Lucene search

[email protected]CVE-2022-25689

HistoryDec 13, 2022 - 4:15 p.m.

CVE-2022-25689

2022-12-1316:15:18

CWE-617

[email protected]

web.nvd.nist.gov

cve-2022-25689

denial of service

modem

snapdragon mobile

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

37.0%

JSON

Denial of service in Modem due to reachable assertion in Snapdragon Mobile

Affected configurations

NVD

Node

qualcommar8035_firmwareMatch-

AND

qualcommar8035Match-

Node

qualcommqca8081_firmwareMatch-

AND

qualcommqca8081Match-

Node

qualcommqca8337_firmwareMatch-

AND

qualcommqca8337Match-

Node

qualcommqcn6024_firmwareMatch-

AND

qualcommqcn6024Match-

Node

qualcommqcn9024_firmwareMatch-

AND

qualcommqcn9024Match-

Node

qualcommsdx65_firmwareMatch-

AND

qualcommsdx65Match-

Node

qualcommwcd9380_firmwareMatch-

AND

qualcommwcd9380Match-

Node

qualcommwcn6855_firmwareMatch-

AND

qualcommwcn6855Match-

Node

qualcommwcn6856_firmwareMatch-

AND

qualcommwcn6856Match-

CPENameOperatorVersion
qualcomm:ar8035_firmwarequalcomm ar8035 firmwareeq-

CPE	Name	Operator	Version
qualcomm:ar8035_firmware	qualcomm ar8035 firmware	eq	-

CNA Affected

[
  {
    "vendor": "Qualcomm, Inc.",
    "product": "Snapdragon Mobile",
    "versions": [
      {
        "version": "AR8035",
        "status": "affected"
      },
      {
        "version": "QCA8081",
        "status": "affected"
      },
      {
        "version": "QCA8337",
        "status": "affected"
      },
      {
        "version": "QCN6024",
        "status": "affected"
      },
      {
        "version": "QCN9024",
        "status": "affected"
      },
      {
        "version": "SDX65",
        "status": "affected"
      },
      {
        "version": "WCD9380",
        "status": "affected"
      },
      {
        "version": "WCN6855",
        "status": "affected"
      },
      {
        "version": "WCN6856",
        "status": "affected"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

37.0%

JSON

Related for CVE-2022-25689

prion1 nvd1 cvelist1