PT-2023-21826 · Qualcomm · Snapdragon+33
Published
2023-08-08
·
Updated
2024-04-12
·
CVE-2023-28577
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned in the provided descriptions.
Description
The issue arises from a lack of checks in the function call related to CAM REQ MGR RELEASE BUF to see if the buffer is being used. This can lead to a situation where another thread calls CAM REQ MGR RELEASE BUF to unmap the kernel virtual address (va) while a function named cam mem get cpu buf is attempting to get the kernel va for use, resulting in a use-after-free (UAF) of the kernel address.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Snapdragon
Fastconnect 6800 Firmware
Fastconnect 6900 Firmware
Fastconnect 7800 Firmware
Qca6391 Firmware
Qca6426 Firmware
Qca6436 Firmware
Qcn9074 Firmware
Qcs410 Firmware
Qcs610 Firmware
Sd865 5G Firmware
Snapdragon 865 5G Firmware
Snapdragon 865 5G Mobile Platform Firmware
Snapdragon 870 5G Firmware
Snapdragon 8 Gen 1 Firmware
Snapdragon 8 Gen 1 Mobile Platform Firmware
Snapdragon X55 5G Firmware
Snapdragon X55 5G Modem-Rf System Firmware
Snapdragon Xr2 5G Firmware
Snapdragon Xr2 5G Platform Firmware
Sw5100P Firmware
Sxr2130 Firmware
Wcd9341 Firmware
Wcd9370 Firmware
Wcd9380 Firmware
Wcn3660B Firmware
Wcn3680B Firmware
Wcn3950 Firmware
Wcn3980 Firmware
Wcn3988 Firmware
Wsa8810 Firmware
Wsa8815 Firmware
Wsa8830 Firmware
Wsa8835 Firmware