CVE-2022-33299

Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:mdm9250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9250:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9628:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:qca6175a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6175a:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:qca9367_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9367:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9074:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:sd626_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd626:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:sdx20m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx20m:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9326:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:wcd9360_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9360:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3680b:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

History

12 Jan 2023, 21:35

Type	Values Removed	Values Added
CPE		cpe:2.3:h:qualcomm:wcd9326:-:::::::* cpe:2.3:o:qualcomm:mdm9628_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6174a:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:o:qualcomm:mdm9150_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6175a_firmware:-:::::::* cpe:2.3:o:qualcomm:sa415m_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6595:-:::::::* cpe:2.3:o:qualcomm:qcn9074_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9650_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6574:-:::::::* cpe:2.3:h:qualcomm:wcn3680b:-:::::::* cpe:2.3:h:qualcomm:qca6574au:-:::::::* cpe:2.3:h:qualcomm:qca6696:-:::::::* cpe:2.3:o:qualcomm:sdx20m_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:o:qualcomm:qca6696_firmware:-:::::::* cpe:2.3:o:qualcomm:csra6620_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs405:-:::::::* cpe:2.3:o:qualcomm:wcn3680b_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:h:qualcomm:apq8017:-:::::::* cpe:2.3:o:qualcomm:wcn3660b_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9650:-:::::::* cpe:2.3:h:qualcomm:csra6620:-:::::::* cpe:2.3:h:qualcomm:qca6564au:-:::::::* cpe:2.3:o:qualcomm:qca6584_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6174a_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9150:-:::::::* cpe:2.3:o:qualcomm:qca6564a_firmware:-:::::::* cpe:2.3:h:qualcomm:sa415m:-:::::::* cpe:2.3:o:qualcomm:qcs405_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6564au_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9335_firmware:-:::::::* cpe:2.3:o:qualcomm:ar8031_firmware:-:::::::* cpe:2.3:h:qualcomm:apq8096au:-:::::::* cpe:2.3:h:qualcomm:sa515m:-:::::::* cpe:2.3:h:qualcomm:wcd9335:-:::::::* cpe:2.3:h:qualcomm:mdm9607:-:::::::* cpe:2.3:h:qualcomm:mdm9628:-:::::::* cpe:2.3:o:qualcomm:mdm9607_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6584:-:::::::* cpe:2.3:h:qualcomm:wcd9360:-:::::::* cpe:2.3:h:qualcomm:qca6175a:-:::::::* cpe:2.3:h:qualcomm:msm8996au:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9377_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9250:-:::::::* cpe:2.3:h:qualcomm:qca9377:-:::::::* cpe:2.3:o:qualcomm:csrb31024_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9640:-:::::::* cpe:2.3:o:qualcomm:sd626_firmware:-:::::::* cpe:2.3:o:qualcomm:sdx55_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9206_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6595au_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6595_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:ar8031:-:::::::* cpe:2.3:h:qualcomm:qca6564a:-:::::::* cpe:2.3:o:qualcomm:csra6640_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9640_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:o:qualcomm:msm8996au_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6595au:-:::::::* cpe:2.3:o:qualcomm:wcd9360_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9250_firmware:-:::::::* cpe:2.3:o:qualcomm:sdx20_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9326_firmware:-:::::::* cpe:2.3:o:qualcomm:apq8096au_firmware:-:::::::* cpe:2.3:h:qualcomm:csrb31024:-:::::::* cpe:2.3:h:qualcomm:sd626:-:::::::* cpe:2.3:h:qualcomm:qca6584au:-:::::::* cpe:2.3:h:qualcomm:qca6574a:-:::::::* cpe:2.3:h:qualcomm:csra6640:-:::::::* cpe:2.3:o:qualcomm:apq8017_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6574a_firmware:-:::::::* cpe:2.3:h:qualcomm:sdx55:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn9074:-:::::::* cpe:2.3:h:qualcomm:sdx20:-:::::::* cpe:2.3:o:qualcomm:qca6574_firmware:-:::::::* cpe:2.3:o:qualcomm:sa515m_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9206:-:::::::* cpe:2.3:o:qualcomm:qca9367_firmware:-:::::::* cpe:2.3:h:qualcomm:sdx20m:-:::::::* cpe:2.3:o:qualcomm:qca6584au_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9367:-:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5
CWE		CWE-476
First Time		Qualcomm wcd9326 Qualcomm sdx55 Firmware Qualcomm apq8096au Firmware Qualcomm sdx20 Firmware Qualcomm wsa8815 Firmware Qualcomm qca6564au Firmware Qualcomm mdm9607 Firmware Qualcomm msm8996au Qualcomm Qualcomm qcn9074 Qualcomm mdm9640 Firmware Qualcomm sdx55 Qualcomm msm8996au Firmware Qualcomm qca6696 Qualcomm mdm9250 Firmware Qualcomm qca9367 Firmware Qualcomm qca6595 Qualcomm wcn3998 Firmware Qualcomm csrb31024 Qualcomm mdm9628 Qualcomm mdm9650 Qualcomm qca6595 Firmware Qualcomm sd626 Firmware Qualcomm apq8017 Qualcomm qca6696 Firmware Qualcomm qca6584 Firmware Qualcomm qca9367 Qualcomm mdm9206 Qualcomm qca6174a Qualcomm qca6574a Firmware Qualcomm sa515m Firmware Qualcomm qcn9074 Firmware Qualcomm ar8031 Firmware Qualcomm qca6174a Firmware Qualcomm sdx20m Qualcomm mdm9250 Qualcomm sdx20 Qualcomm wcn3660b Firmware Qualcomm qca6574a Qualcomm qca6574au Qualcomm qcs405 Qualcomm qca9377 Firmware Qualcomm qca6574au Firmware Qualcomm mdm9150 Qualcomm qca6595au Qualcomm sa415m Firmware Qualcomm qca6574 Firmware Qualcomm wcd9360 Firmware Qualcomm mdm9150 Firmware Qualcomm wcd9335 Qualcomm csrb31024 Firmware Qualcomm wcn3680b Qualcomm qca6584 Qualcomm sdx20m Firmware Qualcomm apq8017 Firmware Qualcomm wsa8815 Qualcomm qca6564au Qualcomm ar8031 Qualcomm qca6175a Firmware Qualcomm sa515m Qualcomm wcn3980 Qualcomm csra6640 Qualcomm sd626 Qualcomm wcd9360 Qualcomm wcn3680b Firmware Qualcomm mdm9628 Firmware Qualcomm qca6595au Firmware Qualcomm csra6620 Qualcomm qca6574 Qualcomm qca6564a Firmware Qualcomm qca6564a Qualcomm wcn3998 Qualcomm mdm9650 Firmware Qualcomm qca6584au Firmware Qualcomm apq8096au Qualcomm mdm9607 Qualcomm sa415m Qualcomm wcn3660b Qualcomm csra6620 Firmware Qualcomm qca9377 Qualcomm qca6584au Qualcomm qcs405 Firmware Qualcomm qca6175a Qualcomm wcn3980 Firmware Qualcomm wcd9335 Firmware Qualcomm csra6640 Firmware Qualcomm mdm9640 Qualcomm mdm9206 Firmware Qualcomm wcd9326 Firmware
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin - Vendor Advisory

09 Jan 2023, 12:40

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-01-09 08:15

Updated : 2023-12-10 14:48

NVD link : CVE-2022-33299

Mitre link : CVE-2022-33299

CVE.ORG link : CVE-2022-33299

JSON object : View

Products Affected

qualcomm

qca9367
qcn9074_firmware
qca6175a_firmware
mdm9206_firmware
qca9377_firmware
qcs405_firmware
csrb31024
qca6574
sdx20_firmware
csra6620
sd626
wcn3660b
qca6574a
csrb31024_firmware
qca6564au
qca6564a
qcs405
mdm9150_firmware
qca6584
mdm9206
mdm9250_firmware
mdm9150
wcd9335
mdm9607
qca6595_firmware
qca6574au
qca6564a_firmware
qcn9074
qca9367_firmware
sa515m
sdx55
qca6595au_firmware
ar8031
sdx20m_firmware
csra6620_firmware
sa415m_firmware
mdm9628_firmware
qca6174a
mdm9640
wsa8815_firmware
msm8996au_firmware
csra6640
qca6696
wcn3980_firmware
wcd9326
sdx55_firmware
apq8017_firmware
sd626_firmware
qca6574_firmware
mdm9250
sa415m
qca6696_firmware
wcn3998
qca6584_firmware
qca6584au
qca6175a
msm8996au
apq8096au
sdx20m
qca6584au_firmware
qca6595
qca6174a_firmware
mdm9640_firmware
wcn3998_firmware
mdm9628
qca6595au
wcn3680b_firmware
wcd9360
wcn3660b_firmware
wcd9360_firmware
apq8017
csra6640_firmware
wsa8815
wcd9326_firmware
mdm9607_firmware
qca9377
wcn3680b
sa515m_firmware
mdm9650
ar8031_firmware
qca6574au_firmware
wcd9335_firmware
wcn3980
qca6564au_firmware
apq8096au_firmware
mdm9650_firmware
sdx20
qca6574a_firmware

CWE

CWE-476

NULL Pointer Dereference

7.5 /10