Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.
References
| Link | Resource |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
Configuration 12 (hide)
| AND |
|
History
21 Apr 2023, 03:49
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
| CWE | CWE-120 | |
| CPE | cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:snapdragon_wear_1200:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qts110:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:snapdragon_x5_lte_modem_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:snapdragon_wear_1300:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:snapdragon_wear_1100_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:snapdragon_wear_1200_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:mdm9207:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:snapdragon_wear_1300_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:snapdragon_x5_lte_modem:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:snapdragon_wear_1100:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:mdm9207_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:* |
|
| References | (MISC) https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin - Vendor Advisory | |
| First Time |
Qualcomm wcd9306 Firmware
Qualcomm snapdragon Wear 1100 Firmware Qualcomm mdm9207 Qualcomm snapdragon Wear 1300 Qualcomm qts110 Firmware Qualcomm mdm8207 Qualcomm snapdragon X5 Lte Modem Firmware Qualcomm snapdragon Wear 1300 Firmware Qualcomm qca4004 Firmware Qualcomm mdm9206 Qualcomm qca4004 Qualcomm wcd9330 Firmware Qualcomm snapdragon X5 Lte Modem Qualcomm mdm9206 Firmware Qualcomm wcd9306 Qualcomm snapdragon Wear 1200 Firmware Qualcomm mdm9205 Firmware Qualcomm mdm9205 Qualcomm mdm9207 Firmware Qualcomm Qualcomm wcd9330 Qualcomm snapdragon Wear 1100 Qualcomm qts110 Qualcomm snapdragon Wear 1200 Qualcomm mdm8207 Firmware |
13 Apr 2023, 07:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-04-13 07:15
Updated : 2024-04-12 17:16
NVD link : CVE-2022-33259
Mitre link : CVE-2022-33259
CVE.ORG link : CVE-2022-33259
JSON object : View
Products Affected
qualcomm
- snapdragon_wear_1200_firmware
- wcd9306
- mdm8207
- wcd9330_firmware
- mdm9207
- mdm9205
- qts110
- mdm9206_firmware
- qca4004_firmware
- snapdragon_wear_1100
- snapdragon_x5_lte_modem
- mdm9207_firmware
- snapdragon_wear_1300_firmware
- wcd9330
- snapdragon_wear_1200
- wcd9306_firmware
- qca4004
- mdm8207_firmware
- snapdragon_wear_1100_firmware
- qts110_firmware
- snapdragon_wear_1300
- mdm9205_firmware
- snapdragon_x5_lte_modem_firmware
- mdm9206
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')