First published: Tue Sep 05 2023(Updated: )
Transient DOS in Modem while processing RRC reconfiguration message.
Credit: product-security@qualcomm.com product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | ||
Qualcomm Ar8035 | ||
Qualcomm Qca8081 Firmware | ||
Google Android | ||
Qualcomm Qca8337 Firmware | ||
Google Android | ||
Qualcomm Qcn6024 Firmware | ||
Google Android | ||
Google Android | ||
Google Android | ||
Qualcomm Sdx65 Firmware | ||
Qualcomm Sdx65 | ||
Qualcomm Sdx70m Firmware | ||
Qualcomm Sdx70m | ||
Google Android | ||
Google Android | ||
Qualcomm Wcn6855 Firmware | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
All of | ||
Google Android | ||
Qualcomm Ar8035 | ||
All of | ||
Qualcomm Qca8081 Firmware | ||
Google Android | ||
All of | ||
Qualcomm Qca8337 Firmware | ||
Google Android | ||
All of | ||
Qualcomm Qcn6024 Firmware | ||
Google Android | ||
All of | ||
Google Android | ||
Google Android | ||
All of | ||
Qualcomm Sdx65 Firmware | ||
Qualcomm Sdx65 | ||
All of | ||
Qualcomm Sdx70m Firmware | ||
Qualcomm Sdx70m | ||
All of | ||
Google Android | ||
Google Android | ||
All of | ||
Qualcomm Wcn6855 Firmware | ||
Google Android | ||
All of | ||
Google Android | ||
Google Android |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-21653 is a vulnerability that allows for transient denial of service (DoS) attacks in modems when processing RRC (Radio Resource Control) reconfiguration messages.
Google Android with Qualcomm AR8035 Firmware, Qualcomm QCA8081 Firmware, Qualcomm QCA8337 Firmware, Qualcomm QCN6024 Firmware, Qualcomm QCN9024 Firmware, Qualcomm SDX65 Firmware, Qualcomm SDX70m Firmware, Qualcomm WCD9380 Firmware, Qualcomm WCN6855 Firmware, and Qualcomm WCN6856 Firmware are affected by CVE-2023-21653.
CVE-2023-21653 has a severity rating of 7.5, indicating a high severity.
To fix CVE-2023-21653, apply the patches and updates provided by Qualcomm and Google for the affected software.
You can find more information about CVE-2023-21653 in the bulletins provided by Qualcomm and Google.