#VU81359 Use of Out-of-range Pointer Offset in Qualcomm products - CVE-2023-24855

Vulnerability identifier: #VU81359

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2023-24855

CWE-ID: CWE-823

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
AR8035
FastConnect 6200
FastConnect 6700
FastConnect 6900
FastConnect 7800
QCA6391
QCA8081
QCA8337
QCC710
QCM4490
QCM6490
QCM8550
QCN6024
QCN6224
QCN6274
QCN9024
QCS4490
QCS6490
QCS8550
QFW7114
QFW7124
Qualcomm Video Collaboration VC3 Platform
SDX57M
SG8275P
SM7325P
SM8550P
Snapdragon 4 Gen 1 Mobile Platform
Snapdragon 4 Gen 2 Mobile Platform
Snapdragon 480 5G Mobile Platform
Snapdragon 480+ 5G Mobile Platform (SM4350-AC)
Snapdragon 695 5G Mobile Platform
Snapdragon 778G 5G Mobile Platform
Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)
Snapdragon 780G 5G Mobile Platform
Snapdragon 782G Mobile Platform (SM7325-AF)
Snapdragon 7c+ Gen 3 Compute
Snapdragon 8 Gen 1 Mobile Platform
Snapdragon 8 Gen 2 Mobile Platform
Snapdragon 8+ Gen 1 Mobile Platform
Snapdragon 8+ Gen 2 Mobile Platform
Snapdragon 888 5G Mobile Platform
Snapdragon 888+ 5G Mobile Platform (SM8350-AC)
Snapdragon X65 5G Modem-RF System
Snapdragon X70 Modem-RF System
Snapdragon X75 5G Modem-RF System
WCD9340
WCD9370
WCD9375
WCD9380
WCD9385
WCD9390
WCD9395
WCN3950
WCN3988
WCN6740
WSA8810
WSA8815
WSA8830
WSA8835
WSA8840
WSA8845
WSA8845H
WSA8832

Software vendor:
Qualcomm

The vulnerability allows a remote attacker to execute arbitrary code.

The vulnerability exists due to improper input validation in Modem. A remote attacker can execute arbitrary code.

Install security update from vendor's website.

• https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2023-bulletin.html