CVE-2022-40505

🗓️ 02 May 2023 05:08:52Reported by qualcommType

Information disclosure in Modem due to buffer over-read in parsing DNS hostname

Reporter	Title	Published	Views	Family All 8
CNNVD	Qualcomm 芯片缓冲区错误漏洞	2 May 202300:00	–	cnnvd
Cvelist	CVE-2022-40505 Buffer over-read in Modem	2 May 202305:08	–	cvelist
EUVD	EUVD-2022-43780	3 Oct 202520:07	–	euvd
NVD	CVE-2022-40505	2 May 202306:15	–	nvd
Prion	Information disclosure	2 May 202306:15	–	prion
Positive Technologies	PT-2023-13797 · Modem · Modem	2 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-40505	5 Feb 202519:45	–	redhatcve
Vulnrichment	CVE-2022-40505 Buffer over-read in Modem	2 May 202305:08	–	vulnrichment

NVD

Node

qualcomm 9205_lte_modem_firmwareMatch-

AND

qualcomm 9205_lte_modemMatch-

Node

qualcomm 9206_lte_modem_firmwareMatch-

AND

qualcomm 9206_lte_modemMatch-

Node

qualcomm 9207_lte_modem_firmwareMatch-

AND

qualcomm 9207_lte_modemMatch-

Node

qualcomm mdm8207_firmwareMatch-

AND

qualcomm mdm8207Match-

Node

qualcomm qca4004_firmwareMatch-

AND

qualcomm qca4004Match-

Node

qualcomm qca4010_firmwareMatch-

AND

qualcomm qca4010Match-

Node

qualcomm qts110_firmwareMatch-

AND

qualcomm qts110Match-

Node

qualcomm snapdragon_1100_wearable_platform_firmwareMatch-

AND

qualcomm snapdragon_1100_wearable_platformMatch-

Node

qualcomm snapdragon_1200_wearable_platform_firmwareMatch-

AND

qualcomm snapdragon_1200_wearable_platformMatch-

Node

qualcomm snapdragon_wear_1300_platform_firmwareMatch-

AND

qualcomm snapdragon_wear_1300_platformMatch-

Node

qualcomm snapdragon_x5_lte_modem_firmwareMatch-

AND

qualcomm snapdragon_x5_lte_modemMatch-

Node

qualcomm wcd9306_firmwareMatch-

AND

qualcomm wcd9306Match-

Node

qualcomm wcd9330_firmwareMatch-

AND

qualcomm wcd9330Match-

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Consumer IOT",
      "Snapdragon Industrial IOT"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "9205 LTE Modem"
      },
      {
        "status": "affected",
        "version": "9206 LTE Modem"
      },
      {
        "status": "affected",
        "version": "9207 LTE Modem"
      },
      {
        "status": "affected",
        "version": "MDM8207"
      },
      {
        "status": "affected",
        "version": "QCA4004"
      },
      {
        "status": "affected",
        "version": "QCA4010"
      },
      {
        "status": "affected",
        "version": "QTS110"
      },
      {
        "status": "affected",
        "version": "Snapdragon 1100 Wearable Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon 1200 Wearable Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon Wear 1300 Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon X5 LTE Modem"
      },
      {
        "status": "affected",
        "version": "WCD9306"
      },
      {
        "status": "affected",
        "version": "WCD9330"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin

21 Nov 2024 07:21Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5 - 8.2

EPSS0.0024

SSVC