CVE-2022-22072 | Severity.io

Description

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Related CPE's

apq8009_firmware

Vulnerable

apq8017_firmware

Vulnerable

apq8053_firmware

Vulnerable

apq8096au_firmware

Vulnerable

ar8031_firmware

Vulnerable

csra6620_firmware

Vulnerable

csra6640_firmware

Vulnerable

mdm9150_firmware

Vulnerable

mdm9206_firmware

Vulnerable

mdm9250_firmware

Vulnerable

mdm9607_firmware

Vulnerable

mdm9626_firmware

Vulnerable

mdm9628_firmware

Vulnerable

mdm9650_firmware

Vulnerable

msm8937_firmware

Vulnerable

pm8937_firmware

Vulnerable

qca4020_firmware

Vulnerable

qca6174a_firmware

Vulnerable

qca6175a_firmware

Vulnerable

qca6310_firmware

Vulnerable

qca6320_firmware

Vulnerable

qca6335_firmware

Vulnerable

qca6564a_firmware

Vulnerable

qca6564au_firmware

Vulnerable

qca6574_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qca9367_firmware

Vulnerable

qca9377_firmware

Vulnerable

qca9379_firmware

Vulnerable

qcs405_firmware

Vulnerable

qcs603_firmware

Vulnerable

qcs605_firmware

Vulnerable

sa515m_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

wcd9326_firmware

Vulnerable

wcd9330_firmware

Vulnerable

wcd9335_firmware

Vulnerable

wcd9340_firmware

Vulnerable

wcd9341_firmware

Vulnerable

wcn3610_firmware

Vulnerable

wcn3615_firmware

Vulnerable

wcn3660b_firmware

Vulnerable

wcn3680b_firmware

Vulnerable

wcn3980_firmware

Vulnerable

wcn3990_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn3999_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin

PatchVendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/may-2022-bulletin

PatchVendor Advisory

Weaknesses

[email protected]

Primary

CWE-1284

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-06-14T08:15:19.070Z

3 years ago

Last modified

2024-11-21T05:46:04.037Z

1 year ago