Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
References
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
Configuration 12 (hide)
| AND |
|
Configuration 13 (hide)
| AND |
|
Configuration 14 (hide)
| AND |
|
Configuration 15 (hide)
| AND |
|
Configuration 16 (hide)
| AND |
|
History
21 Nov 2024, 07:21
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.4 |
| References | () https://bugzilla.suse.com/show_bug.cgi?id=1209597 - | |
| References | () https://security.netapp.com/advisory/ntap-20230616-0001/ - | |
| References | () https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin - Patch, Vendor Advisory |
25 Mar 2024, 05:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
16 Jun 2023, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
19 Apr 2023, 17:10
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:qualcomm:sm8475:-:*:*:*:*:*:*:* |
16 Mar 2023, 16:09
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-120 | |
| CPE | cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn7851:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn6856:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn7850:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sd888_5g_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sd888_5g:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sd_8_gen1_5g:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:wcn6855:-:*:*:*:*:*:*:* |
|
| References | (MISC) https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin - Patch, Vendor Advisory | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
11 Mar 2023, 02:54
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-03-10 21:15
Updated : 2024-11-21 07:21
NVD link : CVE-2022-40540
Mitre link : CVE-2022-40540
CVE.ORG link : CVE-2022-40540
JSON object : View
Products Affected
qualcomm
- wcn3988
- sd888_5g
- wcn3980_firmware
- sw5100p
- wsa8830
- wcd9380
- sd888_5g_firmware
- wsa8830_firmware
- wcd9385
- wcn7851_firmware
- wcn6850
- wsa8835
- wcn3988_firmware
- sd_8_gen1_5g_firmware
- wcd9385_firmware
- sw5100p_firmware
- wcn7850_firmware
- wcn7851
- wcn7850
- sm8475
- wcn6856_firmware
- wcn6851
- wcn6851_firmware
- sw5100_firmware
- wcn6855_firmware
- sw5100
- wcd9380_firmware
- wsa8835_firmware
- wcn6856
- wcn6855
- wcn6850_firmware
- wcn3980
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')