CVE-2023-33032 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.3 CRITICAL	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
qualcomm	CNA	9.3 CRITICAL	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 18%

Vendor	Product	Version
qualcomm	9205_lte_modem_firmware	-
qualcomm	aqt1000_firmware	-
qualcomm	ar8031_firmware	-
qualcomm	c-v2x_9150_firmware	-
qualcomm	csr8811_firmware	-
qualcomm	csra6620_firmware	-
qualcomm	csra6640_firmware	-
qualcomm	csrb31024_firmware	-
qualcomm	fastconnect_6200_firmware	-
qualcomm	fastconnect_6800_firmware	-
qualcomm	fsm10056_firmware	-
qualcomm	ipq6000_firmware	-
qualcomm	ipq6005_firmware	-
qualcomm	ipq6010_firmware	-
qualcomm	ipq6018_firmware	-
qualcomm	ipq6028_firmware	-
qualcomm	ipq9008_firmware	-
qualcomm	ipq9574_firmware	-
qualcomm	qca4004_firmware	-
qualcomm	qca4024_firmware	-
qualcomm	qca6174a_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qca6420_firmware	-
qualcomm	qca6430_firmware	-
qualcomm	qca6564_firmware	-
qualcomm	qca6564a_firmware	-
qualcomm	qca6564au_firmware	-
qualcomm	qca6574_firmware	-
qualcomm	qca6574a_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6595_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qca8072_firmware	-
qualcomm	qca8075_firmware	-
qualcomm	qca8081_firmware	-
qualcomm	qca8082_firmware	-
qualcomm	qca8084_firmware	-
qualcomm	qca8085_firmware	-
qualcomm	qca8386_firmware	-
qualcomm	qca9377_firmware	-
qualcomm	qcm6125_firmware	-
qualcomm	qcn5021_firmware	-
qualcomm	qcn5022_firmware	-
qualcomm	qcn5052_firmware	-
qualcomm	qcn5121_firmware	-
qualcomm	qcn5122_firmware	-
qualcomm	qcn5152_firmware	-
qualcomm	qcn6023_firmware	-
qualcomm	qcn6024_firmware	-
qualcomm	qcn9000_firmware	-
qualcomm	qcn9022_firmware	-
qualcomm	qcn9024_firmware	-
qualcomm	qcn9070_firmware	-
qualcomm	qcn9072_firmware	-
qualcomm	qcn9074_firmware	-
qualcomm	qcn9274_firmware	-
qualcomm	qcs410_firmware	-
qualcomm	qcs610_firmware	-
qualcomm	qcs6125_firmware	-
qualcomm	qcs8155_firmware	-
qualcomm	qts110_firmware	-
qualcomm	sa4150p_firmware	-
qualcomm	sa4155p_firmware	-
qualcomm	sa6145p_firmware	-
qualcomm	sa6150p_firmware	-
qualcomm	sa6155_firmware	-
qualcomm	sa6155p_firmware	-
qualcomm	sa8145p_firmware	-
qualcomm	sa8150p_firmware	-
qualcomm	sa8155_firmware	-
qualcomm	sa8155p_firmware	-
qualcomm	sa8195p_firmware	-
qualcomm	sc8180x\+sdx55_firmware	-
qualcomm	sd_675_firmware	-
qualcomm	sd675_firmware	-
qualcomm	sd730_firmware	-
qualcomm	sd855_firmware	-
qualcomm	sdx55_firmware	-
qualcomm	sm6250_firmware	-
qualcomm	sm6250p_firmware	-
qualcomm	smart_audio_400_platform_firmware	-
qualcomm	snapdragon_665_mobile_platform_firmware	-
qualcomm	snapdragon_675_mobile_platform_firmware	-
qualcomm	snapdragon_678_mobile_platform_firmware	-
qualcomm	snapdragon_720g_mobile_platform_firmware	-
qualcomm	snapdragon_730_mobile_platform_firmware	-
qualcomm	snapdragon_730g_mobile_platform_firmware	-
qualcomm	snapdragon_732g_mobile_platform_firmware	-
qualcomm	snapdragon_7c_compute_platform_firmware	-
qualcomm	snapdragon_7c_gen_2_compute_platform_firmware	-
qualcomm	snapdragon_855_mobile_platform_firmware	-
qualcomm	snapdragon_855\+\/860_mobile_platform_firmware	-
qualcomm	snapdragon_8c_compute_platform_firmware	-
qualcomm	snapdragon_8c_compute_platform_firmware	-
qualcomm	snapdragon_8cx_compute_platform_firmware	-
qualcomm	snapdragon_8cx_compute_platform_firmware	-
qualcomm	snapdragon_8cx_gen_2_5g_compute_platform_firmware	-
qualcomm	snapdragon_8cx_gen_2_5g_compute_platform_firmware	-
qualcomm	snapdragon_auto_5g_modem-rf_firmware	-
qualcomm	snapdragon_wear_1300_platform_firmware	-
qualcomm	snapdragon_x24_lte_modem_firmware	-
qualcomm	snapdragon_x50_5g_modem-rf_system_firmware	-
qualcomm	snapdragon_x55_5g_modem-rf_system_firmware	-
qualcomm	snapdragon_auto_4g_modem_firmware	-
qualcomm	wcd9306_firmware	-
qualcomm	wcd9335_firmware	-
qualcomm	wcd9340_firmware	-
qualcomm	wcd9341_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9371_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcn3950_firmware	-
qualcomm	wcn3980_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn3990_firmware	-
qualcomm	wcn3999_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-190 - Integer Overflow or Wraparound
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
CWE-787 - Out-of-bounds Write
The software writes data past the end, or before the beginning, of the intended buffer.

References

https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin