CVE-2023-33106

CVE Published 2023-12-05
Related CWE(s) CWE-416: Use After Free, CWE-823: Use of Out-of-range Pointer Offset, CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
Related Vendor(s) qualcomm
Related Product(s) sd660_firmware, qca6574a_firmware, wcn3980_firmware, flight_rb5_5g_platform_firmware, qca6797aq_firmware, qcs7230_firmware, sm7250p_firmware, wcd9380_firmware, snapdragon_888\+_5g_mobile_platform_firmware, snapdragon_685_4g_mobile_platform_firmware, wcn3660b_firmware, wcd9370_firmware, sd888_firmware, qcs4290_firmware, sw5100p_firmware, wsa8815_firmware, sa8195p_firmware, sm7325p_firmware, snapdragon_8\+_gen_1_mobile_platform_firmware, qca8081_firmware, qcs410_firmware, wcn3615_firmware, qcs8250_firmware, snapdragon_4_gen_1_mobile_platform_firmware, snapdragon_8\+_gen_2_mobile_platform_firmware, snapdragon_x65_5g_modem-rf_system_firmware, sa8155p_firmware, snapdragon_460_mobile_platform_firmware, wsa8845h_firmware, snapdragon_480\+_5g_mobile_platform_firmware, qcm4325_firmware, snapdragon_w5\+_gen_1_wearable_platform_firmware, sa8145p_firmware, fastconnect_7800_firmware, qcs4490_firmware, qca6574au_firmware, sa9000p_firmware, qam8255p_firmware, qam8295p_firmware, snapdragon_480_5g_mobile_platform_firmware, wsa8845_firmware, snapdragon_782g_mobile_platform_firmware, sw5100_firmware, wsa8810_firmware, sg4150p_firmware, qcm6490_firmware, wsa8832_firmware, qca6426_firmware, snapdragon_768g_5g_mobile_platform_firmware, qcn9024_firmware, wsa8835_firmware, snapdragon_4_gen_2_mobile_platform_firmware, sa8255p_firmware, wcd9385_firmware, wcn3680b_firmware, qca6174a_firmware, qualcomm_215_mobile_platform_firmware, snapdragon_765_5g_mobile_platform_firmware, snapdragon_865_5g_mobile_platform_firmware, snapdragon_778g_5g_mobile_platform_firmware, sa8775p_firmware, sxr2230p_firmware, qcs610_firmware, robotics_rb5_platform_firmware, snapdragon_778g\+_5g_mobile_platform_firmware, snapdragon_660_mobile_platform_firmware, sa8150p_firmware, sm4125_firmware, csra6640_firmware, snapdragon_xr2_5g_platform_firmware, sxr2130_firmware, qcm4490_firmware, qcs8550_firmware, qam8775p_firmware, wcn3990_firmware, sg8275p_firmware, qca8337_firmware, csra6620_firmware, wcn3950_firmware, snapdragon_xr2\+_gen_1_platform_firmware, qcn6024_firmware, snapdragon_750g_5g_mobile_platform_firmware, sa6145p_firmware, sd865_5g_firmware, wcd9326_firmware, snapdragon_8_gen_1_mobile_platform_firmware, qcs5430_firmware, sm8550p_firmware, snapdragon_7c\+_gen_3_compute_firmware, qcm8550_firmware, ssg2115p_firmware, qca6698aq_firmware, snapdragon_765g_5g_mobile_platform_firmware, snapdragon_x55_5g_modem-rf_system_firmware, sa6150p_firmware, wcd9341_firmware, qcm2290_firmware, snapdragon_ar2_gen_1_platform_firmware, fastconnect_6200_firmware, qcs6490_firmware, sm7315_firmware, wcn3910_firmware, sa4150p_firmware, snapdragon_x12_lte_modem_firmware, sa4155p_firmware, snapdragon_695_5g_mobile_platform_firmware, sa6155p_firmware, snapdragon_865\+_5g_mobile_platform_firmware, smart_audio_400_platform_firmware, snapdragon_870_5g_mobile_platform_firmware, snapdragon_680_4g_mobile_platform_firmware, qca6696_firmware, qcm4290_firmware, qualcomm_video_collaboration_vc5_platform_firmware, qcn9012_firmware, qcm5430_firmware, qrb5165m_firmware, snapdragon_780g_5g_mobile_platform_firmware, wcn6740_firmware, wsa8830_firmware, wcn3988_firmware, snapdragon_690_5g_mobile_platform_firmware, wcd9335_firmware, qca6595_firmware, sd_8_gen1_5g_firmware, sa8295p_firmware, qrb5165n_firmware, qualcomm_video_collaboration_vc3_platform_firmware, qcs2290_firmware, qca6391_firmware, fastconnect_6700_firmware, qcn9011_firmware, snapdragon_662_mobile_platform_firmware, qualcomm_video_collaboration_vc1_platform_firmware, qam8650p_firmware, snapdragon_auto_5g_modem-rf_firmware, qca6436_firmware, qca9377_firmware, qca6595au_firmware, wcd9395_firmware, wcd9390_firmware, snapdragon_439_mobile_platform_firmware, fastconnect_6900_firmware, wsa8840_firmware, snapdragon_8_gen_2_mobile_platform_firmware, wcd9375_firmware, snapdragon_888_5g_mobile_platform_firmware, ar8035_firmware, sxr1230p_firmware, ssg2125p_firmware, qca6574_firmware, fastconnect_6800_firmware, sa8770p_firmware
Exploitation Reported (CISA KEV) 2023-12-05
CVSS 3 Base Score 8.4 (HIGH)
CVSS 3 Attack Complexity LOW
CVSS 3 Attack Vector LOCAL

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

Cyber Threat Graph Context

Explore how this CVE relates to the wider threat graph

Associated CAPEC Patterns

References