CVE-2023-21643: Untrusted Pointer Dereference in Automotive
First published: Tue Aug 08 2023(Updated: )
Memory corruption due to untrusted pointer dereference in automotive during system call.
Credit: product-security@qualcomm.com product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm Apq8064au Firmware | ||
| Qualcomm Apq8064au | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Msm8996au | ||
| Qualcomm Qam8295p Firmware | ||
| Qualcomm Qam8295p | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qca6564au Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qca6574au | ||
| Google Android | ||
| Qualcomm Qca6584au | ||
| Qualcomm Qca6595 Firmware | ||
| Qualcomm Qca6595 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qca6696 | ||
| Google Android | ||
| Qualcomm Sa6145p | ||
| Qualcomm Sa6150p Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sa6155p | ||
| Qualcomm Sa8145p Firmware | ||
| Qualcomm Sa8145p | ||
| Google Android | ||
| Qualcomm Sa8150p | ||
| Qualcomm Sa8155 Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sa8195p Firmware | ||
| Google Android | ||
| Qualcomm Sa8295p Firmware | ||
| Qualcomm Sa8295p | ||
| Qualcomm Sa8540p Firmware | ||
| Qualcomm Sa8540p | ||
| Qualcomm Sa9000p Firmware | ||
| Qualcomm Sa9000p | ||
| All of | ||
| Qualcomm Apq8064au Firmware | ||
| Qualcomm Apq8064au | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Msm8996au | ||
| All of | ||
| Qualcomm Qam8295p Firmware | ||
| Qualcomm Qam8295p | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Qualcomm Qca6564au Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Qca6574au | ||
| All of | ||
| Google Android | ||
| Qualcomm Qca6584au | ||
| All of | ||
| Qualcomm Qca6595 Firmware | ||
| Qualcomm Qca6595 | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Qca6696 | ||
| All of | ||
| Google Android | ||
| Qualcomm Sa6145p | ||
| All of | ||
| Qualcomm Sa6150p Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Sa6155p | ||
| All of | ||
| Qualcomm Sa8145p Firmware | ||
| Qualcomm Sa8145p | ||
| All of | ||
| Google Android | ||
| Qualcomm Sa8150p | ||
| All of | ||
| Qualcomm Sa8155 Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Qualcomm Sa8195p Firmware | ||
| Google Android | ||
| All of | ||
| Qualcomm Sa8295p Firmware | ||
| Qualcomm Sa8295p | ||
| All of | ||
| Qualcomm Sa8540p Firmware | ||
| Qualcomm Sa8540p | ||
| All of | ||
| Qualcomm Sa9000p Firmware | ||
| Qualcomm Sa9000p |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-21643?
CVE-2023-21643 is a vulnerability that causes memory corruption due to an untrusted pointer dereference in automotive during a system call.
What software is affected by CVE-2023-21643?
Qualcomm Apq8064au Firmware, Google Android, Qualcomm Qam8295p Firmware, Qualcomm Qca6564au Firmware, Qualcomm Qca6574au Firmware, Qualcomm Qca6584au Firmware, Qualcomm Qca6595 Firmware, Qualcomm Qca6595au Firmware, Qualcomm Qca6696 Firmware, Qualcomm Sa6145p Firmware, Qualcomm Sa6150p Firmware, Qualcomm Sa6155 Firmware, Qualcomm Sa6155p Firmware, Qualcomm Sa8145p Firmware, Qualcomm Sa8150p Firmware, Qualcomm Sa8155 Firmware, Qualcomm Sa8155p Firmware, Qualcomm Sa8195p Firmware, Qualcomm Sa8295p Firmware, Qualcomm Sa8540p Firmware, and Qualcomm Sa9000p Firmware.
What is the severity of CVE-2023-21643?
The severity of CVE-2023-21643 is classified as critical with a severity score of 7.8.
How does CVE-2023-21643 cause memory corruption?
CVE-2023-21643 causes memory corruption by performing an untrusted pointer dereference in automotive during a system call.
Where can I find more information about CVE-2023-21643?
You can find more information about CVE-2023-21643 on the Qualcomm Product Security Bulletin website.
- collector/nvd-index
- agent/author
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/title
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/qualcomm apq8064au firmware
- canonical/qualcomm apq8064au
- canonical/google android
- canonical/qualcomm msm8996au
- canonical/qualcomm qam8295p firmware
- canonical/qualcomm qam8295p
- canonical/qualcomm qca6564au firmware
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6584au
- canonical/qualcomm qca6595 firmware
- canonical/qualcomm qca6595
- canonical/qualcomm qca6696
- canonical/qualcomm sa6145p
- canonical/qualcomm sa6150p firmware
- canonical/qualcomm sa6155p
- canonical/qualcomm sa8145p firmware
- canonical/qualcomm sa8145p
- canonical/qualcomm sa8150p
- canonical/qualcomm sa8155 firmware
- canonical/qualcomm sa8195p firmware
- canonical/qualcomm sa8295p firmware
- canonical/qualcomm sa8295p
- canonical/qualcomm sa8540p firmware
- canonical/qualcomm sa8540p
- canonical/qualcomm sa9000p firmware
- canonical/qualcomm sa9000p