buffer overflow (CVE-ID: CVE-2023-33077)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to improper input validation in HLOS. A local privileged application can execute arbitrary code.


14) Buffer overflow (CVE-ID: CVE-2023-33072)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Core. A local application can execute arbitrary code.


15) Improper Validation of Array Index (CVE-ID: CVE-2023-43535)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Display. A local application can execute arbitrary code.


16) Untrusted Pointer Dereference (CVE-ID: CVE-2023-43532)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Display. A local application can execute arbitrary code.


17) Buffer overflow (CVE-ID: CVE-2023-43519)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Video. A remote attacker can read and manipulate data.


18) Untrusted Pointer Dereference (CVE-ID: CVE-2023-43518)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Video. A remote attacker can read and manipulate data.


19) Buffer overflow (CVE-ID: CVE-2023-33069)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to improper input validation in Audio. A local privileged application can execute arbitrary code.


20) Buffer overflow (CVE-ID: CVE-2023-33068)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to improper input validation in Audio. A local privileged application can execute arbitrary code.


21) Use of Out-of-range Pointer Offset (CVE-ID: CVE-2023-33067)

The vulnerability allows a local privileged application to execute arbitrary code.

The vulnerability exists due to improper input validation in Audio. A local privileged application can execute arbitrary code.


22) Buffer over-read (CVE-ID: CVE-2023-33065)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Audio. A local application can read and manipulate data.


23) Buffer over-read (CVE-ID: CVE-2023-33064)

The vulnerability allows a local application to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in Audio. A local application can perform a denial of service (DoS) attack.


24) Use of Out-of-range Pointer Offset (CVE-ID: CVE-2023-43534)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in WLAN HOST. A remote attacker can read and manipulate data.


25) Stack-based buffer overflow (CVE-ID: CVE-2023-43520)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in WLAN HOST. A remote attacker can read and manipulate data.


26) Use of Out-of-range Pointer Offset (CVE-ID: CVE-2023-43516)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Video. A local application can execute arbitrary code.


Remediation

Install update from vendor's website.

References