Details of VAR-202310-2416

ID

VAR-202310-2416

CVE

CVE-2023-28571

TITLE

Out-of-bounds read vulnerability in multiple Qualcomm products

Trust: 0.8

sources: JVNDB: JVNDB-2023-013608

DESCRIPTION

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. APQ8064AU firmware, CSRB31024 firmware, QCA6390 Multiple Qualcomm products, such as firmware, contain an out-of-bounds read vulnerability.Information may be obtained

Trust: 1.62

sources: NVD: CVE-2023-28571 // JVNDB: JVNDB-2023-013608

AFFECTED PRODUCTS

vendor:	qualcomm	model:	qca6431	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sxr2130	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3990	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qam8255p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8295p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9390	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9395	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6564a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	8098	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8815	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcc2073	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6797aq	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6426	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qam8295p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon auto 4g modem	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6584au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6320	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon auto 5g modem-rf	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn785x-1	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8064au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6390	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3980	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8840	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	video collaboration vc3 platform	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcc2076	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sw5100	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8250-ab	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6554a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn685x-5	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8250-ac	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9370	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs410	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6564au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn785x-5	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	s820a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6310	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9385	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6421	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6595au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6698aq	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9380	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6145p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3988	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd835	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8830	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd865 5g	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs610	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn685x-1	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8255p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8195p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6391	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8145p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9340	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8810	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3950	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 8\+ gen 2 mobile platform	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6678aq	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon x55 5g modem-rf system	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6175a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9650	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 8 gen 2 mobile platform	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	8998	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8550p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9335	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6595	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8835	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	video collaboration vc1 platform	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon w5\+ gen 1 wearable platform	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcn9074	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon xr2 5g platform	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8845h	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	csrb31024	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8250	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6696	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6436	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9341	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sw5100p	scope:	eq	version:	-	Trust: 1.0
vendor:	クアルコム	model:	wcn685x-1	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	csrb31024	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6175a	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6391	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6426	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qam8255p	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qam8295p	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	msm8996au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6436	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6431	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6310	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	mdm9650	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	wcn785x-5	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	wcn785x-1	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	apq8064au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6421	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6320	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	wcn685x-5	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6554a	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6390	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2023-013608 // NVD: CVE-2023-28571

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2023-28571
value:	MEDIUM
Trust: 1.0
product-security@qualcomm.com:	CVE-2023-28571
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2023-28571
value:	MEDIUM
Trust: 0.8

nvd@nist.gov:	CVE-2023-28571
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.1
Trust: 1.0
product-security@qualcomm.com:	CVE-2023-28571
baseSeverity:	MEDIUM
baseScore:	6.1
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	1.8
impactScore:	4.2
version:	3.1
Trust: 1.0
NVD:	CVE-2023-28571
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2023-013608 // NVD: CVE-2023-28571 // NVD: CVE-2023-28571

PROBLEMTYPE DATA

problemtype:	CWE-126	Trust: 1.0
problemtype:	CWE-125	Trust: 1.0
problemtype:	Out-of-bounds read (CWE-125) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2023-013608 // NVD: CVE-2023-28571

EXTERNAL IDS

db:	NVD	id:	CVE-2023-28571	Trust: 2.6
db:	JVNDB	id:	JVNDB-2023-013608	Trust: 0.8

sources: JVNDB: JVNDB-2023-013608 // NVD: CVE-2023-28571

REFERENCES

url:	https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2023-28571	Trust: 0.8

sources: JVNDB: JVNDB-2023-013608 // NVD: CVE-2023-28571

SOURCES

db:	JVNDB	id:	JVNDB-2023-013608
db:	NVD	id:	CVE-2023-28571

LAST UPDATE DATE

2024-08-14T15:00:02.341000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2023-013608	date:	2023-12-21T04:34:00
db:	NVD	id:	CVE-2023-28571	date:	2024-04-12T17:17:10.120

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2023-013608	date:	2023-12-21T00:00:00
db:	NVD	id:	CVE-2023-28571	date:	2023-10-03T06:15:24.657