Advertisement
Top
image credit: xb100 / Freepik

Qualcomm Releases Details on Chip Vulnerabilities Exploited in Targeted Attacks

December 6, 2023

Via: The Hacker News
Category:

Chipmaker Qualcomm has released more information about three high-severity security flaws that it said came under “limited, targeted exploitation” back in October 2023.

The vulnerabilities are as follows –

  • CVE-2023-33063 (CVSS score: 7.8) – Memory corruption in DSP Services during a remote call from HLOS to DSP.
  • CVE-2023-33106 (CVSS score: 8.4) – Memory corruption in Graphics while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
  • CVE-2023-33107 (CVSS score: 8.4) – Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

Google’s Threat Analysis Group and Google Project Zero revealed back in October 2023 that the three flaws, along with CVE-2022-22071 (CVSS score: 8.4), have been exploited in the wild as part of limited, targeted attacks.

Read More on The Hacker News

RELATED PUBLICATIONS

U.S. Government Releases New AI Security Guidelines for Critical Infrastructure
How cloud cost visibility impacts business and employment
Worrying bug is kicking people out of their Apple ID accounts – here’s everything you need to know

Latest Publications

Windows 11 market share declines as users seemingly shift back to Windows 10
Huawei Watch Fit 3 official images confirm it’s an Apple Watch copycat
U.S. Government Releases New AI Security Guidelines for Critical Infrastructure
How cloud cost visibility impacts business and employment
Blurring Boundaries Between Realities In The Metaverse
Technology Curated Copyright © 2024. All rights reserved
Go to ITCurated!