Lucene search

[email protected]NVD:CVE-2022-25745

HistoryApr 13, 2023 - 7:15 a.m.

CVE-2022-25745

2023-04-1307:15:13

CWE-670

[email protected]

web.nvd.nist.gov

memory corruption

modem

input validation

coap message

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.6%

JSON

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

Affected configurations

NVD

Node

qualcommmdm9205_firmwareMatch-

AND

qualcommmdm9205Match-

Node

qualcommqca4004_firmwareMatch-

AND

qualcommqca4004Match-

Node

qualcommqts110_firmwareMatch-

AND

qualcommqts110Match-

Node

qualcommsnapdragon_wear_1300_firmwareMatch-

AND

qualcommsnapdragon_wear_1300Match-

Node

qualcommwcd9306_firmwareMatch-

AND

qualcommwcd9306Match-

References

www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.6%

JSON

Related for NVD:CVE-2022-25745

prion1 cvelist1 vulnrichment1 cve1