CVE-2023-33106

Q: What is the severity of CVE-2023-33106?

CVE-2023-33106 has a CVSS score of 8.4 (HIGH). This vulnerability allows memory corruption in Qualcomm GPU drivers when processing large sync point lists in AUX commands. Attackers can potentially execute arbitrary code or cause denial of service. Affects devices with Qualcomm Adreno GPU drivers.

8.4 HIGH

📋 TL;DR

This vulnerability allows memory corruption in Qualcomm GPU drivers when processing large sync point lists in AUX commands. Attackers can potentially execute arbitrary code or cause denial of service. Affects devices with Qualcomm Adreno GPU drivers.

💻 Affected Systems

Products:

Qualcomm Adreno GPU drivers

Versions: Multiple Qualcomm chipset versions (specific versions in vendor advisory)

Operating Systems: Android, Linux-based systems with Qualcomm GPU support

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices using Qualcomm Snapdragon processors with Adreno GPUs. Requires GPU driver access permissions.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with kernel-level code execution leading to complete device control, data theft, and persistent backdoor installation.

🟠

Likely Case

Local privilege escalation from user to kernel space, allowing attackers to bypass security controls and gain elevated system access.

🟢

If Mitigated

Denial of service through system crash or instability if memory corruption cannot be leveraged for code execution.

🌐 Internet-Facing: LOW - Requires local access to the device's GPU driver interface.

🏢 Internal Only: HIGH - Malicious apps or compromised users can exploit this from within the device environment.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires local access and GPU driver permissions. CISA lists as known exploited.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm December 2023 security bulletin for specific chipset fixes

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for your specific chipset. 2. Obtain updated GPU driver from device manufacturer. 3. Apply driver update through system update mechanism. 4. Reboot device to load new driver.

🔧 Temporary Workarounds

Restrict GPU driver access

linux

Limit which applications can access GPU driver interfaces through SELinux/AppArmor policies

🧯 If You Can't Patch

Implement strict application sandboxing to limit GPU driver access
Monitor for suspicious GPU driver activity and system crashes

🔍 How to Verify

Check if Vulnerable:

Check device chipset and GPU driver version against Qualcomm's affected list in December 2023 bulletin

Check Version:

adb shell dumpsys | grep -i adreno OR check device system information for GPU driver version

Verify Fix Applied:

Verify GPU driver version has been updated to patched version from device manufacturer

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
GPU driver crash reports
SELinux/AppArmor denials for GPU access

Network Indicators:

None - local exploitation only

SIEM Query:

source="kernel" AND ("panic" OR "oops") AND ("gpu" OR "adreno" OR "kgsl")

📊 Metadata

CVE ID: CVE-2023-33106

CVSS v3 Score: 8.4 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-823

Published: December 5, 2023

Last Updated: October 28, 2025

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin Patch,Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin Patch,Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-33106 US Government Resource

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4290 Firmware by Qualcomm

Qcm4325 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn6024 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs7230 Firmware by Qualcomm

Qcs8250 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qrb5165m Firmware by Qualcomm

Qrb5165n Firmware by Qualcomm

Qualcomm 215 Mobile Platform Firmware by Qualcomm

Robotics Rb5 Platform Firmware by Qualcomm

Sa4150p Firmware by Qualcomm

Sa4155p Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6150p Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa8145p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8295p Firmware by Qualcomm

Sa8770p Firmware by Qualcomm

Sa8775p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Sd 8 Gen1 5g Firmware by Qualcomm

Sd660 Firmware by Qualcomm

Sd865 5g Firmware by Qualcomm

Sd888 Firmware by Qualcomm

Sg4150p Firmware by Qualcomm

Sg8275p Firmware by Qualcomm

Sm4125 Firmware by Qualcomm

Sm7250p Firmware by Qualcomm

Sm7315 Firmware by Qualcomm

Sm7325p Firmware by Qualcomm