CVE-2022-25717

Memory corruption in display due to double free while allocating frame buffer memory

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:mdm9250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9250:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6420:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6430:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8337:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9074:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs410:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:qcs8155_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs8155:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qualcomm215:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd205:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd210:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:sd429_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd429:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:sd835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd835:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sda429w:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:sdxr1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdxr1:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9326:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3610:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:wcn3620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3620:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3680b:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3990:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

History

13 Jan 2023, 00:51

Type	Values Removed	Values Added
CWE		CWE-415
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
First Time		Qualcomm wcd9326 Qualcomm sdx55 Firmware Qualcomm apq8096au Firmware Qualcomm wsa8815 Firmware Qualcomm qca6564au Firmware Qualcomm qca6391 Qualcomm sd855 Firmware Qualcomm msm8996au Qualcomm Qualcomm sd835 Qualcomm wcn3990 Firmware Qualcomm qcn9074 Qualcomm wcn3620 Firmware Qualcomm wcd9340 Firmware Qualcomm sd835 Firmware Qualcomm sa8155p Firmware Qualcomm sdx55 Qualcomm msm8996au Firmware Qualcomm mdm9250 Firmware Qualcomm sdxr1 Qualcomm sda429w Qualcomm qcs410 Firmware Qualcomm wcn3950 Firmware Qualcomm wsa8810 Qualcomm wcd9370 Qualcomm wcn3950 Qualcomm qca6430 Qualcomm wcn3998 Firmware Qualcomm mdm9650 Qualcomm qca8337 Qualcomm qualcomm215 Qualcomm wsa8810 Firmware Qualcomm wcd9341 Qualcomm qcs8155 Firmware Qualcomm wcn3990 Qualcomm wcd9370 Firmware Qualcomm qca6574a Firmware Qualcomm sdxr1 Firmware Qualcomm sa515m Firmware Qualcomm qcn9074 Firmware Qualcomm mdm9250 Qualcomm aqt1000 Firmware Qualcomm wcn3660b Firmware Qualcomm qca6574a Qualcomm qca8337 Firmware Qualcomm sd855 Qualcomm qca6574au Qualcomm aqt1000 Qualcomm qca6430 Firmware Qualcomm qca6574au Firmware Qualcomm sd205 Firmware Qualcomm mdm9150 Qualcomm sd429 Qualcomm mdm9150 Firmware Qualcomm wcd9335 Qualcomm sdm429w Firmware Qualcomm sa8155p Qualcomm wcd9340 Qualcomm sda429w Firmware Qualcomm wcn3680b Qualcomm qcs610 Qualcomm wsa8815 Qualcomm sd210 Firmware Qualcomm qca6564au Qualcomm sd210 Qualcomm sa515m Qualcomm sd205 Qualcomm wcn3980 Qualcomm wcd9341 Firmware Qualcomm wcn3680b Firmware Qualcomm sd429 Firmware Qualcomm qcs610 Firmware Qualcomm qca6391 Firmware Qualcomm wcn3610 Qualcomm qca6564a Firmware Qualcomm qca6564a Qualcomm wcn3998 Qualcomm mdm9650 Firmware Qualcomm apq8096au Qualcomm sdm429w Qualcomm wcn3610 Firmware Qualcomm wcn3660b Qualcomm qcs8155 Qualcomm qca6420 Firmware Qualcomm qca6420 Qualcomm qualcomm215 Firmware Qualcomm wcn3980 Firmware Qualcomm wcd9335 Firmware Qualcomm wcn3620 Qualcomm qcs410 Qualcomm wcd9326 Firmware
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin - Patch, Vendor Advisory
CPE		cpe:2.3:o:qualcomm:wcd9340_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9326:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:o:qualcomm:mdm9150_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9340:-:::::::* cpe:2.3:h:qualcomm:qualcomm215:-:::::::* cpe:2.3:h:qualcomm:qca6420:-:::::::* cpe:2.3:o:qualcomm:sd835_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn9074_firmware:-:::::::* cpe:2.3:o:qualcomm:sd205_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9650_firmware:-:::::::* cpe:2.3:h:qualcomm:sd835:-:::::::* cpe:2.3:h:qualcomm:wcn3680b:-:::::::* cpe:2.3:h:qualcomm:qca6574au:-:::::::* cpe:2.3:h:qualcomm:sd429:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:o:qualcomm:wcn3990_firmware:-:::::::* cpe:2.3:o:qualcomm:aqt1000_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs610:-:::::::* cpe:2.3:h:qualcomm:sd855:-:::::::* cpe:2.3:o:qualcomm:wcn3680b_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3610_firmware:-:::::::* cpe:2.3:h:qualcomm:qca8337:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:o:qualcomm:wcn3660b_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9650:-:::::::* cpe:2.3:h:qualcomm:aqt1000:-:::::::* cpe:2.3:h:qualcomm:qcs8155:-:::::::* cpe:2.3:h:qualcomm:qca6564au:-:::::::* cpe:2.3:o:qualcomm:qcs610_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6430_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8337_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6420_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::* cpe:2.3:o:qualcomm:sd429_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9150:-:::::::* cpe:2.3:o:qualcomm:qca6564a_firmware:-:::::::* cpe:2.3:h:qualcomm:sdxr1:-:::::::* cpe:2.3:o:qualcomm:wcd9370_firmware:-:::::::* cpe:2.3:o:qualcomm:sd210_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6564au_firmware:-:::::::* cpe:2.3:o:qualcomm:sdm429w_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs410:-:::::::* cpe:2.3:h:qualcomm:sdm429w:-:::::::* cpe:2.3:h:qualcomm:qca6391:-:::::::* cpe:2.3:o:qualcomm:wcd9335_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3610:-:::::::* cpe:2.3:h:qualcomm:apq8096au:-:::::::* cpe:2.3:h:qualcomm:wcd9370:-:::::::* cpe:2.3:h:qualcomm:sa515m:-:::::::* cpe:2.3:h:qualcomm:wcd9335:-:::::::* cpe:2.3:o:qualcomm:sdxr1_firmware:-:::::::* cpe:2.3:h:qualcomm:msm8996au:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3620_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9250:-:::::::* cpe:2.3:o:qualcomm:qualcomm215_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3620:-:::::::* cpe:2.3:o:qualcomm:sdx55_firmware:-:::::::* cpe:2.3:h:qualcomm:sd205:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:wcn3990:-:::::::* cpe:2.3:h:qualcomm:qca6564a:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:o:qualcomm:sd855_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::* cpe:2.3:o:qualcomm:sda429w_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs410_firmware:-:::::::* cpe:2.3:o:qualcomm:msm8996au_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6430:-:::::::* cpe:2.3:h:qualcomm:sda429w:-:::::::* cpe:2.3:h:qualcomm:sd210:-:::::::* cpe:2.3:o:qualcomm:mdm9250_firmware:-:::::::* cpe:2.3:o:qualcomm:apq8096au_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9326_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs8155_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6574a:-:::::::* cpe:2.3:o:qualcomm:qca6574a_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3950_firmware:-:::::::* cpe:2.3:h:qualcomm:sdx55:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9341_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn9074:-:::::::* cpe:2.3:h:qualcomm:wcd9341:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:wcn3950:-:::::::* cpe:2.3:o:qualcomm:sa515m_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8155p:-:::::::* cpe:2.3:o:qualcomm:sa8155p_firmware:-:::::::*

09 Jan 2023, 12:40

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-01-09 08:15

Updated : 2023-12-10 14:48

NVD link : CVE-2022-25717

Mitre link : CVE-2022-25717

CVE.ORG link : CVE-2022-25717

JSON object : View

Products Affected

qualcomm

aqt1000_firmware
sa8155p
wcn3950_firmware
qcn9074_firmware
wcn3620
qca6430_firmware
sd429_firmware
wcn3610
qca6391
wcn3660b
qca6574a
sd855
qca8337
wcn3990
qca6564au
qca6564a
mdm9150_firmware
qca6391_firmware
mdm9250_firmware
wcn3610_firmware
mdm9150
wcd9335
sd210_firmware
sd205_firmware
sda429w_firmware
qca6574au
sd855_firmware
qca6564a_firmware
qcn9074
sa515m
sdx55
qualcomm215_firmware
wsa8810
sd835
qcs8155_firmware
sd835_firmware
wcd9341_firmware
wcd9370_firmware
sdxr1_firmware
qca6430
wsa8815_firmware
msm8996au_firmware
qcs410
wcn3980_firmware
wcd9326
sdx55_firmware
sda429w
mdm9250
wcd9340_firmware
sa8155p_firmware
wcn3998
wsa8810_firmware
msm8996au
apq8096au
wcd9340
qca6420_firmware
wcd9370
wcn3950
qca8337_firmware
wcn3998_firmware
qca6420
qcs410_firmware
wcn3680b_firmware
wcn3990_firmware
wcn3660b_firmware
wsa8815
wcd9326_firmware
qcs610
sdxr1
qualcomm215
wcn3620_firmware
wcn3680b
sa515m_firmware
sd205
sd210
mdm9650
qca6574au_firmware
wcd9341
aqt1000
qcs8155
wcd9335_firmware
wcn3980
sdm429w_firmware
qca6564au_firmware
sdm429w
apq8096au_firmware
mdm9650_firmware
qca6574a_firmware
qcs610_firmware
sd429

CWE

CWE-415

Double Free

7.8 /10