Qualcomm 8 Gen 1 Mobile Platform 11AZ RTT Management Action Frame denial of service

Summaryinfo

A vulnerability described as problematic has been identified in Qualcomm 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8 Gen 3 Mobile Platform, 8+ Gen 2 Mobile Platform, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, AR2 Gen 1 Platform, AR8035, CSR8811, FastConnect 6800, FastConnect 6900, FastConnect 7800, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 326 Platform, Immersive Home 3210 Platform, IPQ5010, IPQ5028, IPQ5302, IPQ5312, IPQ5332, IPQ6000, IPQ6010, IPQ6018, IPQ6028, IPQ8070A, IPQ8071A, IPQ8072A, IPQ8074A, IPQ8076, IPQ8076A, IPQ8078, IPQ8078A, IPQ8173, IPQ8174, IPQ9008, IPQ9554, IPQ9570, IPQ9574, QAM8255P, QAM8650P, QAM8775P, QCA0000, QCA4024, QCA6391, QCA6426, QCA6436, QCA6554A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA6797AQ, QCA8072, QCA8075, QCA8081, QCA8082, QCA8084, QCA8085, QCA8337, QCA8386, QCA9888, QCA9889, QCC710, QCC2073, QCC2076, QCF8000, QCF8001, QCM8550, QCN5022, QCN5024, QCN5052, QCN5054, QCN5122, QCN5124, QCN5152, QCN5154, QCN5164, QCN6023, QCN6024, QCN6122, QCN6132, QCN6224, QCN6274, QCN6402, QCN6412, QCN6422, QCN6432, QCN9000, QCN9001, QCN9002 and QCN9003. Affected by this vulnerability is an unknown functionality of the component 11AZ RTT Management Action Frame Handler. The manipulation results in denial of service. This vulnerability was named CVE-2023-43523. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.

Detailsinfo

A vulnerability was found in Qualcomm 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8 Gen 3 Mobile Platform, 8+ Gen 2 Mobile Platform, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, AR2 Gen 1 Platform, AR8035, CSR8811, FastConnect 6800, FastConnect 6900, FastConnect 7800, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 326 Platform, Immersive Home 3210 Platform, IPQ5010, IPQ5028, IPQ5302, IPQ5312, IPQ5332, IPQ6000, IPQ6010, IPQ6018, IPQ6028, IPQ8070A, IPQ8071A, IPQ8072A, IPQ8074A, IPQ8076, IPQ8076A, IPQ8078, IPQ8078A, IPQ8173, IPQ8174, IPQ9008, IPQ9554, IPQ9570, IPQ9574, QAM8255P, QAM8650P, QAM8775P, QCA0000, QCA4024, QCA6391, QCA6426, QCA6436, QCA6554A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA6797AQ, QCA8072, QCA8075, QCA8081, QCA8082, QCA8084, QCA8085, QCA8337, QCA8386, QCA9888, QCA9889, QCC710, QCC2073, QCC2076, QCF8000, QCF8001, QCM8550, QCN5022, QCN5024, QCN5052, QCN5054, QCN5122, QCN5124, QCN5152, QCN5154, QCN5164, QCN6023, QCN6024, QCN6122, QCN6132, QCN6224, QCN6274, QCN6402, QCN6412, QCN6422, QCN6432, QCN9000, QCN9001, QCN9002 and QCN9003. It has been classified as critical. Affected is an unknown code block of the component 11AZ RTT Management Action Frame Handler. The manipulation with an unknown input leads to a denial of service vulnerability. CWE is classifying the issue as CWE-404. The product does not release or incorrectly releases a resource before it is made available for re-use. This is going to have an impact on availability.

The weakness was presented 02/06/2024. The advisory is available at qualcomm.com. This vulnerability is traded as CVE-2023-43523 since 09/19/2023. The technical details are unknown and an exploit is not available. This vulnerability is assigned to T1499 by the MITRE ATT&CK project.

Upgrading eliminates this vulnerability.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Productinfo

Vendor

• Qualcomm

Name

• 8 Gen 1 Mobile Platform
• 8 Gen 2 Mobile Platform
• 8 Gen 3 Mobile Platform
• 8+ Gen 2 Mobile Platform
• 865 5G Mobile Platform
• 865+ 5G Mobile Platform SM8250-AB
• 870 5G Mobile Platform SM8250-AC
• AR2 Gen 1 Platform
• AR8035
• CSR8811
• FastConnect 6800
• FastConnect 6900
• FastConnect 7800
• Immersive Home 214 Platform
• Immersive Home 216 Platform
• Immersive Home 316 Platform
• Immersive Home 318 Platform
• Immersive Home 326 Platform
• Immersive Home 3210 Platform
• IPQ5010
• IPQ5028
• IPQ5302
• IPQ5312
• IPQ5332
• IPQ6000
• IPQ6010
• IPQ6018
• IPQ6028
• IPQ8070A
• IPQ8071A
• IPQ8072A
• IPQ8074A
• IPQ8076
• IPQ8076A
• IPQ8078
• IPQ8078A
• IPQ8173
• IPQ8174
• IPQ9008
• IPQ9554
• IPQ9570
• IPQ9574
• QAM8255P
• QAM8650P
• QAM8775P
• QCA0000
• QCA4024
• QCA6391
• QCA6426
• QCA6436
• QCA6554A
• QCA6564AU
• QCA6574
• QCA6574A
• QCA6574AU
• QCA6584AU
• QCA6595
• QCA6595AU
• QCA6696
• QCA6698AQ
• QCA6797AQ
• QCA8072
• QCA8075
• QCA8081
• QCA8082
• QCA8084
• QCA8085
• QCA8337
• QCA8386
• QCA9888
• QCA9889
• QCC710
• QCC2073
• QCC2076
• QCF8000
• QCF8001
• QCM8550
• QCN5022
• QCN5024
• QCN5052
• QCN5054
• QCN5122
• QCN5124
• QCN5152
• QCN5154
• QCN5164
• QCN6023
• QCN6024
• QCN6122
• QCN6132
• QCN6224
• QCN6274
• QCN6402
• QCN6412
• QCN6422
• QCN6432
• QCN9000
• QCN9001
• QCN9002
• QCN9003
• QCN9012
• QCN9013
• QCN9022
• QCN9024
• QCN9070
• QCN9072
• QCN9074
• QCN9100
• QCN9274
• QCS8550
• QFW7114
• QFW7124
• SC8380XP
• SD 8 Gen1 5G
• SD865 5G
• SDX65M
• SG8275P
• SM8550P
• SSG2115P
• SSG2125P
• SXR1230P
• SXR2130
• SXR2230P
• WCD9340
• WCD9380
• WCD9385
• WCD9390
• WCD9395
• WCN6740
• WSA8810
• WSA8815
• WSA8830
• WSA8832
• WSA8835
• WSA8840
• WSA8845
• WSA8845H
• X55 5G Modem-RF System
• X65 5G Modem-RF System
• X75 5G Modem-RF System
• XR2 5G Platform
• XR2+ Gen 1 Platform

License

• commercial

Website

• Vendor: https://www.qualcomm.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Discussion