Medium severity6.4NVD Advisory· Published Aug 8, 2023· Updated Jun 17, 2026
CVE-2023-28576
CVE-2023-28576
Description
The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to out-of-bounds read/write issues.
Affected products
2- Qualcomm, Inc./Snapdragonv5Range: FastConnect 6800
Patches
Vulnerability mechanics
References
1- www.qualcomm.com/company/product-security/bulletins/august-2023-bulletinnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.