What is the severity of CVE-2023-33060?

CVE-2023-33060 has been classified with a severity rating that indicates a potentially significant risk of a transient Denial of Service (DoS) in Core.

How do I fix CVE-2023-33060?

To address CVE-2023-33060, ensure that the affected systems are updated with the latest firmware and security patches provided by the vendor.

What systems are affected by CVE-2023-33060?

CVE-2023-33060 affects several Qualcomm firmware products, including those related to Android and specific Qualcomm chipsets.

What type of vulnerability is CVE-2023-33060?

CVE-2023-33060 is categorized as a transient denial-of-service (DoS) vulnerability that occurs when DDR memory checks are improperly handled.

Is there a workaround for CVE-2023-33060?

Currently, there are no documented workarounds for CVE-2023-33060, and applying updates is the recommended course of action.

Vulnerability/
CVE-2023-33060

high

7.1

CWE

125 126

5/2/2024

6/2/2024

20/11/2024

CVE-2023-33060: Buffer Over-read in Core

First published: Mon Feb 05 2024(Updated: )

Transient DOS in Core when DDR memory check is called while DDR is not initialized.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
All of
Qualcomm ar8035 firmware
Qualcomm ar8035
All of
qualcomm fastconnect 6700 Firmware
qualcomm fastconnect 6700
All of
qualcomm fastconnect 6900 Firmware
qualcomm fastconnect 6900
All of
qualcomm fastconnect 7800 firmware
qualcomm fastconnect 7800
All of
qualcomm QCA6584AU firmware
qualcomm QCA6584AU
All of
qualcomm qca6698aq firmware
qualcomm qca6698aq
All of
qualcomm QCA8081 firmware
qualcomm QCA8081
All of
qualcomm qca8337 firmware
qualcomm qca8337
All of
qualcomm qcc710 firmware
qualcomm qcc710
All of
qualcomm qcm4490 Firmware
qualcomm qcm4490
All of
qualcomm qcm8550 firmware
qualcomm qcm8550
All of
qualcomm qcn6024 firmware
qualcomm qcn6024
All of
qualcomm qcn6224 firmware
Qualcomm Qcn6224
All of
qualcomm qcn6274 firmware
qualcomm qcn6274
All of
qualcomm qcn9024 firmware
qualcomm qcn9024
All of
qualcomm qcs4490 Firmware
qualcomm qcs4490
All of
qualcomm qcs8550 firmware
qualcomm qcs8550
All of
qualcomm qfw7114 firmware
qualcomm qfw7114
All of
Qualcomm Qfw7124 Firmware
qualcomm qfw7124
All of
qualcomm sg8275p firmware
qualcomm sg8275p
All of
qualcomm sm8550p firmware
qualcomm sm8550p
All of
qualcomm snapdragon 4 gen 2 mobile platform Firmware
qualcomm snapdragon 4 gen 2 mobile platform
All of
qualcomm snapdragon 8 gen 1 mobile platform firmware
qualcomm snapdragon 8 gen 1 mobile platform
All of
qualcomm snapdragon 8 gen 2 mobile platform firmware
qualcomm snapdragon 8 gen 2 mobile platform
All of
Qualcomm Snapdragon 8 Gen 3 Mobile Firmware
Qualcomm snapdragon 8 gen 3 mobile platform
All of
qualcomm snapdragon 8\+ gen 1 mobile platform firmware
qualcomm snapdragon 8\+ gen 1 mobile platform
All of
qualcomm snapdragon 8\+ gen 2 mobile platform firmware
qualcomm snapdragon 8\+ gen 2 mobile platform
All of
Qualcomm Snapdragon Auto 5G-RF Gen 2 Firmware
qualcomm snapdragon auto 5g modem-rf gen 2
All of
qualcomm snapdragon x65 5g modem-rf system firmware
qualcomm snapdragon x65 5g modem-rf system
All of
qualcomm snapdragon x70 modem-rf system firmware
qualcomm snapdragon x70 modem-rf system
All of
qualcomm snapdragon x75 5g modem-rf system firmware
qualcomm snapdragon x75 5g modem-rf system
All of
qualcomm wcd9340 firmware
qualcomm wcd9340
All of
Qualcomm wcd9370 firmware
Qualcomm wcd9370
All of
qualcomm wcd9380 firmware
qualcomm wcd9380
All of
qualcomm wcd9385 firmware
qualcomm wcd9385
All of
qualcomm wcd9390 firmware
qualcomm wcd9390
All of
qualcomm wcd9395 firmware
qualcomm wcd9395
All of
Qualcomm WCN3950 Firmware
qualcomm wcn3950
All of
qualcomm wcn3988 firmware
Qualcomm WCN3988
All of
qualcomm wsa8810 firmware
qualcomm wsa8810
All of
qualcomm wsa8815 firmware
qualcomm wsa8815
All of
qualcomm wsa8830 firmware
qualcomm wsa8830
All of
qualcomm wsa8832 firmware
qualcomm wsa8832
All of
qualcomm wsa8835 firmware
qualcomm wsa8835
All of
qualcomm wsa8840 firmware
qualcomm wsa8840
All of
qualcomm wsa8845 firmware
qualcomm wsa8845
All of
qualcomm wsa8845h firmware
Qualcomm Wsa8845h
Android

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-33060?
CVE-2023-33060 has been classified with a severity rating that indicates a potentially significant risk of a transient Denial of Service (DoS) in Core.
How do I fix CVE-2023-33060?
To address CVE-2023-33060, ensure that the affected systems are updated with the latest firmware and security patches provided by the vendor.
What systems are affected by CVE-2023-33060?
CVE-2023-33060 affects several Qualcomm firmware products, including those related to Android and specific Qualcomm chipsets.
What type of vulnerability is CVE-2023-33060?
CVE-2023-33060 is categorized as a transient denial-of-service (DoS) vulnerability that occurs when DDR memory checks are improperly handled.
Is there a workaround for CVE-2023-33060?
Currently, there are no documented workarounds for CVE-2023-33060, and applying updates is the recommended course of action.