ID

VAR-202309-1991


CVE

CVE-2023-33020


TITLE

Vulnerabilities in multiple Qualcomm products

Trust: 0.8

sources: JVNDB: JVNDB-2023-011778

DESCRIPTION

Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. 9206 lte firmware, APQ8017 firmware, APQ8052 Unspecified vulnerabilities exist in multiple Qualcomm products, including firmware.Service operation interruption (DoS) It may be in a state

Trust: 1.62

sources: NVD: CVE-2023-33020 // JVNDB: JVNDB-2023-011778

AFFECTED PRODUCTS

vendor:qualcommmodel:snapdragon wear 2500scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 439scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon wear 4100\+scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6564ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8815scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8056scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8996auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3680scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 625scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd626scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8608scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8108scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9330scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 652scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6584auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 212scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:9206 ltescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon wear 3100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3680bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3980scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon auto 5gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:csra6640scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 208scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon x5 ltescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca9367scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smart audio 400scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 617scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6554ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:205scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:csra6620scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6564auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:vision intelligence 100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:ar8031scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 429scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3615scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smart audio 200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6584scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8017scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6595auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3660scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:215scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdm429wscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 450scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:home hub 100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6174ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8052scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 653scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 820scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8209scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 210scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:vision intelligence 200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3620scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 425scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8810scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon x20 ltescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 632scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9628scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:fastconnect 6200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6175ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon wear 2100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3660bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 1200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca9379scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon x12 ltescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9326scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9335scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6595scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8076scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smart display 200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 626scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca9377scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdx20mscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9250scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8909wscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:c-v2x 9150scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3610scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6696scope:eqversion: -

Trust: 1.0

vendor:クアルコムmodel:fastconnect 6200scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:c-v2x 9150scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:mdm9650scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:mdm9628scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:mdm9250scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:msm8996auscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:qca6174ascope: - version: -

Trust: 0.8

vendor:クアルコムmodel:home hub 100scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:9206 ltescope: - version: -

Trust: 0.8

vendor:クアルコムmodel:msm8108scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:csra6640scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:msm8909wscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:apq8056scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:apq8017scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:msm8608scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:csra6620scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:apq8052scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:msm8209scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:apq8076scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:ar8031scope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2023-011778 // NVD: CVE-2023-33020

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2023-33020
value: HIGH

Trust: 1.0

product-security@qualcomm.com: CVE-2023-33020
value: HIGH

Trust: 1.0

NVD: CVE-2023-33020
value: HIGH

Trust: 0.8

nvd@nist.gov: CVE-2023-33020
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.1

Trust: 2.0

NVD: CVE-2023-33020
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2023-011778 // NVD: CVE-2023-33020 // NVD: CVE-2023-33020

PROBLEMTYPE DATA

problemtype:CWE-285

Trust: 1.0

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:Lack of information (CWE-noinfo) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2023-011778 // NVD: CVE-2023-33020

EXTERNAL IDS

db:NVDid:CVE-2023-33020

Trust: 2.6

db:JVNDBid:JVNDB-2023-011778

Trust: 0.8

sources: JVNDB: JVNDB-2023-011778 // NVD: CVE-2023-33020

REFERENCES

url:https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin

Trust: 1.8

url:https://nvd.nist.gov/vuln/detail/cve-2023-33020

Trust: 0.8

sources: JVNDB: JVNDB-2023-011778 // NVD: CVE-2023-33020

SOURCES

db:JVNDBid:JVNDB-2023-011778
db:NVDid:CVE-2023-33020

LAST UPDATE DATE

2024-08-14T14:30:16.621000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2023-011778date:2023-12-14T05:19:00
db:NVDid:CVE-2023-33020date:2024-04-12T17:17:15.340

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2023-011778date:2023-12-14T00:00:00
db:NVDid:CVE-2023-33020date:2023-09-05T07:15:14.640