CVE-2022-25711

Published: Dic 13, 2022 Last Modified: Apr 22, 2025 EU-VD ID: EUVD-2022-30366 Aliases: GSD-2022-25711
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 6,7
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: high
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

Memory corruption in camera due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0005
Percentile
0,1th
Updated

EPSS Score Trend (Last 90 Days)

129

Improper Validation of Array Index

Draft
Abstraction: Variant Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Availability Confidentiality
Potential Impacts:
Dos: Crash, Exit, Or Restart Modify Memory Read Memory Execute Unauthorized Code Or Commands
Applicable Platforms
Languages: C, C++, Not Language-Specific
Likelihood of Exploit: High
View CWE Details
Operating System

Qca6436 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6436 Firmware
Version -
cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa6150P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa6150P Firmware
Version -
cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3680B Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3680B Firmware
Version -
cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6696 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6696 Firmware
Version -
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wsa8830 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wsa8830 Firmware
Version -
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcd9370 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcd9370 Firmware
Version -
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wsa8810 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wsa8810 Firmware
Version -
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn7850 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn7850 Firmware
Version -
cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn6855 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn6855 Firmware
Version -
cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6595Au Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6595Au Firmware
Version -
cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca8337 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca8337 Firmware
Version -
cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn7851 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn7851 Firmware
Version -
cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn6850 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn6850 Firmware
Version -
cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3998 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3998 Firmware
Version -
cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3950 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3950 Firmware
Version -
cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sd855 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sd855 Firmware
Version -
cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sd205 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sd205 Firmware
Version -
cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qcs8155 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qcs8155 Firmware
Version -
cpe:2.3:o:qualcomm:qcs8155_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Mdm9150 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Mdm9150 Firmware
Version -
cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa8195P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa8195P Firmware
Version -
cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn6856 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn6856 Firmware
Version -
cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sd870 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sd870 Firmware
Version -
cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qcc5100 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qcc5100 Firmware
Version -
cpe:2.3:o:qualcomm:qcc5100_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qcn9074 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qcn9074 Firmware
Version -
cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa8150P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa8150P Firmware
Version -
cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcd9380 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcd9380 Firmware
Version -
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sd865 5G Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sd865 5G Firmware
Version -
cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sd 8 Gen1 5G Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sd 8 Gen1 5G Firmware
Version -
cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sd210 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sd210 Firmware
Version -
cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6420 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6420 Firmware
Version -
cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6391 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6391 Firmware
Version -
cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcd9340 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcd9340 Firmware
Version -
cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa6155P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa6155P Firmware
Version -
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sda429W Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sda429W Firmware
Version -
cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6430 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6430 Firmware
Version -
cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6390 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6390 Firmware
Version -
cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3980 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3980 Firmware
Version -
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sdxr2 5G Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sdxr2 5G Firmware
Version -
cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6426 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6426 Firmware
Version -
cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa8145P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa8145P Firmware
Version -
cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sw5100 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sw5100 Firmware
Version -
cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sdx55M Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sdx55M Firmware
Version -
cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa6145P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa6145P Firmware
Version -
cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sa8155P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sa8155P Firmware
Version -
cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcd9341 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcd9341 Firmware
Version -
cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qca6574Au Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qca6574Au Firmware
Version -
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3610 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3610 Firmware
Version -
cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sw5100P Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sw5100P Firmware
Version -
cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qcs410 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qcs410 Firmware
Version -
cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn6851 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn6851 Firmware
Version -
cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3988 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3988 Firmware
Version -
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qcs610 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qcs610 Firmware
Version -
cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wsa8815 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wsa8815 Firmware
Version -
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Sdx55 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Sdx55 Firmware
Version -
cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Aqt1000 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Aqt1000 Firmware
Version -
cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Qualcomm215 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Qualcomm215 Firmware
Version -
cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wsa8835 Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wsa8835 Firmware
Version -
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Wcn3660B Firmware by Qualcomm

Product Information
Vendor Qualcomm
Product Wcn3660B Firmware
Version -
cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.qualcomm.com/company/product-security/bulletins…
Patch Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulle…
https://www.qualcomm.com/company/product-security/bulletins…
Patch Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulle…