CVE-2022-33304

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:9205_lte_modem:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:9206_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:9206_lte_modem:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:9207_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:9207_lte_modem:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:wcn685x-5_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn685x-5:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:wcn685x-1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn685x-1:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:wcn785x-1_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn785x-1:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:wcn785x-5_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn785x-5:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qca-4020-0-217msp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca-4020-0-217msp:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qca-4020-1-217msp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca-4020-1-217msp:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qca-4024-0-68cmqfn_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca-4024-0-68cmqfn:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:qca-4024-1-68cmqfn_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca-4024-1-68cmqfn:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4024:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qts110:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:qcs400_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs400:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_1100_wearable_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_1100_wearable_platform:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_1200_wearable_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_1200_wearable_platform:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_ar2_gen_1_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_ar2_gen_1_platform:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_wear_1300_platform:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_x5_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_x5_lte_modem:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:ssg2115p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ssg2115p:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:ssg2125p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ssg2125p:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:sxr1230p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr1230p:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3999:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

History

09 May 2023, 16:36

Type	Values Removed	Values Added
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin - Vendor Advisory
CPE		cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:o:qualcomm:qca-4024-1-68cmqfn_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs400:-:::::::* cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::* cpe:2.3:o:qualcomm:sxr2230p_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_x5_lte_modem_firmware:-:::::::* cpe:2.3:h:qualcomm:9206_lte_modem:-:::::::* cpe:2.3:o:qualcomm:snapdragon_1200_wearable_platform_firmware:-:::::::* cpe:2.3:o:qualcomm:csra6620_firmware:-:::::::* cpe:2.3:o:qualcomm:ssg2125p_firmware:-:::::::* cpe:2.3:o:qualcomm:csra6640_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn785x-5:-:::::::* cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:::::::* cpe:2.3:o:qualcomm:qca-4020-1-217msp_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9385_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9306:-:::::::* cpe:2.3:o:qualcomm:9207_lte_modem_firmware:-:::::::* cpe:2.3:o:qualcomm:9206_lte_modem_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn785x-1_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn785x-1:-:::::::* cpe:2.3:o:qualcomm:wsa8832_firmware:-:::::::* cpe:2.3:o:qualcomm:qca-4020-0-217msp_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn685x-1:-:::::::* cpe:2.3:h:qualcomm:qca-4024-0-68cmqfn:-:::::::* cpe:2.3:h:qualcomm:wcn685x-5:-:::::::* cpe:2.3:h:qualcomm:qca4004:-:::::::* cpe:2.3:h:qualcomm:wcn3999:-:::::::* cpe:2.3:h:qualcomm:csra6620:-:::::::* cpe:2.3:o:qualcomm:wcn685x-1_firmware:-:::::::* cpe:2.3:h:qualcomm:qca-4024-1-68cmqfn:-:::::::* cpe:2.3:h:qualcomm:qca4024:-:::::::* cpe:2.3:o:qualcomm:wcd9306_firmware:-:::::::* cpe:2.3:h:qualcomm:9207_lte_modem:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:h:qualcomm:wcd9330:-:::::::* cpe:2.3:h:qualcomm:qca-4020-1-217msp:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:o:qualcomm:ssg2115p_firmware:-:::::::* cpe:2.3:h:qualcomm:sxr1230p:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8832:-:::::::* cpe:2.3:h:qualcomm:wcd9385:-:::::::* cpe:2.3:h:qualcomm:snapdragon_wear_1300_platform:-:::::::* cpe:2.3:h:qualcomm:snapdragon_ar2_gen_1_platform:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:o:qualcomm:sxr1230p_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9330_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn685x-5_firmware:-:::::::* cpe:2.3:o:qualcomm:qca4024_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:h:qualcomm:ssg2125p:-:::::::* cpe:2.3:o:qualcomm:qts110_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_ar2_gen_1_platform_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm8207:-:::::::* cpe:2.3:h:qualcomm:snapdragon_x5_lte_modem:-:::::::* cpe:2.3:o:qualcomm:wcn3999_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_1100_wearable_platform_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8835:-:::::::* cpe:2.3:h:qualcomm:ar8031:-:::::::* cpe:2.3:h:qualcomm:qts110:-:::::::* cpe:2.3:h:qualcomm:9205_lte_modem:-:::::::* cpe:2.3:h:qualcomm:ssg2115p:-:::::::* cpe:2.3:o:qualcomm:qcs400_firmware:-:::::::* cpe:2.3:h:qualcomm:sxr2230p:-:::::::* cpe:2.3:h:qualcomm:snapdragon_1200_wearable_platform:-:::::::* cpe:2.3:o:qualcomm:wcd9335_firmware:-:::::::* cpe:2.3:o:qualcomm:ar8031_firmware:-:::::::* cpe:2.3:o:qualcomm:qca-4024-0-68cmqfn_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_1100_wearable_platform:-:::::::* cpe:2.3:h:qualcomm:wcd9335:-:::::::* cpe:2.3:h:qualcomm:csra6640:-:::::::* cpe:2.3:h:qualcomm:qca-4020-0-217msp:-:::::::* cpe:2.3:h:qualcomm:wsa8830:-:::::::* cpe:2.3:o:qualcomm:qca4004_firmware:-:::::::* cpe:2.3:o:qualcomm:mdm8207_firmware:-:::::::* cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn785x-5_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::*
CWE		CWE-476
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5

02 May 2023, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-05-02 06:15

Updated : 2024-04-12 17:16

NVD link : CVE-2022-33304

Mitre link : CVE-2022-33304

CVE.ORG link : CVE-2022-33304

JSON object : View

Products Affected

qualcomm

wsa8835_firmware
snapdragon_1200_wearable_platform
wcn685x-5_firmware
wsa8810
wsa8832_firmware
qca4024
wcn685x-5
wcd9380_firmware
ssg2115p
wsa8835
qca-4024-0-68cmqfn_firmware
9205_lte_modem_firmware
snapdragon_1100_wearable_platform
wsa8815
9206_lte_modem
9207_lte_modem
wcn785x-1_firmware
qca-4024-1-68cmqfn_firmware
qca-4024-0-68cmqfn
qts110
sxr2230p
wcn3999_firmware
ssg2125p_firmware
sxr1230p
wcn3999
wsa8810_firmware
csra6640
wcd9330_firmware
qca-4020-1-217msp_firmware
wcn785x-5
qca-4020-0-217msp
wcn785x-5_firmware
qcs400
wcd9385_firmware
ar8031_firmware
wcd9380
qca-4024-1-68cmqfn
qts110_firmware
snapdragon_ar2_gen_1_platform
9207_lte_modem_firmware
snapdragon_ar2_gen_1_platform_firmware
wcn3980_firmware
9206_lte_modem_firmware
9205_lte_modem
qca4024_firmware
qca4004_firmware
qcs400_firmware
wsa8830_firmware
wcd9335
wcd9306
ssg2125p
sxr1230p_firmware
snapdragon_1200_wearable_platform_firmware
qca-4020-1-217msp
qca4004
csra6620_firmware
wcd9385
wcd9306_firmware
wsa8815_firmware
mdm8207
wcn685x-1_firmware
wcn785x-1
qca-4020-0-217msp_firmware
wsa8832
wcn3980
wcd9335_firmware
snapdragon_wear_1300_platform
mdm8207_firmware
ar8031
sxr2230p_firmware
snapdragon_wear_1300_platform_firmware
wcn685x-1
csra6640_firmware
snapdragon_x5_lte_modem_firmware
ssg2115p_firmware
snapdragon_1100_wearable_platform_firmware
snapdragon_x5_lte_modem
wcd9330
csra6620
wsa8830

CWE

CWE-476

NULL Pointer Dereference

7.5 /10