2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2022-22090" ,
"sourceIdentifier" : "product-security@qualcomm.com" ,
"published" : "2022-06-14T10:15:19.473" ,
2024-11-23 15:12:23 +00:00
"lastModified" : "2024-11-21T06:46:09.327" ,
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Memory corruption in audio due to use after free while managing buffers from internal cache in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile"
} ,
{
"lang" : "es" ,
"value" : "Una corrupci\u00f3n de memoria en audio debido a un uso de memoria previamente liberada mientras son administrados los b\u00faferes de la cach\u00e9 interna en Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile"
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
2024-11-23 15:12:23 +00:00
"source" : "product-security@qualcomm.com" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
2024-11-23 15:12:23 +00:00
"vectorString" : "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" ,
"baseScore" : 8.4 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "LOCAL" ,
"attackComplexity" : "LOW" ,
2024-11-23 15:12:23 +00:00
"privilegesRequired" : "NONE" ,
2023-04-24 12:24:31 +02:00
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
2024-11-23 15:12:23 +00:00
"exploitabilityScore" : 2.5 ,
2023-04-24 12:24:31 +02:00
"impactScore" : 5.9
} ,
{
2024-11-23 15:12:23 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
2024-11-23 15:12:23 +00:00
"vectorString" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
"baseScore" : 7.8 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "LOCAL" ,
"attackComplexity" : "LOW" ,
2024-11-23 15:12:23 +00:00
"privilegesRequired" : "LOW" ,
2023-04-24 12:24:31 +02:00
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
2024-11-23 15:12:23 +00:00
"exploitabilityScore" : 1.8 ,
2023-04-24 12:24:31 +02:00
"impactScore" : 5.9
}
] ,
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:L/AC:L/Au:N/C:C/I:C/A:C" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 7.2 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "LOCAL" ,
"accessComplexity" : "LOW" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "COMPLETE" ,
"integrityImpact" : "COMPLETE" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "COMPLETE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "HIGH" ,
"exploitabilityScore" : 3.9 ,
"impactScore" : 10.0 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-416"
}
]
}
] ,
"configurations" : [
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "76910884-45D9-4EA2-BA30-44A8C7CC1339"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sm8475:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E626A19A-DBE3-4DE9-90DA-FA3F883FF3CF"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "72433485-B229-46A6-BCA4-394AA4EEA683"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "04D40EC4-BF31-4BFD-8D0A-8193F541AF02"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sd888_5g_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B991D515-9072-488F-B338-D7776C70FB62"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sd888_5g:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3F65BF0A-CC8F-4A4B-9FD4-7FC7066424F6"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sdx65_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "223C2F4C-874E-4A44-9CCE-21CD8466F3B8"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sdx65:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "39F6935C-DA92-4B1E-B5D3-C9489D520AE0"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sm7450_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "03491EBB-5252-4571-B8F1-905B68D0BF8A"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sm7450:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7CA96D9B-A5C7-402C-98DA-80532686A43E"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sm8475_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "73CB0B0B-8448-4961-85A3-BC32A8567A21"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sm8475:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E626A19A-DBE3-4DE9-90DA-FA3F883FF3CF"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sm8475p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8DBF6AE8-605B-4E72-BD3B-0B6C390FCE32"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sm8475p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "26AAE148-96B6-4FDE-BABD-48F607464A38"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1295D869-F4DD-4766-B4AA-3513752F43B4"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B98784DC-3143-4D38-AD28-DBBDCCAB4272"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "34143ABA-7D09-429F-A65C-3A33438BF62C"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9D56DFE3-5EF1-4B23-BBD5-0203FBF9CCEC"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "70292B01-617F-44AD-AF77-1AFC1450523D"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FA94C6D6-85DB-4031-AAF4-C399019AE16D"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "92B17201-8185-47F1-9720-5AB4ECD11B22"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E1FA2EB9-416F-4D69-8786-386CC73978AE"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn6750_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F8EE21BA-7178-4D69-852D-2322844FC6B9"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn6750:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E9BACB28-F6EA-445A-B74F-0C3881FE59CB"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3293739B-53D5-48C1-BC3A-FAA74D6C7954"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E650C510-037F-47DB-A486-EBF871C73278"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "DD031A8D-A48A-4363-8C00-C1FF5458D0FB"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "64F5D7CA-6F31-4842-AC66-EB975C19C83D"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "180EB150-C114-429D-941F-9B99CDA4F810"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn6855:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "93BA62AF-3555-463A-8B51-76F07BF0B87E"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "54C616C5-6480-4FE0-9A1C-08026CCB08D8"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn6856:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7D8E02BA-3A7E-4B13-A8D7-20FD0FAE3187"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "16EB11D8-27A3-4D04-B863-7FD4549D0BCD"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn7850:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CF9B5B84-3C57-4D3D-AFF0-958A19DE09E8"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2FFC44DC-DA90-45F5-ACC1-5262D3E3A796"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wcn7851:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EE9D9A56-2157-43F0-BB18-2B7249D7E021"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "15307882-7039-43E9-9BA3-035045988B99"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AA85B322-E593-4499-829A-CC6D70BAE884"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E839A0B9-64C3-4C7A-82B7-D2AAF65928F8"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7E870D82-DE3B-4199-A730-C8FB545BAA98"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "11B69595-E488-4590-A150-CE5BE08B5E13"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BF680174-5FA6-47D9-8EAB-CC2A37A7BD42"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7ACAD26E-B79E-4659-91A5-D301281F7D36"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F0E46DA6-9494-4D92-A4AE-A272AF6ACCCC"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F80BC68E-7476-4A40-9F48-53722FE9A5BF"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6B36F4B2-BAA3-45AD-9967-0EB482C99708"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin" ,
"source" : "product-security@qualcomm.com" ,
"tags" : [
"Vendor Advisory"
]
2024-11-23 15:12:23 +00:00
} ,
{
"url" : "https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
2023-04-24 12:24:31 +02:00
}
]
}
