1. Home
  2. CVE Database
  3. CVE-2022-33282
HIGH · 8.4

CVE-2022-33282

Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.

Vulnerability Description

Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.

CVSS Score

8.4

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommMsm8996Au Firmware-
QualcommMsm8996Au-
QualcommQam8295P Firmware-
QualcommQam8295P-
QualcommQca6574A Firmware-
QualcommQca6574A-
QualcommQca6574Au Firmware-
QualcommQca6574Au-
QualcommQca6584Au Firmware-
QualcommQca6584Au-
QualcommQca6595 Firmware-
QualcommQca6595-
QualcommQca6595Au Firmware-
QualcommQca6595Au-
QualcommQca6696 Firmware-
QualcommQca6696-
QualcommSa6145P Firmware-
QualcommSa6145P-
QualcommSa6150P Firmware-
QualcommSa6150P-

Related Weaknesses (CWE)

CWE-680CWE-190

References

FAQ

What is CVE-2022-33282?

CVE-2022-33282 is a vulnerability with a CVSS score of 8.4 (HIGH). Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.

How severe is CVE-2022-33282?

CVE-2022-33282 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-33282?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Msm8996Au Firmware, Qualcomm Msm8996Au, Qualcomm Qam8295P Firmware, Qualcomm Qam8295P, Qualcomm Qca6574A Firmware.