CVE-2023-21653

Transient DOS in Modem while processing RRC reconfiguration message.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8035:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8337:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6024:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9024:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:sdx65_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx65:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:sdx70m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx70m:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6855:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6856:-:*:*:*:*:*:*:*

History

08 Sep 2023, 16:42

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5
First Time		Qualcomm wcn6856 Qualcomm sdx70m Firmware Qualcomm qcn9024 Firmware Qualcomm ar8035 Qualcomm qcn6024 Firmware Qualcomm qca8337 Qualcomm ar8035 Firmware Qualcomm qcn9024 Qualcomm sdx65 Firmware Qualcomm sdx65 Qualcomm qca8081 Qualcomm wcn6855 Firmware Qualcomm wcn6855 Qualcomm wcn6856 Firmware Qualcomm qca8337 Firmware Qualcomm sdx70m Qualcomm Qualcomm wcd9380 Qualcomm qcn6024 Qualcomm wcd9380 Firmware Qualcomm qca8081 Firmware
CWE		CWE-617
CPE		cpe:2.3:o:qualcomm:sdx70m_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8337_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn6024_firmware:-:::::::* cpe:2.3:h:qualcomm:qca8337:-:::::::* cpe:2.3:h:qualcomm:qca8081:-:::::::* cpe:2.3:h:qualcomm:qcn6024:-:::::::* cpe:2.3:h:qualcomm:wcn6856:-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:o:qualcomm:sdx65_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8081_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn9024:-:::::::* cpe:2.3:o:qualcomm:qcn9024_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn6855:-:::::::* cpe:2.3:h:qualcomm:sdx70m:-:::::::* cpe:2.3:h:qualcomm:sdx65:-:::::::* cpe:2.3:o:qualcomm:wcn6855_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn6856_firmware:-:::::::* cpe:2.3:h:qualcomm:ar8035:-:::::::* cpe:2.3:o:qualcomm:ar8035_firmware:-:::::::*
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin - Vendor Advisory

05 Sep 2023, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-05 07:15

Updated : 2024-04-12 17:16

NVD link : CVE-2023-21653

Mitre link : CVE-2023-21653

CVE.ORG link : CVE-2023-21653

JSON object : View

Products Affected

qualcomm

wcd9380
sdx70m_firmware
qca8337_firmware
wcn6856
qcn9024_firmware
qcn6024
wcn6855_firmware
qcn9024
qca8337
qcn6024_firmware
ar8035_firmware
wcn6856_firmware
wcd9380_firmware
sdx65_firmware
sdx65
qca8081
ar8035
sdx70m
wcn6855
qca8081_firmware

CWE

CWE-617

Reachable Assertion

7.5 /10