CVE-2022-25651

Description

Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Related CPE's

oqualcommapq8009_firmware-*******

hqualcommapq8009-*******

oqualcommapq8017_firmware-*******

hqualcommapq8017-*******

oqualcommapq8053_firmware-*******

hqualcommapq8053-*******

oqualcommapq8096au_firmware-*******

hqualcommapq8096au-*******

oqualcommar8031_firmware-*******

hqualcommar8031-*******

References

https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

AccessComplexity

LOW

ConfidentialityImpact

COMPLETE

AvailabilityImpact

COMPLETE

IntegrityImpact

COMPLETE

BaseScore

10

VectorString

AV:N/AC:L/Au:N/C:C/I:C/A:C

Version

2.0

AccessVector

NETWORK

Authentication

NONE

Created by Yello
About Severity.io