CVE-2023-21649
08.08.2023, 10:15
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qualcomm | apq8096au_firmware | - |
| qualcomm | aqt1000_firmware | - |
| qualcomm | mdm9628_firmware | - |
| qualcomm | mdm9650_firmware | - |
| qualcomm | qca6390_firmware | - |
| qualcomm | qca6391_firmware | - |
| qualcomm | qca6420_firmware | - |
| qualcomm | qca6421_firmware | - |
| qualcomm | qca6426_firmware | - |
| qualcomm | qca6430_firmware | - |
| qualcomm | qca6431_firmware | - |
| qualcomm | qca6436_firmware | - |
| qualcomm | qca6554a_firmware | - |
| qualcomm | qca6564a_firmware | - |
| qualcomm | qca6564au_firmware | - |
| qualcomm | qca6574_firmware | - |
| qualcomm | qca6574a_firmware | - |
| qualcomm | qca6574au_firmware | - |
| qualcomm | qca6584au_firmware | - |
| qualcomm | qca6595_firmware | - |
| qualcomm | qca6595au_firmware | - |
| qualcomm | qca6696_firmware | - |
| qualcomm | qca8337_firmware | - |
| qualcomm | qcc5100_firmware | - |
| qualcomm | qcn9074_firmware | - |
| qualcomm | qcs410_firmware | - |
| qualcomm | qcs610_firmware | - |
| qualcomm | sa6145p_firmware | - |
| qualcomm | sa6150p_firmware | - |
| qualcomm | sa6155p_firmware | - |
| qualcomm | sa8145p_firmware | - |
| qualcomm | sa8150p_firmware | - |
| qualcomm | sa8155p_firmware | - |
| qualcomm | sa8195p_firmware | - |
| qualcomm | sd480_firmware | - |
| qualcomm | sd695_firmware | - |
| qualcomm | sd855_firmware | - |
| qualcomm | sd865_5g_firmware | - |
| qualcomm | sd870_firmware | - |
| qualcomm | sda429w_firmware | - |
| qualcomm | sdx55_firmware | - |
| qualcomm | sdx55m_firmware | - |
| qualcomm | sdxr2_5g_firmware | - |
| qualcomm | sm4375_firmware | - |
| qualcomm | sw5100_firmware | - |
| qualcomm | sw5100p_firmware | - |
| qualcomm | wcd9341_firmware | - |
| qualcomm | wcd9370_firmware | - |
| qualcomm | wcd9375_firmware | - |
| qualcomm | wcd9380_firmware | - |
| qualcomm | wcd9385_firmware | - |
| qualcomm | wcn3610_firmware | - |
| qualcomm | wcn3660b_firmware | - |
| qualcomm | wcn3680b_firmware | - |
| qualcomm | wcn3950_firmware | - |
| qualcomm | wcn3980_firmware | - |
| qualcomm | wcn3988_firmware | - |
| qualcomm | wcn3991_firmware | - |
| qualcomm | wcn3998_firmware | - |
| qualcomm | wcn6850_firmware | - |
| qualcomm | wcn6851_firmware | - |
| qualcomm | wsa8810_firmware | - |
| qualcomm | wsa8815_firmware | - |
| qualcomm | wsa8830_firmware | - |
| qualcomm | wsa8835_firmware | - |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| qualcomm | apq8096au_firmware | 𝑥 ≤ * | ADP |
| qualcomm | aqt1000_firmware | 𝑥 ≤ * | ADP |
| qualcomm | mdm9628_firmware | 𝑥 ≤ * | ADP |
| qualcomm | mdm9650_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6390_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6391_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6420_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6421_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6426_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6430_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6431_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6436_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6554a_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6564a_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6564au_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6574_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6574a_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6574au_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6584au_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6595_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6595au_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca6696_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qca8337_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qcc5100_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qcn9074_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qcs410_firmware | 𝑥 ≤ * | ADP |
| qualcomm | qcs610_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa6145p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa6150p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa6155p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa8145p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa8150p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa8155p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sa8195p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sd480_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sd695_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sd855_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sd865_5g_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sd870_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sda429w_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sdx55_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sdx55m_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sdxr2_5g_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sm4375_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sw5100_firmware | 𝑥 ≤ * | ADP |
| qualcomm | sw5100p_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcd9341_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcd9370_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcd9375_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcd9380_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcd9385_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3610_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3660b_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3680b_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3950_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3980_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3988_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3991_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn3998_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn6850_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wcn6851_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wsa8810_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wsa8815_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wsa8830_firmware | 𝑥 ≤ * | ADP |
| qualcomm | wsa8835_firmware | 𝑥 ≤ * | ADP |
Common Weakness Enumeration
- CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.