🛡️ CVE-2023-24855
🔴 CVSS 9.8 — Critical ✅ No Known Exploit CWE-823 NVD
9.8
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

Memory corruption in Modem while processing security related configuration before AS Security Exchange.

Details

Severity CRITICAL
CVSS Score 9.8
CVSS Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE CWE-823
Public Exploit ✅ No
Source NVD
Published 2023-10-03
Updated 2026-06-08
Modified 2025-08-11
Fix URL N/A

Affected Packages

Software From version Fixed in
ar8035-firmware
fastconnect-6200-firmware
fastconnect-6700-firmware
fastconnect-6900-firmware
fastconnect-7800-firmware
qca6391-firmware
qca8081-firmware
qca8337-firmware
qcc710-firmware
qcm4490-firmware
qcm6490-firmware
qcm8550-firmware
qcn6024-firmware
qcn6224-firmware
qcn6274-firmware
qcn9024-firmware
qcs4490-firmware
qcs6490-firmware
qcs8550-firmware
qfw7114-firmware
qfw7124-firmware
sdx57m-firmware
sg8275p-firmware
sm4350-ac-firmware
sm7325-ae-firmware
sm7325-af-firmware
sm7325p-firmware
sm8350-ac-firmware
sm8550p-firmware
snapdragon-4-gen-1-mobile-platform-firmware
snapdragon-4-gen-2-mobile-platform-firmware
snapdragon-480-5g-mobile-platform-firmware
snapdragon-695-5g-mobile-platform-firmware
snapdragon-778g-5g-mobile-platform-firmware
snapdragon-780g-5g-mobile-platform-firmware
snapdragon-7c\+-gen-3-compute-firmware
snapdragon-8-gen-1-mobile-platform-firmware
snapdragon-8-gen-2-mobile-platform-firmware
snapdragon-8\+-gen-1-mobile-platform-firmware
snapdragon-8\+-gen-2-mobile-platform-firmware
snapdragon-888-5g-mobile-platform-firmware
snapdragon-x65-5g-modem-rf-system-firmware
snapdragon-x70-modem-rf-system-firmware
snapdragon-x75-5g-modem-rf-system-firmware
video-collaboration-vc3-platform-firmware
wcd9340-firmware
wcd9370-firmware
wcd9375-firmware
wcd9380-firmware
wcd9385-firmware
wcd9390-firmware
wcd9395-firmware
wcn3950-firmware
wcn3988-firmware
wcn6740-firmware
wsa8810-firmware
wsa8815-firmware
wsa8830-firmware
wsa8832-firmware
wsa8835-firmware
wsa8840-firmware
wsa8845-firmware
wsa8845h-firmware

Similar Threats

Patch Gap Protection

Running software with known vulnerabilities?

BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.

Start Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.