1. Home
  2. CVE Database
  3. CVE-2022-25657
HIGH · 7.3

CVE-2022-25657

Memory corruption due to buffer overflow occurs while processing invalid MKV clip which has invalid seek header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial I...

Vulnerability Description

Memory corruption due to buffer overflow occurs while processing invalid MKV clip which has invalid seek header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

CVSS Score

7.3

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
LOW

Affected Products

VendorProductVersions
QualcommApq8017 Firmware-
QualcommApq8017-
QualcommApq8053 Firmware-
QualcommApq8053-
QualcommAqt1000 Firmware-
QualcommAqt1000-
QualcommMsm8917 Firmware-
QualcommMsm8917-
QualcommMsm8953 Firmware-
QualcommMsm8953-
QualcommQca6390 Firmware-
QualcommQca6390-
QualcommQca6391 Firmware-
QualcommQca6391-
QualcommQca6420 Firmware-
QualcommQca6420-
QualcommQca6426 Firmware-
QualcommQca6426-
QualcommQca6430 Firmware-
QualcommQca6430-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2022-25657?

CVE-2022-25657 is a vulnerability with a CVSS score of 7.3 (HIGH). Memory corruption due to buffer overflow occurs while processing invalid MKV clip which has invalid seek header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial I...

How severe is CVE-2022-25657?

CVE-2022-25657 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-25657?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Apq8017 Firmware, Qualcomm Apq8017, Qualcomm Apq8053 Firmware, Qualcomm Apq8053, Qualcomm Aqt1000 Firmware.