1. Home
  2. CVE Database
  3. CVE-2023-28576
MEDIUM · 6.4

CVE-2023-28576

The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g....

Vulnerability Description

The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to out-of-bounds read/write issues.

CVSS Score

6.4

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommFastconnect 6800 Firmware-
QualcommFastconnect 6800-
QualcommFastconnect 6900 Firmware-
QualcommFastconnect 6900-
QualcommFastconnect 7800 Firmware-
QualcommFastconnect 7800-
QualcommQca6391 Firmware-
QualcommQca6391-
QualcommQca6426 Firmware-
QualcommQca6426-
QualcommQca6436 Firmware-
QualcommQca6436-
QualcommQcn9074 Firmware-
QualcommQcn9074-
QualcommQcs410 Firmware-
QualcommQcs410-
QualcommQcs610 Firmware-
QualcommQcs610-
QualcommSd865 5G Firmware-
QualcommSd865 5G-

Related Weaknesses (CWE)

CWE-367

References

FAQ

What is CVE-2023-28576?

CVE-2023-28576 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g....

How severe is CVE-2023-28576?

CVE-2023-28576 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-28576?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Fastconnect 6800 Firmware, Qualcomm Fastconnect 6800, Qualcomm Fastconnect 6900 Firmware, Qualcomm Fastconnect 6900, Qualcomm Fastconnect 7800 Firmware.