2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2022-33274" ,
"sourceIdentifier" : "product-security@qualcomm.com" ,
"published" : "2023-01-09T08:15:12.293" ,
2024-12-08 03:06:42 +00:00
"lastModified" : "2024-11-21T07:07:59.323" ,
"vulnStatus" : "Modified" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Memory corruption in android core due to improper validation of array index while returning feature ids after license authentication."
2024-04-04 08:46:00 +00:00
} ,
{
"lang" : "es" ,
"value" : "Corrupci\u00f3n de la memoria en el n\u00facleo de Android debido a una validaci\u00f3n incorrecta del \u00edndice de la matriz al devolver identificadores de funciones despu\u00e9s de la autenticaci\u00f3n de la licencia."
2023-04-24 12:24:31 +02:00
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
2024-12-08 03:06:42 +00:00
"source" : "product-security@qualcomm.com" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
2024-12-08 03:06:42 +00:00
"vectorString" : "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" ,
"baseScore" : 8.4 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "LOCAL" ,
"attackComplexity" : "LOW" ,
2024-12-08 03:06:42 +00:00
"privilegesRequired" : "NONE" ,
2023-04-24 12:24:31 +02:00
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
2024-12-08 03:06:42 +00:00
"exploitabilityScore" : 2.5 ,
2023-04-24 12:24:31 +02:00
"impactScore" : 5.9
} ,
{
2024-12-08 03:06:42 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
2024-12-08 03:06:42 +00:00
"vectorString" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
"baseScore" : 7.8 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "LOCAL" ,
"attackComplexity" : "LOW" ,
2024-12-08 03:06:42 +00:00
"privilegesRequired" : "LOW" ,
2023-04-24 12:24:31 +02:00
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
2024-12-08 03:06:42 +00:00
"exploitabilityScore" : 1.8 ,
2023-04-24 12:24:31 +02:00
"impactScore" : 5.9
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-129"
}
]
}
] ,
"configurations" : [
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C2D9E281-B382-41AC-84CB-5B1063E5AC51"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "44EBEBD5-98C3-493B-A108-FD4DE6FFBE97"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8374DDB3-D484-4141-AE0C-42333D2721F6"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0AE207DB-9770-40ED-961D-FDA75965826F"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0E23922D-C37F-476F-A623-4C1458A9156F"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C66671C1-AE1A-44BE-9DB2-0B09FF4417DB"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "74AA3929-3F80-4D54-B13A-9B070D5C03BB"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "054F77D6-FC66-4151-9005-DC7ECDB5C722"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8ED3F589-16D9-46A7-A539-C9862473EE0D"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0514D433-162C-4680-8912-721D19BE6201"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A71D74B0-0963-49FD-8E97-148C8993B263"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa8145p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "910CBFA4-50F7-4C7A-B9B9-B88C8A919827"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "69C1B02F-8D2D-42E7-B70D-41F4D9844FD1"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3FEACAA9-C061-4713-9A54-37D8BFC0B00B"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C8648B38-2597-401A-8F53-D582FA911569"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A01CD59B-8F21-4CD6-8A1A-7B37547A8715"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "51BC0A66-493B-43BE-B51F-640BDF2FF32E"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "D8DA4D12-7ABF-4A04-B44E-E1D68C8E58AB"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2A19659B-A0C3-44B7-8D54-BA21729873A4"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F978041A-CE28-4BDF-A7DB-F0360F1A5F14"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin" ,
"source" : "product-security@qualcomm.com" ,
"tags" : [
"Vendor Advisory"
]
2024-12-08 03:06:42 +00:00
} ,
{
"url" : "https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
2023-04-24 12:24:31 +02:00
}
]
}
