CVE-2023-21625

Information disclosure in Network Services due to buffer over-read while the device receives DNS response.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.2 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
qualcommCNA
8.2 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
VendorProductVersion
qualcommapq8009_firmware
-
qualcommapq8017_firmware
-
qualcommapq8037_firmware
-
qualcommar8031_firmware
-
qualcommcsra6620_firmware
-
qualcommcsra6640_firmware
-
qualcommmdm9205_firmware
-
qualcommmdm9250_firmware
-
qualcommmdm9650_firmware
-
qualcommmsm8108_firmware
-
qualcommmsm8208_firmware
-
qualcommmsm8209_firmware
-
qualcommmsm8608_firmware
-
qualcommmsm8917_firmware
-
qualcommmsm8937_firmware
-
qualcommqca4004_firmware
-
qualcommqca4010_firmware
-
qualcommqca4020_firmware
-
qualcommqca4024_firmware
-
qualcommqca6174a_firmware
-
qualcommqca6564a_firmware
-
qualcommqca6564au_firmware
-
qualcommqca6574a_firmware
-
qualcommqca6574au_firmware
-
qualcommqca9377_firmware
-
qualcommqcs405_firmware
-
qualcommqts110_firmware
-
qualcommsd205_firmware
-
qualcommsd210_firmware
-
qualcommsd429_firmware
-
qualcommsd439_firmware
-
qualcommsd835_firmware
-
qualcommwcd9306_firmware
-
qualcommwcd9326_firmware
-
qualcommwcd9335_firmware
-
qualcommwcd9340_firmware
-
qualcommwcn3610_firmware
-
qualcommwcn3615_firmware
-
qualcommwcn3660b_firmware
-
qualcommwcn3680b_firmware
-
qualcommwcn3980_firmware
-
qualcommwcn3990_firmware
-
qualcommwcn3998_firmware
-
qualcommwcn3999_firmware
-
qualcommwsa8810_firmware
-
qualcommwsa8815_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin
https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin