CVE-2023-21658

Q: What is the severity of CVE-2023-21658?

CVE-2023-21658 has a CVSS score of 7.5 (HIGH). This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in affected Qualcomm WLAN firmware by sending specially crafted beacon or probe response frames. The vulnerability affects devices using Qualcomm WLAN chipsets with vulnerable firmware versions. Attackers within wireless range can disrupt WLAN connectivity without authentication.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in affected Qualcomm WLAN firmware by sending specially crafted beacon or probe response frames. The vulnerability affects devices using Qualcomm WLAN chipsets with vulnerable firmware versions. Attackers within wireless range can disrupt WLAN connectivity without authentication.

💻 Affected Systems

Products:

Qualcomm WLAN chipsets and devices using them

Versions: Specific vulnerable firmware versions not publicly detailed in the bulletin

Operating Systems: Android, Linux, and other OS using Qualcomm WLAN drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with Qualcomm WLAN hardware; exact chipset models not specified in the public bulletin. Requires WLAN to be enabled and connected.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete disruption of WLAN connectivity on affected devices, requiring device reboot to restore functionality. Could be used in targeted attacks to disable wireless communications.

🟠

Likely Case

Temporary WLAN disconnection or performance degradation when malicious frames are received, potentially affecting multiple devices in range.

🟢

If Mitigated

Minimal impact with proper network segmentation and updated firmware; isolated to affected wireless segments only.

🌐 Internet-Facing: MEDIUM - While the attack requires proximity to the wireless network, internet-facing wireless access points could be targeted if attackers are within range.

🏢 Internal Only: HIGH - Internal wireless networks are vulnerable to insider threats or attackers who gain physical access to facilities.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires sending crafted 802.11 frames, which can be done with standard wireless penetration testing tools. No authentication required.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Firmware updates provided by Qualcomm to OEM partners

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin

Restart Required: Yes

Instructions:

1. Contact device manufacturer for firmware updates. 2. Apply Qualcomm-provided firmware patches. 3. Reboot affected devices after patching. 4. Verify WLAN functionality post-update.

🔧 Temporary Workarounds

Disable WLAN when not needed

all

Turn off wireless functionality on critical devices when not required

Implement wireless intrusion prevention

all

Deploy WIPS to detect and block malicious beacon/probe frames

🧯 If You Can't Patch

Segment wireless networks to limit blast radius
Monitor for unusual beacon/probe response activity and implement rate limiting

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against manufacturer's security bulletins. Use Qualcomm's security advisory to identify affected chipset versions.

Check Version:

Device-specific commands vary by manufacturer; typically 'dmesg | grep -i wlan' or manufacturer-specific firmware check tools

Verify Fix Applied:

Verify firmware version has been updated to patched version from manufacturer. Test WLAN stability under normal and stress conditions.

📡 Detection & Monitoring

Log Indicators:

WLAN driver crashes
Unexpected WLAN disconnections
Firmware error messages in system logs

Network Indicators:

Unusual beacon frame patterns
Excessive probe response frames
WLAN performance degradation

SIEM Query:

source="wireless" AND (event="driver_crash" OR event="disconnection") AND process="wlan*"

📊 Metadata

CVE ID: CVE-2023-21658

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-126

Published: June 6, 2023

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Ar9380 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8064 Firmware by Qualcomm

Ipq8065 Firmware by Qualcomm

Ipq8068 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qca2062 Firmware by Qualcomm

Qca2064 Firmware by Qualcomm

Qca2065 Firmware by Qualcomm

Qca2066 Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8072 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qca9886 Firmware by Qualcomm

Qca9888 Firmware by Qualcomm

Qca9889 Firmware by Qualcomm

Qca9980 Firmware by Qualcomm

Qca9984 Firmware by Qualcomm

Qca9985 Firmware by Qualcomm

Qca9986 Firmware by Qualcomm

Qca9990 Firmware by Qualcomm

Qca9992 Firmware by Qualcomm

Qca9994 Firmware by Qualcomm

Qcc2073 Firmware by Qualcomm

Qcc2076 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcn5022 Firmware by Qualcomm

Qcn5024 Firmware by Qualcomm