What is the severity of CVE-2023-43520?

CVE-2023-43520 is classified with a high severity due to the potential for memory corruption affecting the parsing of beacon TID to link mapping information.

How do I fix CVE-2023-43520?

To fix CVE-2023-43520, update your devices or firmware to the latest version provided by the affected manufacturers, which includes patches for the vulnerability.

Which devices are affected by CVE-2023-43520?

CVE-2023-43520 affects several devices, primarily those running Google Android, as well as various Qualcomm firmware such as Fastconnect and Snapdragon.

How can I mitigate CVE-2023-43520?

Mitigation for CVE-2023-43520 involves applying updates from device manufacturers promptly and ensuring that all network configurations are secure.

What type of vulnerability is CVE-2023-43520?

CVE-2023-43520 is a memory corruption vulnerability that can potentially allow an attacker to manipulate or disrupt normal system operation.

Vulnerability/
CVE-2023-43520

critical

9.8

CWE

787 121

5/2/2024

6/2/2024

20/11/2024

CVE-2023-43520: Stack-based Buffer Overflow in WLAN HOST

First published: Mon Feb 05 2024(Updated: )

Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
All of
Qualcomm AR8035 Firmware
Qualcomm AR8035 Firmware
All of
Qualcomm FastConnect 6900 Firmware
Qualcomm Fastconnect 6900 Firmware
All of
Qualcomm FastConnect 7800 Firmware
Qualcomm Fastconnect 7800 Firmware
All of
Qualcomm Flight RB5 5G Firmware
Qualcomm Snapdragon 430 Mobile Platform Firmware
All of
Qualcomm QAM8255P
Qualcomm QAM8255P Firmware
All of
Qualcomm QAM8650P Firmware
Qualcomm QAM8650P Firmware
All of
Qualcomm QAM8775P
Qualcomm QAM8775P Firmware
All of
Qualcomm SRV1H Firmware
Qualcomm QAMSRV1H Firmware
All of
Qualcomm QAMSRV1M Firmware
Qualcomm QAMSRV1M Firmware
All of
Qualcomm QCA6391 Firmware
Qualcomm QCA6391 Firmware
All of
qualcomm qca6554a firmware
qualcomm qca6554a firmware
All of
Qualcomm QCA6564AU Firmware
Qualcomm QCA6564A
All of
Qualcomm QCA6574 Firmware
Qualcomm QCA6574 Firmware
All of
Qualcomm QCA6574A Firmware
qualcomm qca6574a firmware
All of
Qualcomm QCA6574 Firmware
Qualcomm QCA6574AU
All of
Qualcomm QCA6584AU Firmware
Qualcomm QCA6584AU firmware
All of
Qualcomm QCA6595AU Firmware
Qualcomm QCA6595AU Firmware
All of
Qualcomm QCA6595AU Firmware
Qualcomm QCA6595AU Firmware
All of
qualcomm qca6688aq firmware
Qualcomm QCA6688AQ
All of
Qualcomm QCA6696 Firmware
Qualcomm QCA6696 Firmware
All of
Qualcomm QCA8081 firmware
Qualcomm QCA8081 firmware
All of
Qualcomm QCA8337 Firmware
Qualcomm QCA8337 Firmware
All of
Qualcomm QCC2073 Firmware
Qualcomm QCC2073 Firmware
All of
Qualcomm Qcc2076 Firmware
Qualcomm Qcc2076 Firmware
All of
Qualcomm QCC710
Qualcomm QCC710
All of
Qualcomm QCM8550 Firmware
Qualcomm QCM8550 Firmware
All of
Qualcomm QCN6224 Firmware
Qualcomm QCN6224 Firmware
All of
Qualcomm QCN6274 Firmware
Qualcomm QCN6274 Firmware
All of
Qualcomm QCS7230 Firmware
Qualcomm QCS7230 Firmware
All of
Qualcomm QCS8250 Firmware
Qualcomm QCS8250 Firmware
All of
Qualcomm QCS8550 Firmware
Qualcomm QCS8550 Firmware
All of
Qualcomm QFW7114 Firmware
Qualcomm QFW7114 Firmware
All of
Qualcomm QFW7124
Qualcomm QFW7124
All of
Qualcomm QRB5165N Firmware
qualcomm qrb5165n firmware
All of
Qualcomm Video Collaboration VC5 Platform Firmware
Qualcomm Video Collaboration VC5 Platform Firmware
All of
Qualcomm Robotics RB5
Qualcomm Robotics RB5
All of
Qualcomm SA6145P Firmware
Qualcomm SA6145P Firmware
All of
Qualcomm SA6150P Firmware
Qualcomm SA6150P Firmware
All of
Qualcomm SA6155
Qualcomm SA6155P
All of
Qualcomm SA8145P
Qualcomm SA8145P Firmware
All of
Qualcomm SA8150P Firmware
Qualcomm SA8150P Firmware
All of
Qualcomm SA8155
Qualcomm SA8155P Firmware
All of
Qualcomm SA8195P
Qualcomm SA8195P Firmware
All of
Qualcomm SA8255P Firmware
Qualcomm SA8255P Firmware
All of
Qualcomm SA8650P
Qualcomm SA8650P
All of
Qualcomm SA8770P Firmware
qualcomm sa8770p firmware
All of
Qualcomm SA8775P
Qualcomm SA8775P
All of
Qualcomm SA9000P Firmware
Qualcomm SA9000P Firmware
All of
Qualcomm SM8550P Firmware
Qualcomm SM8550P Firmware
All of
Qualcomm Snapdragon 8+ Gen 2 Mobile Platform Firmware
Qualcomm Snapdragon 8 Gen 2
All of
Qualcomm Snapdragon 8+ Gen 2 Mobile Platform Firmware
Qualcomm Snapdragon 8+ Gen 2 Mobile Platform
All of
Qualcomm Snapdragon AR2 Gen 1 Firmware
Qualcomm Snapdragon AR2 Gen 1 Platform Firmware
All of
Qualcomm Snapdragon X75 5G Modem-RF System Firmware
Qualcomm Snapdragon X75 5G Modem-RF
All of
Qualcomm SRV1H
Qualcomm SRV1H Firmware
All of
Qualcomm SRV1M
Qualcomm SRV1M Firmware
All of
Qualcomm SSG2115P Firmware
Qualcomm SSG2115P Firmware
All of
Qualcomm SSG2125P
Qualcomm SSG2125P
All of
Qualcomm SXR1230P
Qualcomm SXR1230P Firmware
All of
Qualcomm SXR2230P
Qualcomm SXR2230P
All of
Qualcomm WCD9340 Firmware
Qualcomm WCD9340 Firmware
All of
Qualcomm WCD9380
Qualcomm WCD9380 Firmware
All of
Qualcomm WCD9385
Qualcomm WCD9385 Firmware
All of
Qualcomm WCD9390 Firmware
Qualcomm WCD9390 Firmware
All of
Qualcomm WCD9395 Firmware
Qualcomm WCD9395 Firmware
All of
Qualcomm WSA8830
Qualcomm WSA8830
All of
Qualcomm WSA8832 Firmware
Qualcomm WSA8832 Firmware
All of
Qualcomm WSA8835
Qualcomm WSA8835 Firmware
All of
Qualcomm WSA8840 Firmware
Qualcomm WSA8840 Firmware
All of
Qualcomm WSA8845H
Qualcomm WSA8845 Firmware
All of
Qualcomm WSA8845 Firmware
Qualcomm WSA8845H Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-43520?
CVE-2023-43520 is classified with a high severity due to the potential for memory corruption affecting the parsing of beacon TID to link mapping information.
How do I fix CVE-2023-43520?
To fix CVE-2023-43520, update your devices or firmware to the latest version provided by the affected manufacturers, which includes patches for the vulnerability.
Which devices are affected by CVE-2023-43520?
CVE-2023-43520 affects several devices, primarily those running Google Android, as well as various Qualcomm firmware such as Fastconnect and Snapdragon.
How can I mitigate CVE-2023-43520?
Mitigation for CVE-2023-43520 involves applying updates from device manufacturers promptly and ensuring that all network configurations are secure.
What type of vulnerability is CVE-2023-43520?
CVE-2023-43520 is a memory corruption vulnerability that can potentially allow an attacker to manipulate or disrupt normal system operation.