9.8критическая
CVE-2023-33025
Описание
Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.
Затрагиваемое ПО
Qualcomm Ar8035 firmwareQualcomm Ar8035Qualcomm Fastconnect 6700 firmwareQualcomm Fastconnect 6700Qualcomm Fastconnect 6900 firmwareQualcomm Fastconnect 6900Qualcomm Qca8081 firmwareQualcomm Qca8081Qualcomm Qca8337 firmwareQualcomm Qca8337Qualcomm Qcm4490 firmwareQualcomm Qcm4490Qualcomm Qcn6024 firmwareQualcomm Qcn6024Qualcomm Qcn9024 firmwareQualcomm Qcn9024Qualcomm Qcs4490 firmwareQualcomm Qcs4490Qualcomm Sm4450 firmwareQualcomm Sm4450Qualcomm Snapdragon 680 4g mobile platform firmwareQualcomm Snapdragon 680 4g mobile platformQualcomm Snapdragon 685 4g mobile platform firmwareQualcomm Snapdragon 685 4g mobile platformQualcomm Snapdragon x65 5g modem-rf system firmware
CVSS
| Балл | 9.8 — критическая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Источники
https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletinhttps://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin