Transient DOS in Automotive OS due to improper authentication to the secure IO calls.
Conclusion & alert: CVE-2023-33070 is rated Low Risk (34.3/100): CVSS High severity, with low exploitation likelihood (EPSS 0.05%). Mandatory action: Monitor for updates and reassess as exploit intelligence or EPSS changes.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2025-11-21 | 0.03% | 0.05% | +0.02% |
| 2 | 2025-11-18 | 0.07% | 0.03% | -0.04% |
| 3 | 2025-04-15 | — | 0.07% | — |
Full EPSS history (6 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 7.1 | 3.1 | HIGH |
|
2.5 | 4.0 | [email protected] |
| 5.5 | 3.1 | MEDIUM |
|
1.8 | 3.6 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| qualcomm | aqt1000_firmware | — | cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:* |
| qualcomm | ar8031_firmware | — | cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:* |
| qualcomm | ar8035_firmware | — | cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:* |
| qualcomm | c-v2x_9150_firmware | — | cpe:2.3:o:qualcomm:c-v2x_9150_firmware:-:*:*:*:*:*:*:* |
| qualcomm | csra6620_firmware | — | cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:* |
| qualcomm | csra6640_firmware | — | cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:* |
| qualcomm | csrb31024_firmware | — | cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3991_firmware | — | cpe:2.3:o:qualcomm:wcn3991_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3998_firmware | — | cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qam8255p_firmware | — | cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qam8295p_firmware | — | cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qam8775p_firmware | — | cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6174a_firmware | — | cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6310_firmware | — | cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6335_firmware | — | cpe:2.3:o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6391_firmware | — | cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6420_firmware | — | cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6430_firmware | — | cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564_firmware | — | cpe:2.3:o:qualcomm:qca6564_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564au_firmware | — | cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574_firmware | — | cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574a_firmware | — | cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574au_firmware | — | cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6595_firmware | — | cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6595au_firmware | — | cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6696_firmware | — | cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6698aq_firmware | — | cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca8337_firmware | — | cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca9377_firmware | — | cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm6125_firmware | — | cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcn9074_firmware | — | cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs410_firmware | — | cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs610_firmware | — | cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs6125_firmware | — | cpe:2.3:o:qualcomm:qcs6125_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs8155_firmware | — | cpe:2.3:o:qualcomm:qcs8155_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8905_firmware | — | cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qm215_firmware | — | cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:* |
| qualcomm | video_collaboration_vc1_platform_firmware | — | cpe:2.3:o:qualcomm:video_collaboration_vc1_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | video_collaboration_vc3_platform_firmware | — | cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sda845_firmware | — | cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm845_firmware | — | cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa6145p_firmware | — | cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa6150p_firmware | — | cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa6155_firmware | — | cpe:2.3:o:qualcomm:sa6155_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa6155p_firmware | — | cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8145p_firmware | — | cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8150p_firmware | — | cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8155_firmware | — | cpe:2.3:o:qualcomm:sa8155_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8155p_firmware | — | cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8195p_firmware | — | cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8255p_firmware | — | cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8295p_firmware | — | cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8540p_firmware | — | cpe:2.3:o:qualcomm:sa8540p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8770p_firmware | — | cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa8775p_firmware | — | cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa9000p_firmware | — | cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd_675_firmware | — | cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd660_firmware | — | cpe:2.3:o:qualcomm:sd660_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd675_firmware | — | cpe:2.3:o:qualcomm:sd675_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd730_firmware | — | cpe:2.3:o:qualcomm:sd730_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd855_firmware | — | cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm429w_firmware | — | cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx55_firmware | — | cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq5053-aa_firmware | — | cpe:2.3:o:qualcomm:apq5053-aa_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_210_processor_firmware | — | cpe:2.3:o:qualcomm:snapdragon_210_processor_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_212_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_212_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_429_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_429_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm6125_firmware | — | cpe:2.3:o:qualcomm:sm6125_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm660_firmware | — | cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_675_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_675_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm6150-ac_firmware | — | cpe:2.3:o:qualcomm:sm6150-ac_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm7150-aa_firmware | — | cpe:2.3:o:qualcomm:sm7150-aa_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm7150-ab_firmware | — | cpe:2.3:o:qualcomm:sm7150-ab_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm7150-ac_firmware | — | cpe:2.3:o:qualcomm:sm7150-ac_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_845_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_845_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8150_firmware | — | cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8150-ac_firmware | — | cpe:2.3:o:qualcomm:sm8150-ac_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_auto_5g_modem-rf_firmware | — | cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_wear_4100\+_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_wear_4100\+_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_x24_lte_modem_firmware | — | cpe:2.3:o:qualcomm:snapdragon_x24_lte_modem_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin | Patch Vendor Advisory |