V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2023-33107
CVE
High KEVConfirmedExploit available

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

CVSS
7.8
High
EPSS
0.01
p54
Published
2023-01-01
Updated
2023-12-05
Description

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

Tags · CWE
KEV
CWE-190
CAPEC-92
Affected products
315_5g_iot_modem_firmwareApq8017_firmwareApq8064au_firmwareAqt1000_firmwareAr8031_firmwareAr8035_firmwareC-v2x_9150_firmwareCsra6620_firmwareCsra6640_firmwareCsrb31024_firmwareFastconnect_6200_firmwareFastconnect_6700_firmwareFastconnect_6800_firmwareFastconnect_6900_firmwareFastconnect_7800_firmwareFlight_rb5_5g_platform_firmwareMdm9250_firmwareMdm9650_firmwareMsm8108_firmwareMsm8209_firmware
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Timeline
2023-01-01
Published
2023-12-05
Added to KEV
2023-12-05
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: L
Low (L)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.009 · p54
Known exploited (KEV)
Yes
Known exploits — Сканер-ВС
CVE-2023-33107
github-poc · https://github.com/keto0422/CVE-2023-33107
Enterprise
Affected products
Qualcomm
Wcd9380Wcd9380 FirmwareWsa8830Wsa8835Wcd9385Qca6574auWsa8830 FirmwareWsa8835 FirmwareWcd9385 FirmwareQca6574au Firmware+390
ProductVendorStatus
315_5g_iot_modem_firmware*Exploited
apq8017_firmware*Exploited
apq8064au_firmware*Exploited
aqt1000_firmware*Exploited
ar8031_firmware*Exploited
ar8035_firmware*Exploited
c-v2x_9150_firmware*Exploited
csra6620_firmware*Exploited
csra6640_firmware*Exploited
csrb31024_firmware*Exploited
fastconnect_6200_firmware*Exploited
fastconnect_6700_firmware*Exploited
fastconnect_6800_firmware*Exploited
fastconnect_6900_firmware*Exploited
fastconnect_7800_firmware*Exploited
flight_rb5_5g_platform_firmware*Exploited
mdm9250_firmware*Exploited
mdm9650_firmware*Exploited
msm8108_firmware*Exploited
msm8209_firmware*Exploited
Showing first 20 of 242
Source databases
CVE
Related vulnerabilities
BDU:2024-02815