CVE-2022-22090 | Severity.io

Description

Memory corruption in audio due to use after free while managing buffers from internal cache in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

Related CPE's

sd_8_gen1_5g_firmware

Vulnerable

h

qualcomm

sm8475

2

sd865_5g_firmware

Vulnerable

sd888_5g_firmware

Vulnerable

Vulnerable

sm7450_firmware

Vulnerable

sm8475_firmware

Vulnerable

sm8475p_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn6750_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6855_firmware

Vulnerable

wcn6856_firmware

Vulnerable

wcn7850_firmware

Vulnerable

wcn7851_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8832_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-416

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.4 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-06-14T08:15:19.473Z

3 years ago

Last modified

2024-11-21T05:46:09.327Z

1 year ago