Lucene search

[email protected]CVE-2022-22081

HistorySep 16, 2022 - 6:15 a.m.

CVE-2022-22081

2022-09-1606:15:09

CWE-190

[email protected]

web.nvd.nist.gov

cve-2022-22081

memory corruption

audio module

integer overflow

snapdragon auto

snapdragon connectivity

snapdragon mobile

snapdragon wearables

nvd

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Memory corruption in audio module due to integer overflow in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables

Affected configurations

NVD

Node

qualcommar8035_firmwareMatch-

AND

qualcommar8035Match-

Node

qualcommqca6595au_firmwareMatch-

AND

qualcommqca6595auMatch-

Node

qualcommqca8081_firmwareMatch-

AND

qualcommqca8081Match-

Node

qualcommqca8337_firmwareMatch-

AND

qualcommqca8337Match-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

Node

qualcommsd_8_gen1_5g_firmwareMatch-

AND

qualcommsm8475Match-

Node

qualcommsd888_5g_firmwareMatch-

AND

qualcommsd888_5gMatch-

Node

qualcommsdx65_firmwareMatch-

AND

qualcommsdx65Match-

Node

qualcommsm7450_firmwareMatch-

AND

qualcommsm7450Match-

Node

qualcommsm8475_firmwareMatch-

AND

qualcommsm8475Match-

Node

qualcommsm8475p_firmwareMatch-

AND

qualcommsm8475pMatch-

Node

qualcommsw5100_firmwareMatch-

AND

qualcommsw5100Match-

Node

qualcommsw5100p_firmwareMatch-

AND

qualcommsw5100pMatch-

Node

qualcommwcd9370_firmwareMatch-

AND

qualcommwcd9370Match-

Node

qualcommwcd9375_firmwareMatch-

AND

qualcommwcd9375Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcd9385_firmwareMatch-

AND

qualcommwcd9385Match-

Node

qualcommwcn3980_firmwareMatch-

AND

qualcommwcn3980Match-

Node

qualcommwcn3988_firmwareMatch-

AND

qualcommwcn3988Match-

Node

qualcommwcn6750_firmwareMatch-

AND

qualcommwcn6750Match-

Node

qualcommwcn6850_firmwareMatch-

AND

qualcommwcn6850Match-

Node

qualcommwcn6851_firmwareMatch-

AND

qualcommwcn6851Match-

Node

qualcommwcn6855_firmwareMatch-

AND

qualcommwcn6855Match-

Node

qualcommwcn6856_firmwareMatch-

AND

qualcommwcn6856Match-

Node

qualcommwcn7851_firmwareMatch-

AND

qualcommwcn7851Match-

Node

qualcommwsa8830_firmwareMatch-

AND

qualcommwsa8830Match-

Node

qualcommwsa8832_firmwareMatch-

AND

qualcommwsa8832Match-

Node

qualcommwsa8835_firmwareMatch-

AND

qualcommwsa8835Match-

CPENameOperatorVersion
qualcomm:ar8035_firmwarequalcomm ar8035 firmwareeq-

CPE	Name	Operator	Version
qualcomm:ar8035_firmware	qualcomm ar8035 firmware	eq	-

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "AR8035, QCA6595AU, QCA8081, QCA8337, SA6155P, SA8155P, SA8195P, SD 8 Gen1 5G, SD888 5G, SDX65, SM7450, SM8475, SM8475P, SW5100, SW5100P, WCD9370, WCD9375, WCD9380, WCD9385, WCN3980, WCN3988, WCN6750, WCN6850, WCN6851, WCN6855, WCN6856, WCN7851, WSA8830, WSA8832, WSA8835"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for CVE-2022-22081

prion1 nvd1 cvelist1 androidsecurity1