CVE-2023-21660

Q: What is the severity of CVE-2023-21660?

CVE-2023-21660 has a CVSS score of 7.5 (HIGH). This vulnerability allows attackers to cause a denial-of-service (DoS) condition in WLAN firmware by sending specially crafted Fast Transition (FT) Information Elements. It affects devices with Qualcomm WLAN chipsets that haven't been patched, potentially disrupting wireless connectivity.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in WLAN firmware by sending specially crafted Fast Transition (FT) Information Elements. It affects devices with Qualcomm WLAN chipsets that haven't been patched, potentially disrupting wireless connectivity.

💻 Affected Systems

Products:

Qualcomm WLAN chipsets and devices using them

Versions: Specific affected versions not publicly detailed in bulletin

Operating Systems: Android, Linux-based systems with Qualcomm WLAN

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with vulnerable Qualcomm WLAN firmware versions. Exact device models not specified in public bulletin.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete wireless network disruption requiring device reboot, potentially affecting multiple connected devices simultaneously.

🟠

Likely Case

Temporary wireless connectivity loss for affected devices until firmware recovers or device is restarted.

🟢

If Mitigated

Minimal impact with proper network segmentation and updated firmware.

🌐 Internet-Facing: MEDIUM - Attackers could target wireless networks from nearby locations, but requires proximity and specific wireless conditions.

🏢 Internal Only: LOW - Internal attackers would need physical proximity and specialized wireless equipment to exploit.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires wireless proximity and knowledge of WLAN protocols. No public exploit code available as of knowledge cutoff.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to June 2023 Qualcomm security bulletin for specific patched versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided firmware patches. 3. Reboot device after patching. 4. Verify wireless functionality post-update.

🔧 Temporary Workarounds

Disable Fast Transition (FT)

all

Disable 802.11r Fast Transition feature if not required

# Configuration varies by device/wireless controller
# Consult device-specific documentation for FT disable commands

Network Segmentation

all

Segment wireless networks to limit blast radius

# Implement VLAN segmentation
# Use separate SSIDs for different device classes

🧯 If You Can't Patch

Implement wireless intrusion detection/prevention systems (WIDS/WIPS)
Monitor for unusual wireless disconnection patterns and FT protocol anomalies

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm's patched versions in June 2023 bulletin

Check Version:

# Command varies by device: adb shell getprop ro.build.fingerprint (Android) or similar firmware check

Verify Fix Applied:

Verify firmware version has been updated to patched version and test wireless connectivity stability

📡 Detection & Monitoring

Log Indicators:

Multiple wireless disconnection events
WLAN firmware crash logs
Unexpected FT protocol errors

Network Indicators:

Unusual FT information element patterns
Spoofed FT authentication frames
Abnormal wireless disconnection rates

SIEM Query:

wireless AND (disconnect OR crash) AND (FT OR 802.11r) | stats count by device_ip

📊 Metadata

CVE ID: CVE-2023-21660

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-126

Published: June 6, 2023

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Csr8811 Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qca9888 Firmware by Qualcomm

Qca9889 Firmware by Qualcomm

Qcc2073 Firmware by Qualcomm

Qcc2076 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcn5022 Firmware by Qualcomm

Qcn5024 Firmware by Qualcomm

Qcn5052 Firmware by Qualcomm

Qcn5122 Firmware by Qualcomm

Qcn5124 Firmware by Qualcomm

Qcn5152 Firmware by Qualcomm

Qcn5154 Firmware by Qualcomm

Qcn5164 Firmware by Qualcomm

Qcn6023 Firmware by Qualcomm

Qcn6024 Firmware by Qualcomm

Qcn6122 Firmware by Qualcomm

Qcn6132 Firmware by Qualcomm

Qcn9000 Firmware by Qualcomm

Qcn9022 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcn9070 Firmware by Qualcomm

Qcn9072 Firmware by Qualcomm

Qcn9074 Firmware by Qualcomm

Qcn9100 Firmware by Qualcomm

Qcn9274 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Sm8450 Firmware by Qualcomm

Snapdragon Ar2 Gen 1 Platform Firmware by Qualcomm

Ssg2115p Firmware by Qualcomm

Ssg2125p Firmware by Qualcomm

Sxr1230p Firmware by Qualcomm

Sxr2230p Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn6750 Firmware by Qualcomm

Wcn685x 1 Firmware by Qualcomm

Wcn685x 5 Firmware by Qualcomm

Wcn785x 1 Firmware by Qualcomm

Wcn785x 5 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm