high
7
CWE
416 362
Advisory Published
Updated

CVE-2023-43543: Use After Free in Audio

First published: Mon Jun 03 2024(Updated: )

Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph object.

Credit: product-security@qualcomm.com

Affected SoftwareAffected VersionHow to fix
All of
Qualcomm QAM8255P
Qualcomm QAM8255P Firmware
All of
Qualcomm QAM8775P
qualcomm qam8775p Firmware
All of
qualcomm QCA6584AU firmware
Qualcomm QCA6584
All of
Qualcomm QCA6698AQ
Qualcomm QCA6698AQ Firmware
All of
Qualcomm SA8255P Firmware
Qualcomm SA8255P Firmware
All of
qualcomm sa8770p
qualcomm sa8770p firmware
All of
Qualcomm SA8775P
Qualcomm SA8775P
All of
qualcomm sa9000p firmware
Qualcomm SA9000P
All of
Qualcomm Snapdragon Auto 5G-RF Gen 2 Firmware
Qualcomm Snapdragon Auto 5G Modem-RF
All of
qualcomm snapdragon w5+ gen 1 wearable firmware
Qualcomm Snapdragon W5+ Gen 1 Wearable
All of
Qualcomm SW5100P
Qualcomm SW5100P
All of
Qualcomm SW5100 Firmware
Qualcomm SW5100 Firmware
All of
Qualcomm Wcn3980
qualcomm wcn3980 firmware
All of
qualcomm wcn3988 firmware
Qualcomm WCN3988
All of
Qualcomm WSA8830
Qualcomm WSA8830
All of
Qualcomm WSA8835
Qualcomm WSA8835 Firmware

Remedy

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2023-43543?

    The severity of CVE-2023-43543 is critical due to memory corruption vulnerabilities in the audio handling of affected firmware.

  • How do I fix CVE-2023-43543?

    To fix CVE-2023-43543, users should update their Qualcomm firmware to the latest version provided by the manufacturer.

  • What types of devices are affected by CVE-2023-43543?

    CVE-2023-43543 affects various Qualcomm devices including QAM8255P, QAM8775P, QCA6584AU, and others listed in the vulnerability report.

  • What are the potential impacts of CVE-2023-43543?

    The potential impacts of CVE-2023-43543 include system crashes, arbitrary code execution, and unauthorized access during audio playback or recording.

  • Is there a workaround for CVE-2023-43543 until a patch is applied?

    Currently, there are no known effective workarounds for CVE-2023-43543, and updating the firmware is recommended for mitigation.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203