1. Home
  2. CVE Database
  3. CVE-2022-25745
CRITICAL · 9.8

CVE-2022-25745

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

Vulnerability Description

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommMdm9205 Firmware-
QualcommMdm9205-
QualcommQca4004 Firmware-
QualcommQca4004-
QualcommQts110 Firmware-
QualcommQts110-
QualcommSnapdragon Wear 1300 Firmware-
QualcommSnapdragon Wear 1300-
QualcommWcd9306 Firmware-
QualcommWcd9306-

Related Weaknesses (CWE)

CWE-670

References

FAQ

What is CVE-2022-25745?

CVE-2022-25745 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Memory corruption in modem due to improper input validation while handling the incoming CoAP message

How severe is CVE-2022-25745?

CVE-2022-25745 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2022-25745?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Mdm9205 Firmware, Qualcomm Mdm9205, Qualcomm Qca4004 Firmware, Qualcomm Qca4004, Qualcomm Qts110 Firmware.