CVE-2023-21630

CVSS V2 None CVSS V3 None

Description

Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal.

Overview

CVE ID
CVE-2023-21630

Assigner
product-security@qualcomm.com

Vulnerability Status
Analyzed

Published Version
2023-04-13T07:15:21

Last Modified Date
2023-04-24T15:00:16

Weakness Enumerations

CWE	URL
CWE-190	http://cwe.mitre.org/data/definitions/190.html

CPE Configuration (Product)

CPE	Vulnerable	Operator
		AND
cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:qca6391:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:qca6574_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:qca6574:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:qca6574a_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:qca6574a:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:qca6574au:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:qca6595au_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:qca6595au:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:qca6696_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:qca6696:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sa6155p_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sa6155p:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sa8155p_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sa8155p:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sa8195p_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sa8195p:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sd680_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sd680:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sd778g_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sd778g:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sd888_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sd888:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sg4150p_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sg4150p:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm6225-ad_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm6225-ad:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm7315_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm7315:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm7325_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm7325:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm7325-ae_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm7325-ae:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm7325-af_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm7325-af:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm7325p_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm7325p:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm7350-ab_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm7350-ab:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm8350_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm8350:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm8350-ac_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm8350-ac:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm8450_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm8450:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sm8475_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sm8475:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sw5100_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sw5100:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:sw5100p_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:sw5100p:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcd9370_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcd9370:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcd9375_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcd9375:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcd9380:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcd9385_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcd9385:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn3950_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn3950:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn3980:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn3988_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn3988:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn6740_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn6740:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn6750_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn6750:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn685x-1_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn685x-1:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn685x-5_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn685x-5:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn785x-1_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn785x-1:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wcn785x-5_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wcn785x-5:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wsa8810:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wsa8830:-:::::::*	0	OR
		AND
cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::*	1	OR
cpe:2.3:h:qualcomm:wsa8835:-:::::::*	0	OR

References

Reference URL	Reference Tags
https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-21630
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21630

History

Created	Old Value	New Value	Data Type	Notes
2023-04-17 04:40:44				Added to TrackCVE
2023-04-18 15:00:52	Awaiting Analysis	Undergoing Analysis	Vulnerability Status	updated
2023-04-24 16:01:07		2023-04-24T15:00:16	CVE Modified Date	updated
2023-04-24 16:01:07	Undergoing Analysis	Analyzed	Vulnerability Status	updated
2023-04-24 16:01:09			Weakness Enumeration	new
2023-04-24 16:01:13			CPE Information	updated