Lucene search

[email protected]NVD:CVE-2022-25737

HistoryApr 13, 2023 - 7:15 a.m.

CVE-2022-25737

2023-04-1307:15:12

CWE-457

CWE-908

[email protected]

web.nvd.nist.gov

modem

information disclosure

null check

local network

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

38.4%

JSON

Information disclosure in modem due to missing NULL check while reading packets received from local network

Affected configurations

NVD

Node

qualcommmdm8207_firmwareMatch-

AND

qualcommmdm8207Match-

Node

qualcommmdm9205_firmwareMatch-

AND

qualcommmdm9205Match-

Node

qualcommmdm9206_firmwareMatch-

AND

qualcommmdm9206Match-

Node

qualcommmdm9207_firmwareMatch-

AND

qualcommmdm9207Match-

Node

qualcommqca4004_firmwareMatch-

AND

qualcommqca4004Match-

Node

qualcommqts110_firmwareMatch-

AND

qualcommqts110Match-

Node

qualcommsnapdragon_wear_1100_firmwareMatch-

AND

qualcommsnapdragon_wear_1100Match-

Node

qualcommsnapdragon_wear_1200_firmwareMatch-

AND

qualcommsnapdragon_wear_1200Match-

Node

qualcommsnapdragon_wear_1300_firmwareMatch-

AND

qualcommsnapdragon_wear_1300Match-

Node

qualcommsnapdragon_x5_lte_modem_firmwareMatch-

AND

qualcommsnapdragon_x5_lte_modemMatch-

Node

qualcommwcd9306_firmwareMatch-

AND

qualcommwcd9306Match-

Node

qualcommwcd9330_firmwareMatch-

AND

qualcommwcd9330Match-

References

www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

38.4%

JSON

Related for NVD:CVE-2022-25737

cve1 cvelist1 prion1