We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-43538

Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in TZ Secure OS



Assignerqualcomm
Reserved2023-09-19
Published2024-06-03
Updated2024-08-02

Description

Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.



CRITICAL: 9.3CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Product status

Default status
unaffected

AQT1000
affected

AR8035
affected

FastConnect 6200
affected

FastConnect 6800
affected

FastConnect 6900
affected

FastConnect 7800
affected

QAM8255P
affected

QAM8295P
affected

QAM8650P
affected

QAM8775P
affected

QCA6174A
affected

QCA6310
affected

QCA6335
affected

QCA6391
affected

QCA6420
affected

QCA6421
affected

QCA6426
affected

QCA6430
affected

QCA6431
affected

QCA6436
affected

QCA6564A
affected

QCA6564AU
affected

QCA6574
affected

QCA6574A
affected

QCA6574AU
affected

QCA6584AU
affected

QCA6595
affected

QCA6595AU
affected

QCA6696
affected

QCA6698AQ
affected

QCA6797AQ
affected

QCA8081
affected

QCA8337
affected

QCA9377
affected

QCC710
affected

QCM8550
affected

QCN6224
affected

QCN6274
affected

QCS8550
affected

QDU1000
affected

QDU1010
affected

QDU1110
affected

QDU1210
affected

QDX1010
affected

QDX1011
affected

QFW7114
affected

QFW7124
affected

QRU1032
affected

QRU1052
affected

QRU1062
affected

QSM8350
affected

Robotics RB3 Platform
affected

SA6145P
affected

SA6155
affected

SA6155P
affected

SA8150P
affected

SA8155
affected

SA8155P
affected

SA8255P
affected

SA8295P
affected

SA8540P
affected

SA8770P
affected

SA8775P
affected

SA9000P
affected

SC8380XP
affected

SD 675
affected

SD 8 Gen1 5G
affected

SD 8CX
affected

SD670
affected

SD675
affected

SD855
affected

SD865 5G
affected

SDX55
affected

SDX57M
affected

SG8275P
affected

SM7250P
affected

SM8550P
affected

Snapdragon 670 Mobile Platform
affected

Snapdragon 675 Mobile Platform
affected

Snapdragon 678 Mobile Platform (SM6150-AC)
affected

Snapdragon 765 5G Mobile Platform (SM7250-AA)
affected

Snapdragon 765G 5G Mobile Platform (SM7250-AB)
affected

Snapdragon 768G 5G Mobile Platform (SM7250-AC)
affected

Snapdragon 8 Gen 1 Mobile Platform
affected

Snapdragon 8 Gen 2 Mobile Platform
affected

Snapdragon 8+ Gen 2 Mobile Platform
affected

Snapdragon 845 Mobile Platform
affected

Snapdragon 850 Mobile Compute Platform
affected

Snapdragon 855 Mobile Platform
affected

Snapdragon 855+/860 Mobile Platform (SM8150-AC)
affected

Snapdragon 865 5G Mobile Platform
affected

Snapdragon 865+ 5G Mobile Platform (SM8250-AB)
affected

Snapdragon 870 5G Mobile Platform (SM8250-AC)
affected

Snapdragon 888 5G Mobile Platform
affected

Snapdragon 888+ 5G Mobile Platform (SM8350-AC)
affected

Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite"
affected

Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite"
affected

Snapdragon 8cx Compute Platform (SC8180X-AA, AB)
affected

Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro"
affected

Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro"
affected

Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)
affected

Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)
affected

Snapdragon AR2 Gen 1 Platform
affected

Snapdragon Auto 5G Modem-RF Gen 2
affected

Snapdragon X24 LTE Modem
affected

Snapdragon X50 5G Modem-RF System
affected

Snapdragon X55 5G Modem-RF System
affected

Snapdragon X65 5G Modem-RF System
affected

Snapdragon X75 5G Modem-RF System
affected

Snapdragon XR2 5G Platform
affected

SSG2115P
affected

SSG2125P
affected

SXR1230P
affected

SXR2130
affected

SXR2230P
affected

Vision Intelligence 300 Platform
affected

Vision Intelligence 400 Platform
affected

WCD9326
affected

WCD9340
affected

WCD9341
affected

WCD9370
affected

WCD9375
affected

WCD9380
affected

WCD9385
affected

WCD9390
affected

WCD9395
affected

WCN3950
affected

WCN3980
affected

WCN3990
affected

WSA8810
affected

WSA8815
affected

WSA8830
affected

WSA8832
affected

WSA8835
affected

WSA8840
affected

WSA8845
affected

WSA8845H
affected

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html

cve.org CVE-2023-43538

nvd.nist.gov CVE-2023-43538

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-43538
Support options

Helpdesk Telegram

Subscribe to our newsletter to learn more about our work.

© Copyright 2024 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.