CVE-2022-25651

Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

CVSS v3 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:mdm9250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9250:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:mdm9626_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9626:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9628:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:qca4020_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4020:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:qca9367_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9367:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:sa6155_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6155:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:sa8155_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8155:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:sd820_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd820:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9326:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:wcd9360_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9360:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3610:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:qualcomm:wcn3615_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3615:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND

cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND

cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3680b:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 50 (hide)

AND

cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3999:-:*:*:*:*:*:*:*

Configuration 51 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 52 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

History

22 Jun 2022, 15:21

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 10.0 v3 : 9.8
CPE		cpe:2.3:h:qualcomm:apq8017:-:::::::* cpe:2.3:o:qualcomm:apq8096au_firmware:-:::::::* cpe:2.3:h:qualcomm:sdx20:-:::::::* cpe:2.3:o:qualcomm:apq8017_firmware:-:::::::* cpe:2.3:h:qualcomm:apq8009:-:::::::* cpe:2.3:h:qualcomm:qca4020:-:::::::* cpe:2.3:h:qualcomm:wcn3660b:-:::::::* cpe:2.3:o:qualcomm:wcn3680b_firmware:-:::::::* cpe:2.3:h:qualcomm:csra6620:-:::::::* cpe:2.3:h:qualcomm:mdm9626:-:::::::* cpe:2.3:h:qualcomm:qca6584:-:::::::* cpe:2.3:o:qualcomm:csra6620_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9650_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3999_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6574au:-:::::::* cpe:2.3:h:qualcomm:qca6595au:-:::::::* cpe:2.3:h:qualcomm:mdm9650:-:::::::* cpe:2.3:h:qualcomm:mdm9607:-:::::::* cpe:2.3:h:qualcomm:csrb31024:-:::::::* cpe:2.3:h:qualcomm:sa6155p:-:::::::* cpe:2.3:o:qualcomm:mdm9150_firmware:-:::::::* cpe:2.3:h:qualcomm:qca9367:-:::::::* cpe:2.3:h:qualcomm:qca6574a:-:::::::* cpe:2.3:h:qualcomm:qca6696:-:::::::* cpe:2.3:o:qualcomm:mdm9628_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3615:-:::::::* cpe:2.3:o:qualcomm:qca6174a_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9379_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3660b_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:h:qualcomm:sd820:-:::::::* cpe:2.3:h:qualcomm:mdm9628:-:::::::* cpe:2.3:h:qualcomm:qca9379:-:::::::* cpe:2.3:h:qualcomm:sa415m:-:::::::* cpe:2.3:o:qualcomm:sdx20_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8155p:-:::::::* cpe:2.3:o:qualcomm:qca9367_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9335:-:::::::* cpe:2.3:h:qualcomm:apq8096au:-:::::::* cpe:2.3:o:qualcomm:qca6584_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6574_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6564a:-:::::::* cpe:2.3:o:qualcomm:apq8053_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3680b:-:::::::* cpe:2.3:h:qualcomm:wcd9326:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:o:qualcomm:sa6155p_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9360:-:::::::* cpe:2.3:o:qualcomm:mdm9626_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8195p_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9150:-:::::::* cpe:2.3:h:qualcomm:qca9377:-:::::::* cpe:2.3:o:qualcomm:sa415m_firmware:-:::::::* cpe:2.3:h:qualcomm:csra6640:-:::::::* cpe:2.3:h:qualcomm:mdm9250:-:::::::* cpe:2.3:h:qualcomm:sa8155:-:::::::* cpe:2.3:o:qualcomm:wcd9335_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:o:qualcomm:qca9377_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3610:-:::::::* cpe:2.3:o:qualcomm:mdm9607_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:sa6155:-:::::::* cpe:2.3:h:qualcomm:qca6574:-:::::::* cpe:2.3:o:qualcomm:sd820_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6564a_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::* cpe:2.3:o:qualcomm:qca4020_firmware:-:::::::* cpe:2.3:h:qualcomm:sdx55:-:::::::* cpe:2.3:o:qualcomm:sa8155p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa6155_firmware:-:::::::* cpe:2.3:o:qualcomm:sa515m_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6564au:-:::::::* cpe:2.3:h:qualcomm:sa515m:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:qca6595:-:::::::* cpe:2.3:o:qualcomm:qca6564au_firmware:-:::::::* cpe:2.3:o:qualcomm:csra6640_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs405_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3999:-:::::::* cpe:2.3:o:qualcomm:qca6595au_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9360_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs405:-:::::::* cpe:2.3:o:qualcomm:wcn3615_firmware:-:::::::* cpe:2.3:o:qualcomm:ar8031_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6696_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3610_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9326_firmware:-:::::::* cpe:2.3:o:qualcomm:apq8009_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6595_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8195p:-:::::::* cpe:2.3:o:qualcomm:sdx55_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm9640:-:::::::* cpe:2.3:o:qualcomm:qca6574a_firmware:-:::::::* cpe:2.3:h:qualcomm:ar8031:-:::::::* cpe:2.3:o:qualcomm:sa8155_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm9640_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6174a:-:::::::* cpe:2.3:o:qualcomm:csrb31024_firmware:-:::::::* cpe:2.3:h:qualcomm:apq8053:-:::::::* cpe:2.3:o:qualcomm:mdm9250_firmware:-:::::::*
CWE		CWE-190
References	~~(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin -~~	(CONFIRM) https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin - Vendor Advisory

14 Jun 2022, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-06-14 10:15

Updated : 2024-02-04 22:29

NVD link : CVE-2022-25651

Mitre link : CVE-2022-25651

CVE.ORG link : CVE-2022-25651

JSON object : View

Products Affected

qualcomm

sa6155_firmware
sa6155p_firmware
wsa8810
sa515m_firmware
wcn3680b
apq8053
mdm9628
qca6564a_firmware
mdm9650
wcd9360
sa8155
qca6574
wcn3660b_firmware
qca6595au
wsa8815
qca6174a_firmware
sa8195p_firmware
qca6584_firmware
wcn3998
qca6174a
wcn3680b_firmware
qca6595
qca6584
qca6574au
apq8096au
apq8009
sa6155p
qca6574_firmware
wcn3999_firmware
wcn3999
qca6696
qca6574a
sa515m
wsa8810_firmware
csra6640
sa8155p
mdm9650_firmware
sdx20
sdx55
mdm9607_firmware
sa6155
mdm9626_firmware
csrb31024
qca9377
sa415m_firmware
qca6564au_firmware
wcn3660b
sd820
ar8031_firmware
wcn3998_firmware
csrb31024_firmware
mdm9640_firmware
apq8009_firmware
qcs405_firmware
qcs405
qca6574a_firmware
wcn3980_firmware
qca6595au_firmware
mdm9250
qca9377_firmware
apq8096au_firmware
sa8195p
mdm9607
qca9367
mdm9640
wcd9360_firmware
apq8017
sa8155p_firmware
sd820_firmware
mdm9150_firmware
wcd9335
wcn3610_firmware
qca9379_firmware
sdx20_firmware
wcd9326
csra6620_firmware
qca6564au
wcn3615_firmware
qca6564a
qca4020
sa415m
qca9367_firmware
wsa8815_firmware
sa8155_firmware
qca4020_firmware
qca6595_firmware
wcn3610
mdm9626
wcn3980
wcd9326_firmware
mdm9150
wcd9335_firmware
mdm9628_firmware
wcn3615
apq8017_firmware
ar8031
apq8053_firmware
qca6696_firmware
qca9379
mdm9250_firmware
csra6640_firmware
qca6574au_firmware
sdx55_firmware
csra6620

CWE

CWE-190

Integer Overflow or Wraparound

9.8 /10