CVE-2023-33100 : Transient DOS while processing DL NAS Transport message when message ID is not d

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification.

Published 2024-04-01 15:05:54

Updated 2025-01-13 21:54:01

Source Qualcomm, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2023-33100

Qualcomm » Qca6174a Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6174a » Version: N/A
Qualcomm » Qca6584au Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6584au » Version: N/A
Qualcomm » Qca8081 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca8081 » Version: N/A
Qualcomm » Wcd9340 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9340 » Version: N/A
Qualcomm » Wsa8810 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8810 » Version: N/A
Qualcomm » Wsa8815 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8815 » Version: N/A
Qualcomm » Ar8035 Firmware » Version: N/A
cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Ar8035 » Version: N/A
Qualcomm » Qca8337 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca8337 » Version: N/A
Qualcomm » Qcn6024 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcn6024 » Version: N/A
Qualcomm » Qcn9024 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcn9024 » Version: N/A
Qualcomm » Wcd9370 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9370 » Version: N/A
Qualcomm » Wcd9380 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9380 » Version: N/A
Qualcomm » Wcd9385 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9385 » Version: N/A
Qualcomm » Wcn3950 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3950 » Version: N/A
Qualcomm » Wcn3988 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3988 » Version: N/A
Qualcomm » Wsa8830 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8830 » Version: N/A
Qualcomm » Wsa8835 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8835 » Version: N/A
Qualcomm » Wsa8832 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8832 » Version: N/A
Qualcomm » Qcc710 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcc710_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcc710 » Version: N/A
Qualcomm » Sg8275p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sg8275p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sg8275p » Version: N/A
Qualcomm » Wcd9390 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9390 » Version: N/A
Qualcomm » Wcd9395 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9395 » Version: N/A
Qualcomm » Wsa8840 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8840 » Version: N/A
Qualcomm » Wsa8845 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8845 » Version: N/A
Qualcomm » Wsa8845h Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8845h » Version: N/A
Qualcomm » Qca6698aq Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6698aq » Version: N/A
Qualcomm » Qcm4490 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcm4490_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcm4490 » Version: N/A
Qualcomm » Qcs4490 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcs4490_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcs4490 » Version: N/A
Qualcomm » Qcs8550 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcs8550_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcs8550 » Version: N/A
Qualcomm » Fastconnect 6900 Firmware » Version: N/A
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Fastconnect 6900 » Version: N/A
Qualcomm » Fastconnect 6700 Firmware » Version: N/A
cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Fastconnect 6700 » Version: N/A
Qualcomm » Fastconnect 7800 Firmware » Version: N/A
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Fastconnect 7800 » Version: N/A
Qualcomm » Qcm8550 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcm8550_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcm8550 » Version: N/A
Qualcomm » Qcn6224 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcn6224_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcn6224 » Version: N/A
Qualcomm » Qcn6274 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcn6274_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcn6274 » Version: N/A
Qualcomm » Qfw7114 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qfw7114_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qfw7114 » Version: N/A
Qualcomm » Qfw7124 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qfw7124_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qfw7124 » Version: N/A
Qualcomm » Sm8550p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm8550p » Version: N/A
Qualcomm » Snapdragon Auto 5g Modem-rf Gen 2 Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon Auto 5g Modem-rf Gen 2 » Version: N/A
Qualcomm » Qep8111 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qep8111_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qep8111 » Version: N/A
Qualcomm » Snapdragon 8 Gen 2 Mobile Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 8 Gen 2 Mobile » Version: N/A
Qualcomm » Snapdragon 8 Gen 3 Mobile Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_8_gen_3_mobile_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 8 Gen 3 Mobile » Version: N/A
Qualcomm » Snapdragon 8+ Gen 2 Mobile Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_8\+_gen_2_mobile_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 8+ Gen 2 Mobile » Version: N/A
Qualcomm » Snapdragon 4 Gen 2 Mobile Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_4_gen_2_mobile_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 4 Gen 2 Mobile » Version: N/A
Qualcomm » Snapdragon 8 Gen 1 Mobile Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 8 Gen 1 Mobile » Version: N/A
Qualcomm » Snapdragon 8+ Gen 1 Mobile Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_8\+_gen_1_mobile_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon 8+ Gen 1 Mobile » Version: N/A
Qualcomm » Snapdragon X35 5g Modem-rf Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_x35_5g_modem-rf_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon X35 5g Modem-rf » Version: N/A
Qualcomm » Snapdragon X65 5g Modem-rf Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_x65_5g_modem-rf_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon X65 5g Modem-rf » Version: N/A
Qualcomm » Snapdragon X75 5g Modem-rf Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_x75_5g_modem-rf_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon X75 5g Modem-rf » Version: N/A
Qualcomm » Snapdragon X70 Modem-rf Firmware » Version: N/A
cpe:2.3:o:qualcomm:snapdragon_x70_modem-rf_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Snapdragon X70 Modem-rf » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2023-33100

EPSS FAQ

0.22%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 42 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-33100

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	Qualcomm, Inc.	2024-04-01
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2023-33100

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: product-security@qualcomm.com (Secondary)

References for CVE-2023-33100

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html

Security Bulletins | Qualcomm Documentation
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2023-33100

Products affected by CVE-2023-33100

Exploit prediction scoring system (EPSS) score for CVE-2023-33100

CVSS scores for CVE-2023-33100

CWE ids for CVE-2023-33100

References for CVE-2023-33100