Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00209.

Exploitation none

Automatable yes

Technical Impact total

Affected Vendors & Products

Vendors Products
Qualcomm Subscribe
Ar8035 Subscribe
Ar8035 Firmware Subscribe
Fastconnect 6700 Subscribe
Fastconnect 6700 Firmware Subscribe
Fastconnect 6900 Subscribe
Fastconnect 6900 Firmware Subscribe
Qca8081 Subscribe
Qca8081 Firmware Subscribe
Qca8337 Subscribe
Qca8337 Firmware Subscribe
Qcm4490 Subscribe
Qcm4490 Firmware Subscribe
Qcn6024 Subscribe
Qcn6024 Firmware Subscribe
Qcn9024 Subscribe
Qcn9024 Firmware Subscribe
Qcs4490 Subscribe
Qcs4490 Firmware Subscribe
Sm4450 Subscribe
Sm4450 Firmware Subscribe
Snapdragon 680 4g Mobile Platform Subscribe
Snapdragon 680 4g Mobile Platform Firmware Subscribe
Snapdragon 685 4g Mobile Platform Subscribe
Snapdragon 685 4g Mobile Platform Firmware Subscribe
Snapdragon X65 5g Modem-rf System Subscribe
Snapdragon X65 5g Modem-rf System Firmware Subscribe
Snapdragon X70 Modem-rf System Subscribe
Snapdragon X70 Modem-rf System Firmware Subscribe
Wcd9370 Subscribe
Wcd9370 Firmware Subscribe
Wcd9375 Subscribe
Wcd9375 Firmware Subscribe
Wcd9380 Subscribe
Wcd9380 Firmware Subscribe
Wcn3950 Subscribe
Wcn3950 Firmware Subscribe
Wcn3988 Subscribe
Wcn3988 Firmware Subscribe
Wsa8810 Subscribe
Wsa8810 Firmware Subscribe
Wsa8815 Subscribe
Wsa8815 Firmware Subscribe
Wsa8830 Subscribe
Wsa8830 Firmware Subscribe
Wsa8832 Subscribe
Wsa8832 Firmware Subscribe
Wsa8835 Subscribe
Wsa8835 Firmware Subscribe

Configuration 1 [-]

AND
cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:ar8035:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca8337:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:qualcomm:qcm4490_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcm4490:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcn6024:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcn9024:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:qualcomm:qcs4490_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs4490:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:qualcomm:sm4450_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sm4450:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:qualcomm:snapdragon_680_4g_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_680_4g_mobile_platform:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:qualcomm:snapdragon_685_4g_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_685_4g_mobile_platform:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:qualcomm:snapdragon_x65_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_x65_5g_modem-rf_system:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:qualcomm:snapdragon_x70_modem-rf_system_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_x70_modem-rf_system:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2023-37214 Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin cve-icon cve-icon
History

Thu, 17 Apr 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published:

Updated: 2025-04-17T18:51:19.706Z

Reserved: 2023-05-17T09:28:53.120Z

Link: CVE-2023-33025

cve-icon Vulnrichment

Updated: 2024-08-02T15:32:46.741Z

cve-icon NVD

Status : Modified

Published: 2024-01-02T06:15:08.967

Modified: 2024-11-21T08:04:28.040

Link: CVE-2023-33025

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses