ByteOS Network

Vulnerability Details :

CVE-2022-25655

Summary

Assigner-qualcomm

Assigner Org ID-2cfc7d3e-20d3-47ac-8db7-1b7285aff15f

Published At-07 Mar, 2023 | 04:43

Updated At-03 Aug, 2024 | 04:42

Buffer copy without checking the size of input in WLAN HAL.

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:qualcomm

Assigner Org ID:2cfc7d3e-20d3-47ac-8db7-1b7285aff15f

Published At:07 Mar, 2023 | 04:43

Updated At:03 Aug, 2024 | 04:42

▼CVE Numbering Authority (CNA)

Buffer copy without checking the size of input in WLAN HAL.

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

Affected Products

Vendor

Qualcomm Technologies, Inc.

Product

Snapdragon

Platforms

Snapdragon Auto
Snapdragon Compute
Snapdragon Connectivity
Snapdragon Consumer Electronics Connectivity
Snapdragon Consumer IOT
Snapdragon Industrial IOT
Snapdragon Mobile
Snapdragon Voice & Music
Snapdragon Wearables
Snapdragon Wired Infrastructure and Networking

Default Status

unaffected

Versions

Affected

APQ8009
APQ8017
APQ8076
APQ8084
APQ8092
APQ8094
APQ8096AU
AQT1000
AR8031
AR9380
CSR8811
CSRA6620
CSRA6640
CSRB31024
IPQ4018
IPQ4019
IPQ4028
IPQ4029
IPQ5010
IPQ5018
IPQ5028
IPQ6000
IPQ6005
IPQ6010
IPQ6018
IPQ6028
IPQ8064
IPQ8065
IPQ8068
IPQ8069
IPQ8070
IPQ8070A
IPQ8071
IPQ8071A
IPQ8072
IPQ8072A
IPQ8074
IPQ8074A
IPQ8076
IPQ8076A
IPQ8078
IPQ8078A
IPQ8173
IPQ8174
MDM8215
MDM9206
MDM9215
MDM9235M
MDM9250
MDM9310
MDM9330
MDM9607
MDM9615
MDM9628
MDM9635M
MDM9640
MDM9650
MSM8976
MSM8992
MSM8994
MSM8996AU
QCA1990
QCA4010
QCA4020
QCA4024
QCA6164
QCA6174
QCA6174A
QCA6175A
QCA6310
QCA6320
QCA6335
QCA6390
QCA6391
QCA6420
QCA6428
QCA6430
QCA6438
QCA6554A
QCA6564
QCA6564A
QCA6564AU
QCA6574
QCA6574A
QCA6574AU
QCA6584
QCA6584AU
QCA6595
QCA6595AU
QCA6696
QCA7500
QCA8075
QCA8081
QCA9367
QCA9377
QCA9379
QCA9531
QCA9558
QCA9561
QCA9880
QCA9882
QCA9886
QCA9887
QCA9888
QCA9889
QCA9898
QCA9980
QCA9982
QCA9984
QCA9985
QCA9986
QCA9987
QCA9990
QCA9992
QCA9994
QCC5100
QCM2290
QCM4290
QCM4325
QCM6125
QCN5021
QCN5022
QCN5024
QCN5052
QCN5054
QCN5064
QCN5121
QCN5122
QCN5124
QCN5152
QCN5154
QCN5164
QCN5550
QCN6023
QCN6024
QCN6122
QCN6132
QCN9000
QCN9012
QCN9022
QCN9024
QCN9070
QCN9072
QCN9074
QCN9100
QCS2290
QCS405
QCS410
QCS4290
QCS603
QCS605
QCS610
QCS6125
QFE1922
QFE1952
SA415M
SA515M
SA6145P
SA6150P
SA6155
SA6155P
SA8145P
SA8150P
SA8155
SA8155P
SA8195P
SC8180X+SDX55
SD 455
SD 636
SD 675
SD 8CX
SD 8cx Gen2
SD460
SD480
SD660
SD662
SD665
SD670
SD675
SD678
SD680
SD690 5G
SD695
SD710
SD712
SD720G
SD730
SD750G
SD765
SD765G
SD768G
SD7c
SD820
SD835
SD845
SD850
SD855
SDM630
SDX20M
SDX50M
SDX55
SDX55M
SDXR1
SG4150P
SM4125
SM6250
SM6250P
SM7250P
Snapdragon 4 Gen 1
SW5100
SW5100P
WCD9326
WCD9330
WCD9335
WCD9340
WCD9341
WCD9360
WCD9370
WCD9371
WCD9375
WCD9380
WCD9385
WCN3610
WCN3615
WCN3660B
WCN3680B
WCN3910
WCN3950
WCN3980
WCN3988
WCN3990
WCN3991
WCN3998
WCN3999
WSA8810
WSA8815
WSA8830
WSA8835

Problem Types

Type	CWE ID	Description
CWE	CWE-120	CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')

Type: CWE

CWE ID: CWE-120

Description: CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')

Metrics

Version	Base score	Base severity	Vector
3.1	8.4	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Version: 3.1

Base score: 8.4

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin	N/A

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin

Resource: N/A

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin	x_transferred

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin

Resource:

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:product-security@qualcomm.com

Published At:10 Mar, 2023 | 21:15

Updated At:12 Apr, 2024 | 17:15

Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary	3.1	8.4	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 3.1

Base score: 7.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 8.4

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CPE Matches

Qualcomm Technologies, Inc.

>>apq8009_firmware>>-

cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8009>>-

cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8017_firmware>>-

cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8017>>-

cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8076_firmware>>-

cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8076>>-

cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8084_firmware>>-

cpe:2.3:o:qualcomm:apq8084_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8084>>-

cpe:2.3:h:qualcomm:apq8084:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8092_firmware>>-

cpe:2.3:o:qualcomm:apq8092_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8092>>-

cpe:2.3:h:qualcomm:apq8092:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8094_firmware>>-

cpe:2.3:o:qualcomm:apq8094_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8094>>-

cpe:2.3:h:qualcomm:apq8094:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8096au_firmware>>-

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8096au>>-

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>aqt1000_firmware>>-

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>aqt1000>>-

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ar8031_firmware>>-

cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ar8031>>-

cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ar9380_firmware>>-

cpe:2.3:o:qualcomm:ar9380_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ar9380>>-

cpe:2.3:h:qualcomm:ar9380:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csr8811_firmware>>-

cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csr8811>>-

cpe:2.3:h:qualcomm:csr8811:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csra6620_firmware>>-

cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csra6620>>-

cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csra6640_firmware>>-

cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csra6640>>-

cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csrb31024_firmware>>-

cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>csrb31024>>-

cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4018_firmware>>-

cpe:2.3:o:qualcomm:ipq4018_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4018>>-

cpe:2.3:h:qualcomm:ipq4018:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4019_firmware>>-

cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4019>>-

cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4028_firmware>>-

cpe:2.3:o:qualcomm:ipq4028_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4028>>-

cpe:2.3:h:qualcomm:ipq4028:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4029_firmware>>-

cpe:2.3:o:qualcomm:ipq4029_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq4029>>-

cpe:2.3:h:qualcomm:ipq4029:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq5010_firmware>>-

cpe:2.3:o:qualcomm:ipq5010_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq5010>>-

cpe:2.3:h:qualcomm:ipq5010:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq5018_firmware>>-

cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq5018>>-

cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq5028_firmware>>-

cpe:2.3:o:qualcomm:ipq5028_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq5028>>-

cpe:2.3:h:qualcomm:ipq5028:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6000_firmware>>-

cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6000>>-

cpe:2.3:h:qualcomm:ipq6000:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6005_firmware>>-

cpe:2.3:o:qualcomm:ipq6005_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6005>>-

cpe:2.3:h:qualcomm:ipq6005:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6010_firmware>>-

cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6010>>-

cpe:2.3:h:qualcomm:ipq6010:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6018_firmware>>-

cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>ipq6018>>-

cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-120	Primary	nvd@nist.gov
CWE-120	Secondary	product-security@qualcomm.com

CWE ID: CWE-120

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-120

Type: Secondary

Source: product-security@qualcomm.com

References

Hyperlink	Source	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin	product-security@qualcomm.com	Vendor Advisory

Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin

Source: product-security@qualcomm.com

Resource:

Vendor Advisory

CVE-2022-25655

Credits

Buffer copy without checking the size of input in WLAN HAL.

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs