Details of VAR-202406-2711

ID

VAR-202406-2711

CVE

CVE-2023-43555

TITLE

Out-of-bounds read vulnerability in multiple Qualcomm products

Trust: 0.8

sources: JVNDB: JVNDB-2023-027981

DESCRIPTION

Information disclosure in Video while parsing mp2 clip with invalid section length. AQT1000 firmware, fastconnect 6200 firmware, fastconnect 6700 Multiple Qualcomm products, such as firmware, contain an out-of-bounds read vulnerability.Information may be obtained

Trust: 1.62

sources: NVD: CVE-2023-43555 // JVNDB: JVNDB-2023-027981

AFFECTED PRODUCTS

vendor:	qualcomm	model:	snapdragon 778g 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9385	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	video collaboration vc3	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	aqt1000	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sw5100p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3980	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3680b	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9370	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8845h	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon x55 5g modem-rf	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6564au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6696	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcn9074	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcm8550	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs4490	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 480 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 765 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	215 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8550p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs8250	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 888\+ 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9341	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm7250p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 768g 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8835	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	video collaboration vc1	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 662 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd865 5g	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 8 gen 2 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs5430	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6564a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 4 gen 1 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs610	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 720g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 730 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs410	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sw5100	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9380	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	fastconnect 6800	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8295p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sxr2130	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 732g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcm4490	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon w5\+ gen 1 wearable	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8810	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon xr2 5g	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sg4150p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9375	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3660b	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 4 gen 2 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 860 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 870 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 480\+ 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm7325p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 855\+ mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcm5430	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon wear 4100\+	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8195p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6426	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 820 automotive	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3610	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9395	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm6250	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3950	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd730	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn6740	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm7315	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 680 4g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3988	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	fastconnect 6200	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs8550	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	fastconnect 7800	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa8145p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcm4325	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	fastconnect 6900	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd855	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 765g 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 865\+ 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 695 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6391	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 460 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6155p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 855 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 888 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	fastconnect 6700	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8832	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	video collaboration vc5	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcm6490	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9390	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcd9326	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8830	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6430	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 690 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 778g\+ 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs6490	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd888	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 7c\+ gen 3 compute	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qam8295p	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 8 gen 1 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6436	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 685 4g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 730g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 8\+ gen 2 mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6420	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wcn3615	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 865 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 780g 5g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8815	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs7230	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	snapdragon 782g mobile	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	wsa8840	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sa6145p	scope:	eq	version:	-	Trust: 1.0
vendor:	クアルコム	model:	fastconnect 6200	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6696	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6574a	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qam8295p	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	fastconnect 7800	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6391	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qcm4325	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	msm8996au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6426	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6420	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6430	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6436	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	aqt1000	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qcm4490	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6574au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6564a	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	fastconnect 6700	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	qca6564au	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	fastconnect 6800	scope:	-	version:	-	Trust: 0.8
vendor:	クアルコム	model:	fastconnect 6900	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2023-027981 // NVD: CVE-2023-43555

CVSS

SEVERITY

CVSSV2

CVSSV3

product-security@qualcomm.com:	CVE-2023-43555
value:	HIGH
Trust: 1.0
nvd@nist.gov:	CVE-2023-43555
value:	HIGH
Trust: 1.0
NVD:	CVE-2023-43555
value:	HIGH
Trust: 0.8

product-security@qualcomm.com:	CVE-2023-43555
baseSeverity:	HIGH
baseScore:	8.2
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	3.9
impactScore:	4.2
version:	3.1
Trust: 1.0
nvd@nist.gov:	CVE-2023-43555
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2023-43555
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2023-027981 // NVD: CVE-2023-43555 // NVD: CVE-2023-43555

PROBLEMTYPE DATA

problemtype:	CWE-126	Trust: 1.0
problemtype:	CWE-125	Trust: 1.0
problemtype:	Out-of-bounds read (CWE-125) [NVD evaluation ]	Trust: 0.8
problemtype:	buffer over read (CWE-126) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2023-027981 // NVD: CVE-2023-43555

EXTERNAL IDS

db:	NVD	id:	CVE-2023-43555	Trust: 2.6
db:	JVNDB	id:	JVNDB-2023-027981	Trust: 0.8

sources: JVNDB: JVNDB-2023-027981 // NVD: CVE-2023-43555

REFERENCES

url:	https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2023-43555	Trust: 0.8

sources: JVNDB: JVNDB-2023-027981 // NVD: CVE-2023-43555

SOURCES

db:	JVNDB	id:	JVNDB-2023-027981
db:	NVD	id:	CVE-2023-43555

LAST UPDATE DATE

2025-01-29T23:24:08.660000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2023-027981	date:	2025-01-28T03:54:00
db:	NVD	id:	CVE-2023-43555	date:	2025-01-27T18:59:53.590

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2023-027981	date:	2025-01-28T00:00:00
db:	NVD	id:	CVE-2023-43555	date:	2024-06-03T10:15:11.420