CVE-2023-43512

CVE Database · CVE-2023-43512

CVE-2023-43512

· HIGHModified

CVSS v3.1

7.5

EPSS

0.32%

Published

Jan 2, 2024

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Weaknesses (CWE)

CWE-126CWE-125

Affected Products (2)

qualcomm · qcn7606_firmwarevulnerable

qualcomm · qcn7606

References (2)

https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs