CVE-2023-33028

Q: What is the severity of CVE-2023-33028?

CVE-2023-33028 has a CVSS score of 9.8 (CRITICAL). This vulnerability allows memory corruption in Qualcomm WLAN firmware during PMK cache operations, potentially enabling remote code execution. It affects devices with vulnerable Qualcomm WLAN chipsets. Attackers could exploit this to gain control of affected wireless devices.

9.8 CRITICAL

Remote Code Execution

📋 TL;DR

This vulnerability allows memory corruption in Qualcomm WLAN firmware during PMK cache operations, potentially enabling remote code execution. It affects devices with vulnerable Qualcomm WLAN chipsets. Attackers could exploit this to gain control of affected wireless devices.

💻 Affected Systems

Products:

Qualcomm WLAN chipsets and devices using them

Versions: Specific firmware versions not detailed in public advisory

Operating Systems: Android, Linux, and other OS using Qualcomm WLAN

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with vulnerable Qualcomm WLAN firmware; exact chipset models not specified in public advisory.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote attacker executes arbitrary code with kernel privileges, leading to complete device compromise, data theft, and persistent backdoor installation.

🟠

Likely Case

Remote code execution leading to device takeover, network infiltration, or denial of service attacks on wireless infrastructure.

🟢

If Mitigated

Limited impact with proper network segmentation, but still poses risk to isolated wireless networks.

🌐 Internet-Facing: HIGH - Exploitable over wireless networks without authentication, affecting internet-connected devices.

🏢 Internal Only: HIGH - Exploitable on internal wireless networks, potentially allowing lateral movement.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Memory corruption vulnerabilities in wireless firmware are attractive targets; exploitation requires wireless proximity or network access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to October 2023 Qualcomm security bulletin

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided firmware patches. 3. Reboot device after patching. 4. Verify patch installation.

🔧 Temporary Workarounds

Disable vulnerable WLAN features

all

Disable PMK caching or related WLAN features if not required

Device-specific configuration commands vary by manufacturer

Network segmentation

all

Isolate vulnerable wireless devices from critical networks

Configure VLANs and firewall rules to restrict wireless network access

🧯 If You Can't Patch

Segment wireless networks from critical infrastructure using firewalls
Implement network monitoring for unusual WLAN traffic patterns

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm security bulletin; use manufacturer-specific diagnostic tools.

Check Version:

Manufacturer-specific commands vary (e.g., Android: 'getprop ro.build.fingerprint', Linux: check /sys/class/net/wlan0/device files)

Verify Fix Applied:

Verify firmware version matches patched version from manufacturer; test WLAN functionality.

📡 Detection & Monitoring

Log Indicators:

WLAN firmware crashes
Unexpected memory access errors in wireless logs
Abnormal PMK cache operations

Network Indicators:

Unusual wireless protocol anomalies
Suspicious WLAN management frames

SIEM Query:

Search for WLAN firmware error codes or crash events in device logs

📊 Metadata

CVE ID: CVE-2023-33028

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-121

Published: October 3, 2023

Last Updated: August 11, 2025

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Ar9380 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8064 Firmware by Qualcomm

Ipq8065 Firmware by Qualcomm

Ipq8068 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9570 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qca0000 Firmware by Qualcomm

Qca2062 Firmware by Qualcomm

Qca2064 Firmware by Qualcomm

Qca2065 Firmware by Qualcomm

Qca2066 Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6390 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8072 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qca9886 Firmware by Qualcomm

Qca9888 Firmware by Qualcomm

Qca9889 Firmware by Qualcomm

Qca9980 Firmware by Qualcomm

Qca9984 Firmware by Qualcomm

Qca9985 Firmware by Qualcomm

Qca9986 Firmware by Qualcomm

Qca9990 Firmware by Qualcomm

Qca9992 Firmware by Qualcomm

Qca9994 Firmware by Qualcomm