CVE-2023-21639 : Memory corruption in Audio while processing sva_model

Memory corruption in Audio while processing sva_model_serializer using memory size passed by HIDL client.

Published 2023-07-04 05:15:10

Updated 2024-04-12 17:16:45

Source Qualcomm, Inc.

View at NVD, CVE.org

Vulnerability category: OverflowMemory Corruption

Products affected by CVE-2023-21639

Qualcomm » Sd855 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd855 » Version: N/A
Qualcomm » Sa6155p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sa6155p » Version: N/A
Qualcomm » Aqt1000 Firmware » Version: N/A
cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Aqt1000 » Version: N/A
Qualcomm » Qca6420 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6420 » Version: N/A
Qualcomm » Qca6430 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6430 » Version: N/A
Qualcomm » Wcd9341 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9341 » Version: N/A
Qualcomm » Wsa8810 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8810 » Version: N/A
Qualcomm » Wsa8815 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8815 » Version: N/A
Qualcomm » Sa8155p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sa8155p » Version: N/A
Qualcomm » Sa8195p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sa8195p » Version: N/A
Qualcomm » Wcn3980 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3980 » Version: N/A
Qualcomm » Wcn3988 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3988 » Version: N/A
Qualcomm » Wsa8830 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8830 » Version: N/A
Qualcomm » Wsa8835 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8835 » Version: N/A
Qualcomm » Sw5100 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sw5100 » Version: N/A
Qualcomm » Sw5100p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sw5100p » Version: N/A
Qualcomm » Sa4150p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sa4150p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sa4150p » Version: N/A
Qualcomm » Sa4155p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sa4155p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sa4155p » Version: N/A
Qualcomm » Fastconnect 6200 Firmware » Version: N/A
cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Fastconnect 6200 » Version: N/A
Qualcomm » Snapdragon 855 Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_855_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 855 » Version: N/A
Qualcomm » Snapdragon 855+/860 Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_855\+\/860_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 855+/860 » Version: N/A
Qualcomm » Snapdragon W5+ Gen 1 Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_w5\+_gen_1_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon W5+ Gen 1 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2023-21639

EPSS FAQ

0.03%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 5 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-21639

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
6.7	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.8	5.9	Qualcomm, Inc.
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-21639

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Assigned by: product-security@qualcomm.com (Secondary)
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2023-21639

https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin

Security Bulletins | Qualcomm Documentation
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2023-21639

Products affected by CVE-2023-21639

Exploit prediction scoring system (EPSS) score for CVE-2023-21639

CVSS scores for CVE-2023-21639

CWE ids for CVE-2023-21639

References for CVE-2023-21639