CVE-2023-21627 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
qualcomm	CNA	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 7%

Vendor	Product	Version
qualcomm	aqt1000_firmware	-
qualcomm	qca6390_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qca6420_firmware	-
qualcomm	qca6426_firmware	-
qualcomm	qca6430_firmware	-
qualcomm	qca6436_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qcc5100_firmware	-
qualcomm	qcs8155_firmware	-
qualcomm	sa6145p_firmware	-
qualcomm	sa6150p_firmware	-
qualcomm	sa6155p_firmware	-
qualcomm	sa8145p_firmware	-
qualcomm	sa8150p_firmware	-
qualcomm	sa8155p_firmware	-
qualcomm	sa8195p_firmware	-
qualcomm	sd_8_gen1_5g_firmware	-
qualcomm	sd855_firmware	-
qualcomm	sd865_5g_firmware	-
qualcomm	sd870_firmware	-
qualcomm	sd888_5g_firmware	-
qualcomm	sda429w_firmware	-
qualcomm	sdx55m_firmware	-
qualcomm	sdxr2_5g_firmware	-
qualcomm	sw5100_firmware	-
qualcomm	sw5100p_firmware	-
qualcomm	wcd9341_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcn3610_firmware	-
qualcomm	wcn3660b_firmware	-
qualcomm	wcn3680b_firmware	-
qualcomm	wcn3980_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn3998_firmware	-
qualcomm	wcn6850_firmware	-
qualcomm	wcn6851_firmware	-
qualcomm	wcn6855_firmware	-
qualcomm	wcn6856_firmware	-
qualcomm	wcn7850_firmware	-
qualcomm	wcn7851_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8835_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
CWE-704 - Incorrect Type Conversion or Cast
The software does not correctly convert an object, resource, or structure from one type to a different type.

References

https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin

https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin