CVE-2023-28579

Buffer Copy Without Checking Size of Input in WLAN Host

Severity Score

7.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length.

Corrupción de la memoria en el host WLAN al deserializar los bytes PMK de entrada sin verificar la longitud del PMK de entrada.

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2023-03-17 CVE Reserved
2023-12-05 CVE Published
2024-10-10 CVE Updated
2025-04-15 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin	2024-04-12

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Qualcomm Search vendor "Qualcomm"	Fastconnect 6900 Firmware Search vendor "Qualcomm" for product "Fastconnect 6900 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Fastconnect 6900 Search vendor "Qualcomm" for product "Fastconnect 6900"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Fastconnect 7800 Firmware Search vendor "Qualcomm" for product "Fastconnect 7800 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Fastconnect 7800 Search vendor "Qualcomm" for product "Fastconnect 7800"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qam8295p Firmware Search vendor "Qualcomm" for product "Qam8295p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qam8295p Search vendor "Qualcomm" for product "Qam8295p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qca6391 Firmware Search vendor "Qualcomm" for product "Qca6391 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qca6391 Search vendor "Qualcomm" for product "Qca6391"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qca6574au Firmware Search vendor "Qualcomm" for product "Qca6574au Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qca6574au Search vendor "Qualcomm" for product "Qca6574au"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qca6595au Firmware Search vendor "Qualcomm" for product "Qca6595au Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qca6595au Search vendor "Qualcomm" for product "Qca6595au"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qca6696 Firmware Search vendor "Qualcomm" for product "Qca6696 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qca6696 Search vendor "Qualcomm" for product "Qca6696"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qcs410 Firmware Search vendor "Qualcomm" for product "Qcs410 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qcs410 Search vendor "Qualcomm" for product "Qcs410"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qcs610 Firmware Search vendor "Qualcomm" for product "Qcs610 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qcs610 Search vendor "Qualcomm" for product "Qcs610"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qualcomm Video Collaboration Vc1 Platform Firmware Search vendor "Qualcomm" for product "Qualcomm Video Collaboration Vc1 Platform Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qualcomm Video Collaboration Vc1 Platform Search vendor "Qualcomm" for product "Qualcomm Video Collaboration Vc1 Platform"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Qualcomm Video Collaboration Vc3 Platform Firmware Search vendor "Qualcomm" for product "Qualcomm Video Collaboration Vc3 Platform Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Qualcomm Video Collaboration Vc3 Platform Search vendor "Qualcomm" for product "Qualcomm Video Collaboration Vc3 Platform"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa6145p Firmware Search vendor "Qualcomm" for product "Sa6145p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa6145p Search vendor "Qualcomm" for product "Sa6145p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa6150p Firmware Search vendor "Qualcomm" for product "Sa6150p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa6150p Search vendor "Qualcomm" for product "Sa6150p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa6155p Firmware Search vendor "Qualcomm" for product "Sa6155p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa6155p Search vendor "Qualcomm" for product "Sa6155p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa8145p Firmware Search vendor "Qualcomm" for product "Sa8145p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa8145p Search vendor "Qualcomm" for product "Sa8145p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa8150p Firmware Search vendor "Qualcomm" for product "Sa8150p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa8150p Search vendor "Qualcomm" for product "Sa8150p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa8155p Firmware Search vendor "Qualcomm" for product "Sa8155p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa8155p Search vendor "Qualcomm" for product "Sa8155p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa8195p Firmware Search vendor "Qualcomm" for product "Sa8195p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa8195p Search vendor "Qualcomm" for product "Sa8195p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sa8295p Firmware Search vendor "Qualcomm" for product "Sa8295p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sa8295p Search vendor "Qualcomm" for product "Sa8295p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Snapdragon 8 Gen 1 Mobile Platform Firmware Search vendor "Qualcomm" for product "Snapdragon 8 Gen 1 Mobile Platform Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Snapdragon 8 Gen 1 Mobile Platform Search vendor "Qualcomm" for product "Snapdragon 8 Gen 1 Mobile Platform"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sw5100 Firmware Search vendor "Qualcomm" for product "Sw5100 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sw5100 Search vendor "Qualcomm" for product "Sw5100"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Sw5100p Firmware Search vendor "Qualcomm" for product "Sw5100p Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Sw5100p Search vendor "Qualcomm" for product "Sw5100p"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcd9341 Firmware Search vendor "Qualcomm" for product "Wcd9341 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcd9341 Search vendor "Qualcomm" for product "Wcd9341"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcd9370 Firmware Search vendor "Qualcomm" for product "Wcd9370 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcd9370 Search vendor "Qualcomm" for product "Wcd9370"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcd9380 Firmware Search vendor "Qualcomm" for product "Wcd9380 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcd9380 Search vendor "Qualcomm" for product "Wcd9380"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcn3660b Firmware Search vendor "Qualcomm" for product "Wcn3660b Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcn3660b Search vendor "Qualcomm" for product "Wcn3660b"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcn3680b Firmware Search vendor "Qualcomm" for product "Wcn3680b Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcn3680b Search vendor "Qualcomm" for product "Wcn3680b"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcn3950 Firmware Search vendor "Qualcomm" for product "Wcn3950 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcn3950 Search vendor "Qualcomm" for product "Wcn3950"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcn3980 Firmware Search vendor "Qualcomm" for product "Wcn3980 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcn3980 Search vendor "Qualcomm" for product "Wcn3980"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wcn3988 Firmware Search vendor "Qualcomm" for product "Wcn3988 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wcn3988 Search vendor "Qualcomm" for product "Wcn3988"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wsa8810 Firmware Search vendor "Qualcomm" for product "Wsa8810 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wsa8810 Search vendor "Qualcomm" for product "Wsa8810"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wsa8815 Firmware Search vendor "Qualcomm" for product "Wsa8815 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wsa8815 Search vendor "Qualcomm" for product "Wsa8815"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wsa8830 Firmware Search vendor "Qualcomm" for product "Wsa8830 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wsa8830 Search vendor "Qualcomm" for product "Wsa8830"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Wsa8835 Firmware Search vendor "Qualcomm" for product "Wsa8835 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Wsa8835 Search vendor "Qualcomm" for product "Wsa8835"	-	-	Safe