2022-09-12 10:00:36 +00:00
|
|
|
{
|
2023-06-06 08:00:39 +00:00
|
|
|
"data_version": "4.0",
|
2022-09-12 10:00:36 +00:00
|
|
|
"data_type": "CVE",
|
|
|
|
|
"data_format": "MITRE",
|
|
|
|
|
"CVE_data_meta": {
|
|
|
|
|
"ID": "CVE-2022-40522",
|
2023-06-06 08:00:39 +00:00
|
|
|
"ASSIGNER": "product-security@qualcomm.com",
|
|
|
|
|
"STATE": "PUBLIC"
|
2022-09-12 10:00:36 +00:00
|
|
|
},
|
|
|
|
|
"description": {
|
|
|
|
|
"description_data": [
|
|
|
|
|
{
|
|
|
|
|
"lang": "eng",
|
2023-06-06 08:00:39 +00:00
|
|
|
"value": "Memory corruption in Linux Networking due to double free while handling a hyp-assign."
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"problemtype": {
|
|
|
|
|
"problemtype_data": [
|
|
|
|
|
{
|
|
|
|
|
"description": [
|
|
|
|
|
{
|
|
|
|
|
"lang": "eng",
|
2024-04-12 17:00:35 +00:00
|
|
|
"value": "CWE-415 Double Free",
|
|
|
|
|
"cweId": "CWE-415"
|
2023-06-06 08:00:39 +00:00
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"affects": {
|
|
|
|
|
"vendor": {
|
|
|
|
|
"vendor_data": [
|
|
|
|
|
{
|
|
|
|
|
"vendor_name": "Qualcomm, Inc.",
|
|
|
|
|
"product": {
|
|
|
|
|
"product_data": [
|
|
|
|
|
{
|
|
|
|
|
"product_name": "Snapdragon",
|
|
|
|
|
"version": {
|
|
|
|
|
"version_data": [
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "CSR8811"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "FastConnect 6200"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ6000"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ6005"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ6010"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ6018"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ6028"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ9008"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "IPQ9574"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA4024"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA6574A"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA6574AU"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA6595AU"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA6696"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8072"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8075"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8081"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8082"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8084"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8085"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCA8386"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN5021"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN5022"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN5052"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN5121"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN5122"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN5152"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN6023"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN6024"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9000"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9022"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9024"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9070"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9072"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9074"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "QCN9274"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA6145P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA6150P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA6155"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA6155P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA8145P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA8150P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA8155"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA8155P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SA8195P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "SM7250P"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "Snapdragon 765 5G Mobile Platform (SM7250-AA)"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "Snapdragon 765G 5G Mobile Platform (SM7250-AB)"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "Snapdragon 768G 5G Mobile Platform (SM7250-AC)"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "WCD9380"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "WCD9385"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "WSA8810"
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"version_affected": "=",
|
|
|
|
|
"version_value": "WSA8815"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
"references": {
|
|
|
|
|
"reference_data": [
|
|
|
|
|
{
|
|
|
|
|
"url": "https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin",
|
|
|
|
|
"refsource": "MISC",
|
|
|
|
|
"name": "https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"impact": {
|
|
|
|
|
"cvss": [
|
|
|
|
|
{
|
|
|
|
|
"attackComplexity": "LOW",
|
|
|
|
|
"attackVector": "LOCAL",
|
|
|
|
|
"availabilityImpact": "HIGH",
|
|
|
|
|
"baseScore": 8.4,
|
|
|
|
|
"baseSeverity": "HIGH",
|
|
|
|
|
"confidentialityImpact": "HIGH",
|
|
|
|
|
"integrityImpact": "HIGH",
|
|
|
|
|
"privilegesRequired": "NONE",
|
|
|
|
|
"scope": "UNCHANGED",
|
|
|
|
|
"userInteraction": "NONE",
|
|
|
|
|
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
|
|
|
|
|
"version": "3.1"
|
2022-09-12 10:00:36 +00:00
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
}
|
