CVE-2022-25712

Memory corruption in camera due to buffer copy without checking size of input in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wearables

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6310:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6335:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6420:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6426:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6430:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6436:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qcc5100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcc5100:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs410:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qualcomm215:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd205:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd210:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:sd710_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd710:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:sd845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd845:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd870:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sda429w:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:sdxr1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdxr1:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdxr2_5g:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9326:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3610:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3680b:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3990:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

History

15 Dec 2022, 16:52

Type	Values Removed	Values Added
CPE		cpe:2.3:o:qualcomm:wcd9340_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9326:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:o:qualcomm:mdm9150_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9340:-:::::::* cpe:2.3:h:qualcomm:wcn6851:-:::::::* cpe:2.3:h:qualcomm:qualcomm215:-:::::::* cpe:2.3:h:qualcomm:sw5100p:-:::::::* cpe:2.3:h:qualcomm:qca6420:-:::::::* cpe:2.3:o:qualcomm:sd205_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6310:-:::::::* cpe:2.3:h:qualcomm:wcn3680b:-:::::::* cpe:2.3:h:qualcomm:sw5100:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:o:qualcomm:sw5100p_firmware:-:::::::* cpe:2.3:o:qualcomm:sd710_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3990_firmware:-:::::::* cpe:2.3:h:qualcomm:sd865_5g:-:::::::* cpe:2.3:h:qualcomm:sd845:-:::::::* cpe:2.3:o:qualcomm:aqt1000_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs610:-:::::::* cpe:2.3:h:qualcomm:sd855:-:::::::* cpe:2.3:o:qualcomm:wcn3680b_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3610_firmware:-:::::::* cpe:2.3:h:qualcomm:qcc5100:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:h:qualcomm:qca6436:-:::::::* cpe:2.3:o:qualcomm:wcn3660b_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6426:-:::::::* cpe:2.3:h:qualcomm:aqt1000:-:::::::* cpe:2.3:o:qualcomm:sw5100_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs610_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6430_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn6850_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6420_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9150:-:::::::* cpe:2.3:o:qualcomm:sd870_firmware:-:::::::* cpe:2.3:h:qualcomm:sdxr1:-:::::::* cpe:2.3:o:qualcomm:wcd9370_firmware:-:::::::* cpe:2.3:o:qualcomm:sd210_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs410:-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:h:qualcomm:qca6391:-:::::::* cpe:2.3:o:qualcomm:qca6436_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3610:-:::::::* cpe:2.3:h:qualcomm:wcd9370:-:::::::* cpe:2.3:h:qualcomm:sdx55m:-:::::::* cpe:2.3:o:qualcomm:qca6426_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3988:-:::::::* cpe:2.3:o:qualcomm:qca6335_firmware:-:::::::* cpe:2.3:o:qualcomm:sdxr1_firmware:-:::::::* cpe:2.3:o:qualcomm:sd845_firmware:-:::::::* cpe:2.3:o:qualcomm:sdx55m_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6310_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6390:-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::* cpe:2.3:o:qualcomm:qualcomm215_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::* cpe:2.3:h:qualcomm:sd205:-:::::::* cpe:2.3:o:qualcomm:qcc5100_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:sd710:-:::::::* cpe:2.3:h:qualcomm:wcn3990:-:::::::* cpe:2.3:o:qualcomm:wcn6851_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:o:qualcomm:sd855_firmware:-:::::::* cpe:2.3:h:qualcomm:sd870:-:::::::* cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::* cpe:2.3:o:qualcomm:sda429w_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs410_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6430:-:::::::* cpe:2.3:h:qualcomm:sdxr2_5g:-:::::::* cpe:2.3:h:qualcomm:sda429w:-:::::::* cpe:2.3:h:qualcomm:sd210:-:::::::* cpe:2.3:o:qualcomm:wcd9326_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8835:-:::::::* cpe:2.3:o:qualcomm:qca6390_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn6850:-:::::::* cpe:2.3:o:qualcomm:wcn3950_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3988_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9341_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9341:-:::::::* cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:wcn3950:-:::::::* cpe:2.3:o:qualcomm:sd865_5g_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8830:-:::::::* cpe:2.3:h:qualcomm:qca6335:-:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
References	~~(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin -~~	(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin - Patch, Vendor Advisory
First Time		Qualcomm wcd9326 Qualcomm wcn6850 Qualcomm wsa8815 Firmware Qualcomm qca6310 Firmware Qualcomm wcn6851 Qualcomm wsa8830 Firmware Qualcomm qca6391 Qualcomm qcc5100 Qualcomm sd855 Firmware Qualcomm wsa8835 Qualcomm Qualcomm wcn3990 Firmware Qualcomm wcd9340 Firmware Qualcomm qca6390 Firmware Qualcomm sdxr1 Qualcomm sda429w Qualcomm sw5100p Firmware Qualcomm qcc5100 Firmware Qualcomm qcs410 Firmware Qualcomm wcn3950 Firmware Qualcomm wsa8810 Qualcomm wcd9370 Qualcomm wcn3950 Qualcomm qca6430 Qualcomm wcn3998 Firmware Qualcomm qca6436 Qualcomm sw5100 Firmware Qualcomm qualcomm215 Qualcomm wsa8810 Firmware Qualcomm wcn3988 Firmware Qualcomm wcd9341 Qualcomm sd845 Qualcomm sd845 Firmware Qualcomm wcn3988 Qualcomm wcn3990 Qualcomm sd865 5g Qualcomm wcd9370 Firmware Qualcomm sdxr1 Firmware Qualcomm sdxr2 5g Qualcomm sd870 Firmware Qualcomm aqt1000 Firmware Qualcomm wcn3660b Firmware Qualcomm sd855 Qualcomm aqt1000 Qualcomm qca6430 Firmware Qualcomm wcd9380 Qualcomm sd205 Firmware Qualcomm qca6436 Firmware Qualcomm qca6335 Qualcomm mdm9150 Qualcomm qca6390 Qualcomm wcn6851 Firmware Qualcomm qca6310 Qualcomm qca6426 Qualcomm mdm9150 Firmware Qualcomm sda429w Firmware Qualcomm wcn3680b Qualcomm wcd9340 Qualcomm qcs610 Qualcomm sdxr2 5g Firmware Qualcomm wsa8815 Qualcomm sd210 Firmware Qualcomm qca6335 Firmware Qualcomm sdx55m Qualcomm wcd9380 Firmware Qualcomm sd210 Qualcomm qca6426 Firmware Qualcomm wsa8830 Qualcomm sd205 Qualcomm wcn3980 Qualcomm sd865 5g Firmware Qualcomm sw5100p Qualcomm wcd9341 Firmware Qualcomm sd870 Qualcomm sw5100 Qualcomm wcn3680b Firmware Qualcomm qcs610 Firmware Qualcomm qca6391 Firmware Qualcomm wcn3610 Qualcomm wsa8835 Firmware Qualcomm wcn3998 Qualcomm sd710 Qualcomm wcn3610 Firmware Qualcomm wcn3660b Qualcomm qca6420 Firmware Qualcomm qca6420 Qualcomm wcn6850 Firmware Qualcomm qualcomm215 Firmware Qualcomm sd710 Firmware Qualcomm wcn3980 Firmware Qualcomm qcs410 Qualcomm wcd9326 Firmware Qualcomm sdx55m Firmware
CWE		CWE-120

13 Dec 2022, 16:52

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-12-13 16:15

Updated : 2023-12-10 14:48

NVD link : CVE-2022-25712

Mitre link : CVE-2022-25712

CVE.ORG link : CVE-2022-25712

JSON object : View

Products Affected

qualcomm

aqt1000_firmware
wcn3950_firmware
qca6436
qca6390_firmware
qca6430_firmware
wcn3610
wsa8830_firmware
qca6391
wcn3660b
sd855
wcn3990
wcn3988
sd870
mdm9150_firmware
qca6310
sw5100p
qca6391_firmware
wcn3610_firmware
mdm9150
sd210_firmware
sd865_5g
sd205_firmware
sd710_firmware
sda429w_firmware
sd855_firmware
qca6436_firmware
sd870_firmware
qca6335_firmware
qualcomm215_firmware
wsa8810
qca6310_firmware
wcd9341_firmware
wcd9370_firmware
sdxr1_firmware
qca6430
wsa8815_firmware
qcs410
wcn6850_firmware
wcn3980_firmware
wcd9326
sd845_firmware
wsa8830
sda429w
qca6335
wcd9380_firmware
qca6426_firmware
wcd9380
wcd9340_firmware
wcn3998
wsa8810_firmware
sd710
qcc5100_firmware
sw5100
wcn6851
wcd9340
qca6420_firmware
wcd9370
qca6426
sdx55m
wcn3950
wcn3998_firmware
sd865_5g_firmware
wcn6850
qca6420
qcc5100
qcs410_firmware
sd845
wcn3680b_firmware
wcn3990_firmware
wsa8835_firmware
wcn3660b_firmware
wsa8815
wcd9326_firmware
qcs610
sw5100_firmware
sdxr1
qualcomm215
sdxr2_5g_firmware
sw5100p_firmware
wcn3680b
sd210
sd205
wcn3988_firmware
wsa8835
qca6390
wcd9341
aqt1000
wcn3980
sdx55m_firmware
sdxr2_5g
qcs610_firmware
wcn6851_firmware

CWE

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

7.8 /10