Lucene search
HistoryFeb 12, 2023 - 4:15 a.m.
CVE-2022-25728
cve-2022-25728
information disclosure
modem
buffer over-read
dns
nvd
8.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
45.4%
Information disclosure in modem due to buffer over-read while processing response from DNS server
Affected configurations
Node
qualcommar8031_firmwareMatch-
qualcommar8031Match-
Node
qualcommcsra6620_firmwareMatch-
qualcommcsra6620Match-
Node
qualcommcsra6640_firmwareMatch-
qualcommcsra6640Match-
Node
qualcommmdm8207_firmwareMatch-
qualcommmdm8207Match-
Node
qualcommmdm9205_firmwareMatch-
qualcommmdm9205Match-
Node
qualcommmdm9206_firmwareMatch-
qualcommmdm9206Match-
Node
qualcommmdm9207_firmwareMatch-
qualcommmdm9207Match-
Node
qualcommmdm9607_firmwareMatch-
qualcommmdm9607Match-
Node
qualcommqca4004_firmwareMatch-
qualcommqca4004Match-
Node
qualcommqca4020_firmwareMatch-
qualcommqca4020Match-
Node
qualcommqca4024_firmwareMatch-
qualcommqca4024Match-
Node
qualcommqcs405_firmwareMatch-
qualcommqcs405Match-
Node
qualcommqts110_firmwareMatch-
qualcommqts110Match-
Node
qualcommssg2115p_firmwareMatch-
qualcommssg2115pMatch-
Node
qualcommssg2125p_firmwareMatch-
qualcommssg2125pMatch-
Node
qualcommsxr1230p_firmwareMatch-
qualcommsxr1230pMatch-
Node
qualcommsxr2230p_firmwareMatch-
qualcommsxr2230pMatch-
Node
qualcommwcd9306_firmwareMatch-
qualcommwcd9306Match-
Node
qualcommwcd9330_firmwareMatch-
qualcommwcd9330Match-
Node
qualcommwcd9335_firmwareMatch-
qualcommwcd9335Match-
Node
qualcommwcd9380_firmwareMatch-
qualcommwcd9380Match-
Node
qualcommwcd9385_firmwareMatch-
qualcommwcd9385Match-
Node
qualcommwcn3980_firmwareMatch-
qualcommwcn3980Match-
Node
qualcommwcn3998_firmwareMatch-
qualcommwcn3998Match-
Node
qualcommwcn3999_firmwareMatch-
qualcommwcn3999Match-
Node
qualcommwcn6855_firmwareMatch-
qualcommwcn6855Match-
Node
qualcommwcn6856_firmwareMatch-
qualcommwcn6856Match-
Node
qualcommwcn7850_firmwareMatch-
qualcommwcn7850Match-
Node
qualcommwcn7851_firmwareMatch-
qualcommwcn7851Match-
Node
qualcommwsa8810_firmwareMatch-
qualcommwsa8810Match-
Node
qualcommwsa8815_firmwareMatch-
qualcommwsa8815Match-
Node
qualcommwsa8830_firmwareMatch-
qualcommwsa8830Match-
Node
qualcommwsa8832_firmwareMatch-
qualcommwsa8832Match-
Node
qualcommwsa8835_firmwareMatch-
qualcommwsa8835Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| qualcomm:ar8031_firmware | qualcomm ar8031 firmware | eq | - |
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Snapdragon Compute",
"Snapdragon Consumer IOT",
"Snapdragon Industrial IOT",
"Snapdragon Voice & Music"
],
"product": "Snapdragon",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "AR8031"
},
{
"status": "affected",
"version": "CSRA6620"
},
{
"status": "affected",
"version": "CSRA6640"
},
{
"status": "affected",
"version": "MDM8207"
},
{
"status": "affected",
"version": "MDM9205"
},
{
"status": "affected",
"version": "MDM9206"
},
{
"status": "affected",
"version": "MDM9207"
},
{
"status": "affected",
"version": "MDM9607"
},
{
"status": "affected",
"version": "QCA4004"
},
{
"status": "affected",
"version": "QCA4020"
},
{
"status": "affected",
"version": "QCA4024"
},
{
"status": "affected",
"version": "QCS405"
},
{
"status": "affected",
"version": "QTS110"
},
{
"status": "affected",
"version": "SSG2115P"
},
{
"status": "affected",
"version": "SSG2125P"
},
{
"status": "affected",
"version": "SXR1230P"
},
{
"status": "affected",
"version": "SXR2230P"
},
{
"status": "affected",
"version": "WCD9306"
},
{
"status": "affected",
"version": "WCD9330"
},
{
"status": "affected",
"version": "WCD9335"
},
{
"status": "affected",
"version": "WCD9380"
},
{
"status": "affected",
"version": "WCD9385"
},
{
"status": "affected",
"version": "WCN3980"
},
{
"status": "affected",
"version": "WCN3998"
},
{
"status": "affected",
"version": "WCN3999"
},
{
"status": "affected",
"version": "WCN6855"
},
{
"status": "affected",
"version": "WCN6856"
},
{
"status": "affected",
"version": "WCN7850"
},
{
"status": "affected",
"version": "WCN7851"
},
{
"status": "affected",
"version": "WSA8810"
},
{
"status": "affected",
"version": "WSA8815"
},
{
"status": "affected",
"version": "WSA8830"
},
{
"status": "affected",
"version": "WSA8832"
},
{
"status": "affected",
"version": "WSA8835"
}
]
}
]Related
cvelist
cvelist
CVE-2022-25728 Buffer Over-read in MODEM
2023-02-09 06:58:16
prion
prion
Information disclosure
2023-02-12 04:15:00
nvd
nvd
CVE-2022-25728
2023-02-12 04:15:12
vulnrichment
vulnrichment
CVE-2022-25728 Buffer Over-read in MODEM
2023-02-09 06:58:16
8.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
7.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
45.4%
Related for CVE-2022-25728