CVE-2023-33084

Q: What is the severity of CVE-2023-33084?

CVE-2023-33084 has a CVSS score of 7.5 (HIGH). This vulnerability allows attackers to cause a denial-of-service (DoS) condition by sending malformed IE fragments during DTLS handshake negotiations. It affects Qualcomm products implementing DTLS protocols, potentially disrupting secure communication channels. The impact is limited to service disruption rather than data compromise.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows attackers to cause a denial-of-service (DoS) condition by sending malformed IE fragments during DTLS handshake negotiations. It affects Qualcomm products implementing DTLS protocols, potentially disrupting secure communication channels. The impact is limited to service disruption rather than data compromise.

💻 Affected Systems

Products:

Qualcomm chipsets with DTLS implementations

Versions: Specific versions not detailed in provided references; check Qualcomm March 2024 bulletin for exact affected versions.

Operating Systems: Android, embedded systems using Qualcomm chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems using DTLS protocol for secure communications; requires DTLS handshake processing capability.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete service disruption of DTLS-enabled services, causing communication failures for affected devices and applications.

🟠

Likely Case

Temporary service interruption during DTLS handshake attempts, potentially causing connection failures or degraded performance.

🟢

If Mitigated

Minimal impact with proper network segmentation and monitoring; service may experience brief interruptions but recovers quickly.

🌐 Internet-Facing: MEDIUM - DTLS services exposed to internet could be targeted for DoS attacks, but requires specific protocol knowledge.

🏢 Internal Only: LOW - Internal exploitation would require attacker access to network and knowledge of DTLS implementations.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending malformed IE fragments during DTLS handshake; attacker needs network access to target DTLS service.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm March 2024 security bulletin for specific patched versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin

Restart Required: Yes

Instructions:

1. Check Qualcomm March 2024 security bulletin for affected products. 2. Apply vendor-provided firmware updates. 3. Reboot affected devices after patching. 4. Verify patch application through version checks.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict access to DTLS services to trusted networks only

Rate Limiting

all

Implement rate limiting on DTLS handshake attempts

🧯 If You Can't Patch

Implement network monitoring for abnormal DTLS handshake patterns
Use application-level redundancy to maintain service during brief disruptions

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm's affected version list in March 2024 bulletin

Check Version:

Device-specific; typically 'getprop ro.build.fingerprint' on Android or manufacturer-specific commands

Verify Fix Applied:

Verify firmware version matches or exceeds patched versions listed in Qualcomm advisory

📡 Detection & Monitoring

Log Indicators:

Multiple failed DTLS handshake attempts
DTLS connection resets
Service interruption logs

Network Indicators:

Abnormal DTLS packet fragmentation patterns
High volume of DTLS handshake requests

SIEM Query:

source="network_logs" protocol="DTLS" (fragment_count>threshold OR handshake_failure>threshold)

📊 Metadata

CVE ID: CVE-2023-33084

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-401

Published: March 4, 2024

Last Updated: January 10, 2025

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn6024 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm

Qfw7124 Firmware by Qualcomm

Sm8550p Firmware by Qualcomm

Snapdragon 4 Gen 2 Mobile Firmware by Qualcomm

Snapdragon 8 Gen 2 Mobile Firmware by Qualcomm

Snapdragon 8 Gen 2 Mobile Firmware by Qualcomm

Snapdragon 8 Gen 3 Mobile Firmware by Qualcomm

Snapdragon Auto 5g Modem Rf Gen 2 Firmware by Qualcomm

Snapdragon X65 5g Modem Rf Firmware by Qualcomm

Snapdragon X75 5g Modem Rf Firmware by Qualcomm

Wcd9340 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcd9390 Firmware by Qualcomm

Wcd9395 Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8832 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm

Wsa8840 Firmware by Qualcomm

Wsa8845 Firmware by Qualcomm

Wsa8845h Firmware by Qualcomm