Lucene search
HistoryFeb 06, 2024 - 6:16 a.m.
CVE-2023-43517
cve-2023-43517
memory corruption
automotive multimedia
improper access control
hab
nvd
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Memory corruption in Automotive Multimedia due to improper access control in HAB.
Affected configurations
Node
qualcommqam8255p_firmwareMatch-
qualcommqam8255pMatch-
Node
qualcommqam8295p_firmwareMatch-
qualcommqam8295pMatch-
Node
qualcommqam8650p_firmwareMatch-
qualcommqam8650pMatch-
Node
qualcommqam8775p_firmwareMatch-
qualcommqam8775pMatch-
Node
qualcommqamsrv1h_firmwareMatch-
qualcommqamsrv1hMatch-
Node
qualcommqamsrv1m_firmwareMatch-
qualcommqamsrv1mMatch-
Node
qualcommqca6574au_firmwareMatch-
qualcommqca6574auMatch-
Node
qualcommqca6595_firmwareMatch-
qualcommqca6595Match-
Node
qualcommqca6696_firmwareMatch-
qualcommqca6696Match-
Node
qualcommqca6698aq_firmwareMatch-
qualcommqca6698aqMatch-
Node
qualcommsa8255p_firmwareMatch-
qualcommsa8255pMatch-
Node
qualcommsa8295p_firmwareMatch-
qualcommsa8295pMatch-
Node
qualcommsa8540p_firmwareMatch-
qualcommsa8540pMatch-
Node
qualcommsa8650p_firmwareMatch-
qualcommsa8650pMatch-
Node
qualcommsa8770p_firmwareMatch-
qualcommsa8770pMatch-
Node
qualcommsa8775p_firmwareMatch-
qualcommsa8775pMatch-
Node
qualcommsa9000p_firmwareMatch-
qualcommsa9000pMatch-
Node
qualcommsrv1h_firmwareMatch-
qualcommsrv1hMatch-
Node
qualcommsrv1m_firmwareMatch-
qualcommsrv1mMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| qualcomm:qam8255p_firmware | qualcomm qam8255p firmware | eq | - |
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Snapdragon Auto"
],
"product": "Snapdragon",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "QAM8255P"
},
{
"status": "affected",
"version": "QAM8295P"
},
{
"status": "affected",
"version": "QAM8650P"
},
{
"status": "affected",
"version": "QAM8775P"
},
{
"status": "affected",
"version": "QAMSRV1H"
},
{
"status": "affected",
"version": "QAMSRV1M"
},
{
"status": "affected",
"version": "QCA6574AU"
},
{
"status": "affected",
"version": "QCA6595"
},
{
"status": "affected",
"version": "QCA6696"
},
{
"status": "affected",
"version": "QCA6698AQ"
},
{
"status": "affected",
"version": "SA8255P"
},
{
"status": "affected",
"version": "SA8295P"
},
{
"status": "affected",
"version": "SA8540P"
},
{
"status": "affected",
"version": "SA8650P"
},
{
"status": "affected",
"version": "SA8770P"
},
{
"status": "affected",
"version": "SA8775P"
},
{
"status": "affected",
"version": "SA9000P"
},
{
"status": "affected",
"version": "SRV1H"
},
{
"status": "affected",
"version": "SRV1M"
}
]
}
]Related
nvd
nvd
CVE-2023-43517
2024-02-06 06:16:01
prion
prion
Improper access control
2024-02-06 06:16:00
cvelist
cvelist
CVE-2023-43517 Improper Access Control in Automotive Multimedia
2024-02-06 05:47:18
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2023-43517