CVE-2023-33106
published 2023-12-05CVE-2023-33106: Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
PriorityP183high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2023-12-26
Exploited in the wild
EPSS
0.85%
53.7th percentile
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
Affected
154 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
Detection & IOCsextracted from sources · hover to see the quote
urlhttps://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit/1e46e81dbeb69aafd5842ce779f07e617680fd58↗
- →Monitor for abnormal or oversized IOCTL_KGSL_GPU_AUX_COMMAND calls with large lists of sync points, which is the exploitation vector for this memory corruption vulnerability in Qualcomm GPU kernel driver. ↗
- →Track Android Security Bulletin reference A-300941008 / QC-CR#3612841 for patch status on affected Qualcomm chipsets; the vulnerability is in the Display/Graphics component. ↗
- ·This vulnerability affects multiple Qualcomm chipsets and may impact products from various vendors; patch availability varies by vendor and device. ↗
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vulncheck8.4HIGH
cisa7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x563-8qf7-q64m: Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND
ghsa_unreviewed·2023-12-05
CVE-2023-33106 [HIGH] CWE-119 GHSA-x563-8qf7-q64m: Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
VulnCheck
Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
vulncheck·2023·CVSS 8.4
CVE-2023-33106 [HIGH] CWE-823 Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
Multiple Qualcomm chipsets contain a use of out-of-range pointer offset vulnerability due to memory corruption in Graphics while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
Affected: Qualcomm Multiple Chipsets
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit; https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2023-bulletin.html; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://ti.
Project0
Project Zero RCA: CVE-2023-33106: Qualcomm Adreno GPU KGSL_GPU_AUX_COMMAND_SYNC OOB
project_zero·CVSS 8.4
CVE-2023-33106 [HIGH] Project Zero RCA: CVE-2023-33106: Qualcomm Adreno GPU KGSL_GPU_AUX_COMMAND_SYNC OOB
# CVE-2023-33106: Qualcomm Adreno GPU KGSL_GPU_AUX_COMMAND_SYNC OOB
Clement Lecigne, Google Threat Analysis Group
## The Basics
**Disclosure or Patch Date:** October 2, 2023
**Product:** Qualcomm Adreno GPU
**Advisory:**
https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2023-bulletin.html
**Affected Versions:** N/A
**First Patched Version:** N/A
**Issue/Bug Report:** N/A
**Patch CL:**
https://git.codelinaro.org/clo/la/kernel/msm-5.4/-/commit/502b225c16ccd1e6adab632faf2637ff6fe74569
**Bug-Introducing CL:**
https://git.codelinaro.org/clo/la/kernel/msm-5.4/-/commit/36b196ce5c65ccade05e5e63ffe25c5661ad096e
**Reporter(s):** Clement Lecigne of Google's Threat Analysis Group
We would like to thank the Qualcomm product security team for their help while
figurin
CISA
Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
cisa·2023-12-05·CVSS 7.8
CVE-2023-33106 [HIGH] CWE-823 Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
Vulnerability: Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
Affected: Qualcomm Multiple Chipsets
Multiple Qualcomm chipsets contain a use of out-of-range pointer offset vulnerability due to memory corruption in Graphics while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Notes: This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit
Android
CVE-2023-33106: Display
vendor_android·2023-12-01·CVSS 8.4
CVE-2023-33106 [HIGH] CVE-2023-33106: Display
Android Security Bulletin 2023-12-01
CVE: CVE-2023-33106
Severity: HIGH
Component: Display
References: A-300941008
QC-CR#3612841
No detection rules found.
No public exploits indexed.
Mandiant
Look What You Made Us Patch: 2025 Zero-Days in Review
blogs_mandiant·2026-03-05
Look What You Made Us Patch: 2025 Zero-Days in Review
Threat Intelligence
# Look What You Made Us Patch: 2025 Zero-Days in Review
March 5, 2026
##### Google Threat Intelligence Group
##### Google Threat Intelligence
Visibility and context on the threats that matter most.
Contact Us & Get a Demo
Written by: Casey Charrier, James Sadowski, Zander Work, Clement Lecigne, Benoît Sevens, Fred Plan
### Executive Summary
Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities exploited in-the-wild in 2025. Although that volume of zero-days is lower than the record high observed in 2023 (100), it is higher than 2024’s count (78) and remained within the 60–100 range established over the previous four years, indicating a trend toward stabilization at these levels.
In 2025, we continued to observe the structural shift, first
Mandiant
Look What You Made Us Patch: 2025 Zero-Days in Review
blogs_mandiant·2026-03-05
Look What You Made Us Patch: 2025 Zero-Days in Review
## Look What You Made Us Patch: 2025 Zero-Days in Review
## Google Threat Intelligence Group
## Google Threat Intelligence
Visibility and context on the threats that matter most.
Written by: Casey Charrier, James Sadowski, Zander Work, Clement Lecigne, Benoît Sevens, Fred Plan
## Executive Summary
Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities exploited in-the-wild in 2025. Although that volume of zero-days is lower than the record high observed in 2023 (100), it is higher than 2024’s count (78) and remained within the 60–100 range established over the previous four years, indicating a trend toward stabilization at these levels.
In 2025, we continued to observe the structural shift, first identified in 2024, toward increased enterprise exploitation. Both
Bleepingcomputer
Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers
blogs_bleepingcomputer·2023-10-03·CVSS 8.4
CVE-2022-22071 [HIGH] Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers
## Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers
## Bill Toulas
The CVE-2022-22071 flaw was disclosed in May 2022 and is a high-severity (CVSS v3.1: 8.4) locally exploitable use after free bug impacting popular chips like the SD855, SD865 5G, and SD888 5G
Qualcomm has not released any details on the actively exploited CVE-2023-33106, CVE-2022-22071, and CVE-2023-33063 flaws and will provide more information in its December 2023 bulletin.
This month's security bulletin also warns of three other critical vulnerabilities:
CVE-2023-24855 : Memory corruption in Qualcomm’s Modem component occurring when processing security-related configurations before the AS Security Exchange. (CVSS v3.1: 9.8)
CVE-2023-28540 : Cryptographic issue in the Data Modem component arising fro
arXiv
Zero-Trust Strategies for O-RAN Cellular Networks: Principles, Challenges and Research Directions
arxiv_fulltext·2025-11-23
Zero-Trust Strategies for O-RAN Cellular Networks: Principles, Challenges and Research Directions
[1]redCOMMENT: #1
Zero-Trust Strategies for O-RAN Cellular Networks:
Principles, Challenges and Research Directions
Charalampos Katsis
Department of Computer Science
Purdue University
West Lafayette, Indiana, USA
[email protected]
Imtiaz Karim
Department of Computer Science
The University of Texas at Dallas
Richardson, Texas, USA
[email protected]
Elisa Bertino
Department of Computer Science
Purdue University
West Lafayette, Indiana, USA
[email protected]
[1]purpleImtiaz: #1
colback=gray!3,
colframe=black!20,
coltitle=black,
fonttitle= ,
boxrule=0.4pt,
arc=2pt,
left=8pt,right=8pt,top=6pt,bottom=6pt,
takeawaybox[1][]
enhanced, breakable,
borderline west=2pt0ptblue!55,
boxed title style=
colback=gray!10,
colframe=black!20,
boxrule=0.4pt,
,
attach boxed title to top
2023-12-05
Published
2023-12-05
Added to CISA KEV
Exploited in the wild