What is CVE-2023-43513?

CVE-2023-43513 is a high-severity vulnerability in Qualcomm 315_5g_iot_modem, classified under CWE-823. CVSS score: 7.8/10. Published 2024-02-06.

How severe is CVE-2023-43513?

High severity. CVSS v3 base score is 7.8 out of 10.

Is CVE-2023-43513 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Qualcomm 315_5g_iot_modem

CVE-2023-43513

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

EPSS: 0.001 (1.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

product-security@qualcomm.com (Vendor Advisory)

Frequently asked questions

What is CVE-2023-43513?: CVE-2023-43513 is a high-severity vulnerability in Qualcomm 315_5g_iot_modem, classified under CWE-823. CVSS score: 7.8/10. Published 2024-02-06.
How severe is CVE-2023-43513?: High severity. CVSS v3 base score is 7.8 out of 10.
Is CVE-2023-43513 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.