CVE-2022-22062
Severity CVSS v4.0:
Pending analysis
Type:
CWE-125
Out-of-bounds Read
Publication date:
02/09/2022
Last modified:
19/04/2023
Description
An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Impact
Base Score 3.x
9.10
Severity 3.x
CRITICAL
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:apq8009w_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:apq8009w:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:apq8037_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:apq8037:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page