CVE-2023-33039: Use After Free in Automotive Display
First published: Tue Oct 03 2023(Updated: )
Memory corruption in Automotive Display while destroying the image handle created using connected display driver.
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Qualcomm QAM8295P | ||
| Qualcomm QAM8295P | ||
| All of | ||
| Qualcomm QAM8650P | ||
| qualcomm qam8650p Firmware | ||
| All of | ||
| Qualcomm SRV1H Firmware | ||
| Qualcomm QAMSRV1H Firmware | ||
| All of | ||
| qualcomm qca6574a firmware | ||
| qualcomm qca6574a firmware | ||
| All of | ||
| Qualcomm QCA6574 Firmware | ||
| Qualcomm QCA6574AU | ||
| All of | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6595AU Firmware | ||
| All of | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| All of | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6145P Firmware | ||
| All of | ||
| Qualcomm SA6150P Firmware | ||
| Qualcomm SA6150P Firmware | ||
| All of | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155 Firmware | ||
| All of | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155P | ||
| All of | ||
| Qualcomm SA8145P | ||
| Qualcomm SA8145P Firmware | ||
| All of | ||
| Qualcomm SA8150P Firmware | ||
| Qualcomm SA8150P Firmware | ||
| All of | ||
| Qualcomm SA8155P Firmware | ||
| Qualcomm SA8155 Firmware | ||
| All of | ||
| Qualcomm SA8155 | ||
| Qualcomm SA8155P Firmware | ||
| All of | ||
| Qualcomm SA8195P | ||
| Qualcomm SA8195P Firmware | ||
| All of | ||
| Qualcomm SA8295P Firmware | ||
| Qualcomm SA8295P Firmware | ||
| All of | ||
| Qualcomm SA8540P | ||
| Qualcomm SA8540P Firmware | ||
| All of | ||
| Qualcomm SA8650P | ||
| Qualcomm SA8650P | ||
| All of | ||
| qualcomm sa9000p firmware | ||
| Qualcomm SA9000P | ||
| All of | ||
| Qualcomm SRV1H | ||
| Qualcomm SRV1H Firmware | ||
| Qualcomm QAM8295P | ||
| Qualcomm QAM8295P | ||
| Qualcomm QAM8650P | ||
| qualcomm qam8650p Firmware | ||
| Qualcomm SRV1H Firmware | ||
| Qualcomm QAMSRV1H Firmware | ||
| qualcomm qca6574a firmware | ||
| qualcomm qca6574a firmware | ||
| Qualcomm QCA6574 Firmware | ||
| Qualcomm QCA6574AU | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6595AU Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm QCA6696 Firmware | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6145P Firmware | ||
| Qualcomm SA6150P Firmware | ||
| Qualcomm SA6150P Firmware | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155 Firmware | ||
| Qualcomm SA6155 | ||
| Qualcomm SA6155P | ||
| Qualcomm SA8145P | ||
| Qualcomm SA8145P Firmware | ||
| Qualcomm SA8150P Firmware | ||
| Qualcomm SA8150P Firmware | ||
| Qualcomm SA8155P Firmware | ||
| Qualcomm SA8155 Firmware | ||
| Qualcomm SA8155 | ||
| Qualcomm SA8155P Firmware | ||
| Qualcomm SA8195P | ||
| Qualcomm SA8195P Firmware | ||
| Qualcomm SA8295P Firmware | ||
| Qualcomm SA8295P Firmware | ||
| Qualcomm SA8540P | ||
| Qualcomm SA8540P Firmware | ||
| Qualcomm SA8650P | ||
| Qualcomm SA8650P | ||
| qualcomm sa9000p firmware | ||
| Qualcomm SA9000P | ||
| Qualcomm SRV1H | ||
| Qualcomm SRV1H Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-33039?
CVE-2023-33039 is a vulnerability that involves memory corruption in Automotive Display while destroying the image handle created using connected display driver.
What software is affected by CVE-2023-33039?
The Qualcomm Qam8295p Firmware, Qualcomm Qca6574a Firmware, Qualcomm Sa6145p Firmware, Qualcomm Sa6150p Firmware, Qualcomm Sa8155 Firmware, Qualcomm Sa8195p Firmware, Qualcomm Sa8295p Firmware, and Qualcomm Sa8540p Firmware are affected.
What is the severity of CVE-2023-33039?
CVE-2023-33039 has a severity rating of 7.8 (high).
How can I fix CVE-2023-33039?
To fix CVE-2023-33039, it is recommended to apply the necessary security patches provided by Qualcomm. Please refer to the official security bulletin for more information.
Where can I find more information about CVE-2023-33039?
More information about CVE-2023-33039 can be found in the official security bulletin provided by Qualcomm.
- agent/type
- agent/references
- agent/title
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/last-modified-date
- agent/source
- agent/author
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/qualcomm
- canonical/qualcomm qam8295p
- canonical/qualcomm qam8650p
- canonical/qualcomm qam8650p firmware
- canonical/qualcomm srv1h firmware
- canonical/qualcomm qamsrv1h firmware
- canonical/qualcomm qca6574a firmware
- canonical/qualcomm qca6574 firmware
- canonical/qualcomm qca6574au
- canonical/qualcomm qca6595au firmware
- canonical/qualcomm qca6696 firmware
- canonical/qualcomm sa6145p firmware
- canonical/qualcomm sa6150p firmware
- canonical/qualcomm sa6155
- canonical/qualcomm sa6155 firmware
- canonical/qualcomm sa6155p
- canonical/qualcomm sa8145p
- canonical/qualcomm sa8145p firmware
- canonical/qualcomm sa8150p firmware
- canonical/qualcomm sa8155p firmware
- canonical/qualcomm sa8155 firmware
- canonical/qualcomm sa8155
- canonical/qualcomm sa8195p
- canonical/qualcomm sa8195p firmware
- canonical/qualcomm sa8295p firmware
- canonical/qualcomm sa8540p
- canonical/qualcomm sa8540p firmware
- canonical/qualcomm sa8650p
- canonical/qualcomm sa9000p firmware
- canonical/qualcomm sa9000p
- canonical/qualcomm srv1h