CVE-2022-25712

Published: Dic 13, 2022 Last Modified: Apr 22, 2025 EU-VD ID: EUVD-2022-30367 Aliases: GSD-2022-25712

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,7

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: high

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Memory corruption in camera due to buffer copy without checking size of input in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wearables

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0006

Percentile

0,2th

Updated

EPSS Score Trend (Last 90 Days)

120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Confidentiality Availability

Potential Impacts:

Modify Memory Execute Unauthorized Code Or Commands Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu)

Applicable Platforms

Languages: Assembly, C, C++, Memory-Unsafe

Likelihood of Exploit: High

View CWE Details

Operating System

Qca6436 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6436 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3680B Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3680B Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wsa8830 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wsa8830 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcd9370 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcd9370 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wsa8810 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wsa8810 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3990 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3990 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn6850 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn6850 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3998 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3998 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcd9326 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcd9326 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3950 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3950 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd855 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd855 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd205 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd205 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Mdm9150 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Mdm9150 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd870 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd870 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qcc5100 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qcc5100 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qcc5100_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6310 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6310 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcd9380 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcd9380 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd865 5G Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd865 5G Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd210 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd210 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6420 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6420 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sdxr1 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sdxr1 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sdxr1_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6391 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6391 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcd9340 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcd9340 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sda429W Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sda429W Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6430 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6430 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6335 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6335 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6390 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6390 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3980 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3980 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sdxr2 5G Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sdxr2 5G Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qca6426 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qca6426 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sw5100 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sw5100 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sdx55M Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sdx55M Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcd9341 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcd9341 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3610 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3610 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd845 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd845 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd845_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sw5100P Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sw5100P Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qcs410 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qcs410 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn6851 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn6851 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Sd710 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Sd710 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:sd710_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3988 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3988 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qcs610 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qcs610 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wsa8815 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wsa8815 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Aqt1000 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Aqt1000 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Qualcomm215 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Qualcomm215 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wsa8835 Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wsa8835 Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Wcn3660B Firmware by Qualcomm

Product Information

Vendor Qualcomm

Product Wcn3660B Firmware

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://www.qualcomm.com/company/product-security/bulletins…

Patch Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulle…

https://www.qualcomm.com/company/product-security/bulletins…

Patch Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulle…