Lucene search

[email protected]NVD:CVE-2022-33281

HistoryMay 02, 2023 - 6:15 a.m.

CVE-2022-33281

2023-05-0206:15:09

CWE-129

[email protected]

web.nvd.nist.gov

memory corruption

computer vision

array index

eva kernel

testing

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames.

Affected configurations

NVD

Node

qualcommwcn685x-5Match-

AND

qualcommwcn685x-5_firmwareMatch-

Node

qualcommwcn685x-1Match-

AND

qualcommwcn685x-1_firmwareMatch-

Node

qualcommwcn785x-1Match-

AND

qualcommwcn785x-1_firmwareMatch-

Node

qualcommwcn785x-5Match-

AND

qualcommwcn785x-5_firmwareMatch-

Node

qualcommsm8450Match-

AND

qualcommsm8450_firmwareMatch-

Node

qualcommwcd9380Match-

AND

qualcommwcd9380_firmwareMatch-

Node

qualcommwsa8830Match-

AND

qualcommwsa8830_firmwareMatch-

Node

qualcommwsa8835Match-

AND

qualcommwsa8835_firmwareMatch-

References

www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for NVD:CVE-2022-33281

cve1 cvelist1 prion1