Login Sign Up

CVE-2023-21646

7.5 HIGH
Denial of Service

📋 TL;DR

This vulnerability allows attackers to cause a denial-of-service condition in Qualcomm modems by sending specially crafted System Information Block 1 messages. The modem may crash or become unresponsive, affecting mobile devices and IoT devices using Qualcomm chipsets. This impacts devices with vulnerable Qualcomm modem firmware.

💻 Affected Systems

Products:
  • Qualcomm modem chipsets
Versions: Specific firmware versions not publicly detailed in bulletin
Operating Systems: Android and other mobile OS using Qualcomm modems
Default Config Vulnerable: ⚠️ Yes
Notes: Affects devices with vulnerable Qualcomm modem firmware; exact device models not specified in public bulletin.

📦 What is this software?

Ar8035 Firmware by Qualcomm

View all CVEs affecting Ar8035 Firmware →

Qca6390 Firmware by Qualcomm

View all CVEs affecting Qca6390 Firmware →

Qca6391 Firmware by Qualcomm

View all CVEs affecting Qca6391 Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6595au Firmware by Qualcomm

View all CVEs affecting Qca6595au Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Qca8081 Firmware by Qualcomm

View all CVEs affecting Qca8081 Firmware →

Qca8337 Firmware by Qualcomm

View all CVEs affecting Qca8337 Firmware →

Qcm6490 Firmware by Qualcomm

View all CVEs affecting Qcm6490 Firmware →

Qcn6024 Firmware by Qualcomm

View all CVEs affecting Qcn6024 Firmware →

Qcn9024 Firmware by Qualcomm

View all CVEs affecting Qcn9024 Firmware →

Qcs6490 Firmware by Qualcomm

View all CVEs affecting Qcs6490 Firmware →

Qcx315 Firmware by Qualcomm

View all CVEs affecting Qcx315 Firmware →

Sa515m Firmware by Qualcomm

View all CVEs affecting Sa515m Firmware →

Sd480 Firmware by Qualcomm

View all CVEs affecting Sd480 Firmware →

Sd690 5g Firmware by Qualcomm

View all CVEs affecting Sd690 5g Firmware →

Sd695 Firmware by Qualcomm

View all CVEs affecting Sd695 Firmware →

Sd765 Firmware by Qualcomm

View all CVEs affecting Sd765 Firmware →

Sd765g Firmware by Qualcomm

View all CVEs affecting Sd765g Firmware →

Sd768g Firmware by Qualcomm

View all CVEs affecting Sd768g Firmware →

Sd778g Firmware by Qualcomm

View all CVEs affecting Sd778g Firmware →

Sd780g Firmware by Qualcomm

View all CVEs affecting Sd780g Firmware →

Sd865 5g Firmware by Qualcomm

View all CVEs affecting Sd865 5g Firmware →

Sd870 Firmware by Qualcomm

View all CVEs affecting Sd870 Firmware →

Sd888 5g Firmware by Qualcomm

View all CVEs affecting Sd888 5g Firmware →

Sdx55 Firmware by Qualcomm

View all CVEs affecting Sdx55 Firmware →

Sdx55m Firmware by Qualcomm

View all CVEs affecting Sdx55m Firmware →

Sdx65 Firmware by Qualcomm

View all CVEs affecting Sdx65 Firmware →

Sdx70m Firmware by Qualcomm

View all CVEs affecting Sdx70m Firmware →

Sm4375 Firmware by Qualcomm

View all CVEs affecting Sm4375 Firmware →

Sm7250p Firmware by Qualcomm

View all CVEs affecting Sm7250p Firmware →

Sm7325p Firmware by Qualcomm

View all CVEs affecting Sm7325p Firmware →

Sm8450 Firmware by Qualcomm

View all CVEs affecting Sm8450 Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

Wcd9360 Firmware by Qualcomm

View all CVEs affecting Wcd9360 Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcn3988 Firmware by Qualcomm

View all CVEs affecting Wcn3988 Firmware →

Wcn3991 Firmware by Qualcomm

View all CVEs affecting Wcn3991 Firmware →

Wcn3998 Firmware by Qualcomm

View all CVEs affecting Wcn3998 Firmware →

Wcn6740 Firmware by Qualcomm

View all CVEs affecting Wcn6740 Firmware →

Wcn6750 Firmware by Qualcomm

View all CVEs affecting Wcn6750 Firmware →

Wcn6850 Firmware by Qualcomm

View all CVEs affecting Wcn6850 Firmware →

Wcn6851 Firmware by Qualcomm

View all CVEs affecting Wcn6851 Firmware →

Wcn6855 Firmware by Qualcomm

View all CVEs affecting Wcn6855 Firmware →

Wcn6856 Firmware by Qualcomm

View all CVEs affecting Wcn6856 Firmware →

Wcn7850 Firmware by Qualcomm

View all CVEs affecting Wcn7850 Firmware →

Wcn7851 Firmware by Qualcomm

View all CVEs affecting Wcn7851 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wsa8830 Firmware by Qualcomm

View all CVEs affecting Wsa8830 Firmware →

Wsa8835 Firmware by Qualcomm

View all CVEs affecting Wsa8835 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Permanent modem failure requiring device reboot or hardware replacement, disrupting all cellular connectivity including emergency calls.

🟠

Likely Case

Temporary modem crash causing loss of cellular service until automatic or manual reboot occurs.

🟢

If Mitigated

Minimal impact with proper network filtering and updated firmware preventing exploitation attempts.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires sending malformed SIB1 messages to target modem, which could be done from cellular network proximity.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to September 2023 Qualcomm security bulletin for specific patched versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for firmware updates. 2. Apply Qualcomm-provided modem firmware patches. 3. Reboot device after update. 4. Verify patch installation.

🔧 Temporary Workarounds

Network filtering

all

Implement network-level filtering to block malformed SIB1 messages

🧯 If You Can't Patch

  • Implement network monitoring for abnormal SIB1 traffic patterns
  • Restrict physical access to cellular network equipment in sensitive areas

🔍 How to Verify

Check if Vulnerable:

Check modem firmware version against Qualcomm's patched versions in September 2023 bulletin

Check Version:

Device-specific commands vary by manufacturer; typically in device settings or diagnostic menus

Verify Fix Applied:

Verify modem firmware has been updated to patched version and monitor for modem stability

📡 Detection & Monitoring

Log Indicators:

  • Modem crash logs
  • Unexpected modem resets
  • Cellular connectivity loss events

Network Indicators:

  • Abnormal SIB1 message patterns
  • Unexpected modem protocol violations

SIEM Query:

Search for modem crash events or cellular service disruption patterns in device logs

📊 Metadata

CVE ID: CVE-2023-21646
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-617
Published: September 5, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-21646, you might also want to check these:

CVE-2023-37015 8.6

This vulnerability allows remote attackers to cause denial of service by sending malformed ASN.1 pac...

Same vulnerability type (CWE-617)
CVE-2023-37016 8.6

CVE-2023-37016 is a remotely triggerable assertion vulnerability in Open5GS MME that allows denial o...

Same vulnerability type (CWE-617)
CVE-2023-37017 8.6

Open5GS MME versions up to 2.6.4 contain a remotely triggerable assertion via malformed ASN.1 packet...

Same vulnerability type (CWE-617)