Lucene search

[email protected]CVE-2022-22100

HistorySep 02, 2022 - 12:15 p.m.

CVE-2022-22100

2022-09-0212:15:09

CWE-787

[email protected]

web.nvd.nist.gov

cve-2022-22100

memory corruption

multimedia

improper check

export descriptors

snapdragon auto

nvd

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto

Affected configurations

NVD

Node

qualcommapq8096au_firmwareMatch-

AND

qualcommapq8096auMatch-

Node

qualcommqam8295p_firmwareMatch-

AND

qualcommqam8295pMatch-

Node

qualcommqca6564a_firmwareMatch-

AND

qualcommqca6564aMatch-

Node

qualcommqca6564au_firmwareMatch-

AND

qualcommqca6564auMatch-

Node

qualcommqca6574a_firmwareMatch-

AND

qualcommqca6574aMatch-

Node

qualcommqca6574au_firmwareMatch-

AND

qualcommqca6574auMatch-

Node

qualcommqca6696_firmwareMatch-

AND

qualcommqca6696Match-

Node

qualcommsa6145p_firmwareMatch-

AND

qualcommsa6145pMatch-

Node

qualcommsa6150p_firmwareMatch-

AND

qualcommsa6150pMatch-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8145p_firmwareMatch-

AND

qualcommsa8145pMatch-

Node

qualcommsa8150p_firmwareMatch-

AND

qualcommsa8150pMatch-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

Node

qualcommsa8295p_firmwareMatch-

AND

qualcommsa8295pMatch-

Node

qualcommsa8540p_firmwareMatch-

AND

qualcommsa8540pMatch-

Node

qualcommsa9000p_firmwareMatch-

AND

qualcommsa9000pMatch-

CPENameOperatorVersion
qualcomm:apq8096au_firmwarequalcomm apq8096au firmwareeq-

CPE	Name	Operator	Version
qualcomm:apq8096au_firmware	qualcomm apq8096au firmware	eq	-

CNA Affected

[
  {
    "product": "Snapdragon Auto",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "APQ8096AU, QAM8295P, QCA6564A, QCA6564AU, QCA6574A, QCA6574AU, QCA6696, SA6145P, SA6150P, SA6155P, SA8145P, SA8150P, SA8155P, SA8195P, SA8295P, SA8540P, SA9000P"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin

Social References

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON

Related for CVE-2022-22100

nvd1 prion1 cvelist1