Vulnerability Description
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Mdm8207 Firmware | - |
| Qualcomm | Mdm8207 | - |
| Qualcomm | Mdm9205 Firmware | - |
| Qualcomm | Mdm9205 | - |
| Qualcomm | Mdm9206 Firmware | - |
| Qualcomm | Mdm9206 | - |
| Qualcomm | Mdm9207 Firmware | - |
| Qualcomm | Mdm9207 | - |
| Qualcomm | Qca4004 Firmware | - |
| Qualcomm | Qca4004 | - |
| Qualcomm | Qts110 Firmware | - |
| Qualcomm | Qts110 | - |
| Qualcomm | Snapdragon Wear 1100 Firmware | - |
| Qualcomm | Snapdragon Wear 1100 | - |
| Qualcomm | Snapdragon Wear 1200 Firmware | - |
| Qualcomm | Snapdragon Wear 1200 | - |
| Qualcomm | Snapdragon Wear 1300 Firmware | - |
| Qualcomm | Snapdragon Wear 1300 | - |
| Qualcomm | Snapdragon X5 Lte Modem Firmware | - |
| Qualcomm | Snapdragon X5 Lte Modem | - |
Related Weaknesses (CWE)
References
- https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletinVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletinVendor Advisory
FAQ
What is CVE-2022-25740?
CVE-2022-25740 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
How severe is CVE-2022-25740?
CVE-2022-25740 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-25740?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Mdm8207 Firmware, Qualcomm Mdm8207, Qualcomm Mdm9205 Firmware, Qualcomm Mdm9205, Qualcomm Mdm9206 Firmware.