CVE-2023-28543

A malformed DLC can trigger Memory Corruption in SNPE library due to out of bounds read, such as by loading an untrusted model (e.g. from a remote source).
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:sd845_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd845:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-09-05 07:15

Updated : 2024-11-21 07:55


NVD link : CVE-2023-28543

Mitre link : CVE-2023-28543

CVE.ORG link : CVE-2023-28543


JSON object : View

Products Affected

qualcomm

  • sd845_firmware
  • qcs605_firmware
  • qcs405_firmware
  • qcs605
  • sd855_firmware
  • sd855
  • sd845
  • qcs405
CWE
CWE-125

Out-of-bounds Read