Lucene search

[email protected]CVE-2022-25673

HistoryDec 13, 2022 - 4:15 p.m.

CVE-2022-25673

2022-12-1316:15:17

CWE-617

[email protected]

web.nvd.nist.gov

cve-2022-25673

denial of service

modem

snapdragon mobile

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

36.9%

JSON

Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile

Affected configurations

NVD

Node

qualcommar8035_firmwareMatch-

AND

qualcommar8035Match-

Node

qualcommqca8081_firmwareMatch-

AND

qualcommqca8081Match-

Node

qualcommqca8337_firmwareMatch-

AND

qualcommqca8337Match-

Node

qualcommqcn6024_firmwareMatch-

AND

qualcommqcn6024Match-

Node

qualcommqcn9024_firmwareMatch-

AND

qualcommqcn9024Match-

Node

qualcommsd_8_gen1_5g_firmwareMatch-

AND

qualcommsm8475Match-

Node

qualcommsdx65_firmwareMatch-

AND

qualcommsdx65Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcn6855_firmwareMatch-

AND

qualcommwcn6855Match-

Node

qualcommwcn6856_firmwareMatch-

AND

qualcommwcn6856Match-

Node

qualcommwcn7850_firmwareMatch-

AND

qualcommwcn7850Match-

Node

qualcommwcn7851_firmwareMatch-

AND

qualcommwcn7851Match-

Node

qualcommwsa8830_firmwareMatch-

AND

qualcommwsa8830Match-

Node

qualcommwsa8835_firmwareMatch-

AND

qualcommwsa8835Match-

CPENameOperatorVersion
qualcomm:ar8035_firmwarequalcomm ar8035 firmwareeq-

CPE	Name	Operator	Version
qualcomm:ar8035_firmware	qualcomm ar8035 firmware	eq	-

CNA Affected

[
  {
    "vendor": "Qualcomm, Inc.",
    "product": "Snapdragon Mobile",
    "versions": [
      {
        "version": "AR8035",
        "status": "affected"
      },
      {
        "version": "QCA8081",
        "status": "affected"
      },
      {
        "version": "QCA8337",
        "status": "affected"
      },
      {
        "version": "QCN6024",
        "status": "affected"
      },
      {
        "version": "QCN9024",
        "status": "affected"
      },
      {
        "version": "SD 8 Gen1 5G",
        "status": "affected"
      },
      {
        "version": "SDX65",
        "status": "affected"
      },
      {
        "version": "WCD9380",
        "status": "affected"
      },
      {
        "version": "WCN6855",
        "status": "affected"
      },
      {
        "version": "WCN6856",
        "status": "affected"
      },
      {
        "version": "WCN7850",
        "status": "affected"
      },
      {
        "version": "WCN7851",
        "status": "affected"
      },
      {
        "version": "WSA8830",
        "status": "affected"
      },
      {
        "version": "WSA8835",
        "status": "affected"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

36.9%

JSON

Related for CVE-2022-25673

cvelist1 nvd1 prion1