CVE-2023-33082

Q: What is the severity of CVE-2023-33082?

CVE-2023-33082 has a CVSS score of 9.8 (CRITICAL). This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via memory corruption in Qualcomm Wi-Fi chipsets. It affects devices using vulnerable Qualcomm wireless chipsets when processing specially crafted association requests containing MBO information elements.

9.8 CRITICAL

Remote Code Execution Denial of Service

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via memory corruption in Qualcomm Wi-Fi chipsets. It affects devices using vulnerable Qualcomm wireless chipsets when processing specially crafted association requests containing MBO information elements.

💻 Affected Systems

Products:

Qualcomm Wi-Fi chipsets and devices using them

Versions: Specific chipset firmware versions as listed in Qualcomm advisory

Operating Systems: Android, Linux, and other OS using Qualcomm Wi-Fi drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with Wi-Fi enabled and using vulnerable chipset firmware. Exact product list in Qualcomm advisory.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Denial of service (device crash/reboot) or limited code execution within Wi-Fi subsystem context.

🟢

If Mitigated

Limited impact if network segmentation prevents Wi-Fi access from untrusted sources.

🌐 Internet-Facing: HIGH - Exploitable over Wi-Fi without authentication from nearby attackers.

🏢 Internal Only: MEDIUM - Requires physical proximity or internal network Wi-Fi access.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Requires crafting malicious Wi-Fi frames but no authentication needed. CVSS 9.8 indicates critical severity.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm December 2023 security bulletin for specific firmware versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided firmware patches. 3. Reboot device after update.

🔧 Temporary Workarounds

Disable Wi-Fi

linux

Temporarily disable Wi-Fi functionality to prevent exploitation

nmcli radio wifi off
ip link set wlan0 down

Network segmentation

all

Isolate Wi-Fi networks from critical infrastructure

🧯 If You Can't Patch

Implement strict network access controls for Wi-Fi interfaces
Monitor for unusual Wi-Fi association attempts and device crashes

🔍 How to Verify

Check if Vulnerable:

Check device chipset model and firmware version against Qualcomm advisory

Check Version:

cat /sys/class/net/wlan0/device/firmware_version (Linux) or check device settings

Verify Fix Applied:

Verify firmware version matches patched version in Qualcomm bulletin

📡 Detection & Monitoring

Log Indicators:

Wi-Fi driver crashes
Unexpected device reboots
Failed association attempts with malformed frames

Network Indicators:

Unusual Wi-Fi association requests containing MBO IE
Spoofed BTM queries/responses

SIEM Query:

source="wifi_logs" AND (event="driver_crash" OR event="association_failure")

📊 Metadata

CVE ID: CVE-2023-33082

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-120

Published: December 5, 2023

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Ar9380 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq4018 Firmware by Qualcomm

Ipq4019 Firmware by Qualcomm

Ipq4028 Firmware by Qualcomm

Ipq4029 Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8064 Firmware by Qualcomm

Ipq8065 Firmware by Qualcomm

Ipq8068 Firmware by Qualcomm

Ipq8070 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9570 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Pmp8074 Firmware by Qualcomm

Qca0000 Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca7500 Firmware by Qualcomm

Qca8072 Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qca9531 Firmware by Qualcomm

Qca9558 Firmware by Qualcomm

Qca9563 Firmware by Qualcomm

Qca9880 Firmware by Qualcomm

Qca9886 Firmware by Qualcomm

Qca9888 Firmware by Qualcomm

Qca9889 Firmware by Qualcomm

Qca9898 Firmware by Qualcomm

Qca9980 Firmware by Qualcomm

Qca9984 Firmware by Qualcomm

Qca9985 Firmware by Qualcomm

Qca9986 Firmware by Qualcomm

Qca9988 Firmware by Qualcomm

Qca9990 Firmware by Qualcomm

Qca9992 Firmware by Qualcomm

Qca9994 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcf8000 Firmware by Qualcomm

Qcn5021 Firmware by Qualcomm

Qcn5022 Firmware by Qualcomm

Qcn5024 Firmware by Qualcomm

Qcn5052 Firmware by Qualcomm

Qcn5054 Firmware by Qualcomm

Qcn5122 Firmware by Qualcomm

Qcn5124 Firmware by Qualcomm

Qcn5152 Firmware by Qualcomm