CVE-2023-43520 HIGH

CVE-2023-43520: Stack-based Buffer Overflow in WLAN HOST

Vendor Qualcomm, Inc.
Product Snapdragon
Weakness CWE-121
Published February 6, 2024
Last update May 9, 2025

CVSS base score

8.6/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

What the vulnerability does

01Description

Memory corruption when AP includes TID to link mapping IE in the beacons and STA is parsing the beacon TID to link mapping IE.

Key dates

02Disclosure timeline

February 6, 2024 CVE published
May 9, 2025 Record updated