CVE-2022-3407 — MEDIUM (4.9)

Q: How severe is CVE-2022-3407?

CVE-2022-3407 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-3407?

Check the references section above for vendor advisories and patch information. Affected products include: Motorola Smartphone Firmware.

Vulnerability Description

I some cases, when the device is USB-tethered to a host PC, and the device is sharing its mobile network connection with the host PC, if the user originates a call on the device, then the device's modem may reset and cause the phone call to not succeed. This may block the user from dialing emergency services. This patch resolves the device's modem reset issue.

CVSS Score

4.9

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Motorola	Smartphone Firmware	< 2022-11-01

Related Weaknesses (CWE)

CWE-404

References

https://en-us.support.motorola.com/app/answers/detail/a_id/175354Vendor Advisory
https://en-us.support.motorola.com/app/answers/detail/a_id/175354Vendor Advisory

FAQ

What is CVE-2022-3407?

CVE-2022-3407 is a vulnerability with a CVSS score of 4.9 (MEDIUM). I some cases, when the device is USB-tethered to a host PC, and the device is sharing its mobile network connection with the host PC, if the user originates a call on the device, then the device's mod...

How severe is CVE-2022-3407?

CVE-2022-3407 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-3407?

Check the references section above for vendor advisories and patch information. Affected products include: Motorola Smartphone Firmware.