CVE-2023-21626

HIGH

Published 2023-08-08T09:14:50.487Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-21626. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

7.1

/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14

0.001

probability

of exploitation in the wild

There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25

Exploit Probability

Percentile: 0.155

Higher than 15.5% of all CVEs

Attack Vector Metrics

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Impact Metrics

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Description

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Qualcomm, Inc.

Snapdragon

Affected Versions:

APQ8009 APQ8017 APQ8037 AQT1000 AR8035 CSRA6620 CSRA6640 CSRB31024 FSM10056 MDM8207 MDM9205 MDM9206 MDM9207 MDM9607 MDM9628 MSM8108 MSM8208 MSM8209 MSM8608 MSM8917 MSM8920 MSM8937 MSM8940 PM8937 QAM8295P QCA4004 QCA4020 QCA6174A QCA6310 QCA6320 QCA6335 QCA6390 QCA6391 QCA6420 QCA6421 QCA6426 QCA6430 QCA6431 QCA6436 QCA6564 QCA6564A QCA6564AU QCA6574 QCA6574A QCA6574AU QCA6595 QCA6595AU QCA6696 QCA8081 QCA8337 QCA9367 QCA9377 QCA9379 QCM2290 QCM4290 QCM6125 QCM6490 QCN7606 QCS2290 QCS405 QCS410 QCS4290 QCS603 QCS605 QCS610 QCS6125 QCS6490 QCS8155 QCX315 QSM8350 Qualcomm215 SA4150P SA4155P SA415M SA515M SA6145P SA6150P SA6155 SA6155P SA8145P SA8150P SA8155 SA8155P SA8195P SA8295P SA8540P SA9000P SC8180X+SDX55 SD 455 SD 636 SD 675 SD 8 Gen1 5G SD 8cx Gen2 SD 8cx Gen3 SD205 SD210 SD429 SD439 SD450 SD460 SD480 SD625 SD626 SD632 SD660 SD662 SD665 SD670 SD675 SD678 SD680 SD690 5G SD695 SD710 SD720G SD730 SD750G SD765 SD765G SD768G SD778G SD780G SD7c SD835 SD845 SD850 SD855 SD865 5G SD870 SD888 SD888 5G SDA429W SDM429W SDM630 SDX24 SDX50M SDX55 SDX55M SDX65 SDXR1 SDXR2 5G SM4125 SM4375 SM6250 SM6250P SM7250P SM7315 SM7325P SXR2150P WCD9306 WCD9326 WCD9330 WCD9335 WCD9340 WCD9341 WCD9360 WCD9370 WCD9371 WCD9375 WCD9380 WCD9385 WCN3610 WCN3615 WCN3620 WCN3660 WCN3660B WCN3680 WCN3680B WCN3910 WCN3950 WCN3980 WCN3988 WCN3990 WCN3991 WCN3998 WCN6740 WCN6750 WCN6850 WCN6851 WCN6855 WCN6856 WSA8810 WSA8815 WSA8830 WSA8835

qualcomm

snapdragon

Affected Versions:

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-mx82-492r-vjvf

Advisory Details

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-21626

WEB https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin

Advisory provided by GitHub Security Advisory Database. Published: August 8, 2023, Modified: April 4, 2024

References

https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin

Published: 2023-08-08T09:14:50.487Z

Last Modified: 2024-10-24T18:59:08.395Z

Copied to clipboard!

CVE-2023-21626

Expert Analysis

CVSS Score

EPSS Score

Attack Vector Metrics

Impact Metrics

Description

Available Exploits

Related News

Affected Products

Snapdragon

Affected Versions:

snapdragon

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!