CVE-2023-24855

CVE Database · CVE-2023-24855

· CRITICALModified

CVSS v3.1

9.8

EPSS

0.54%

Published

Oct 3, 2023

Modified

Aug 11, 2025

Public PoC / Exploit (1)

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Memory corruption in Modem while processing security related configuration before AS Security Exchange.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-823CWE-787

Affected Products (126)

qualcomm · ar8035_firmwarevulnerable

qualcomm · ar8035

qualcomm · fastconnect_6200_firmwarevulnerable

qualcomm · fastconnect_6200

qualcomm · fastconnect_6700_firmwarevulnerable

qualcomm · fastconnect_6700

qualcomm · fastconnect_6900_firmwarevulnerable

qualcomm · fastconnect_6900

qualcomm · fastconnect_7800_firmwarevulnerable

qualcomm · fastconnect_7800

qualcomm · qca6391_firmwarevulnerable

References (2)

Vendor Advisory

Vendor Advisory