1. Home
  2. CVE Database
  3. CVE-2022-40538
HIGH · 7.5

CVE-2022-40538

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.

Vulnerability Description

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
QualcommAr8035 Firmware-
QualcommAr8035-
QualcommWcn685X-5 Firmware-
QualcommWcn685X-5-
QualcommWcn685X-1 Firmware-
QualcommWcn685X-1-
QualcommWcn785X-1 Firmware-
QualcommWcn785X-1-
QualcommWcn785X-5 Firmware-
QualcommWcn785X-5-
QualcommQca8081 Firmware-
QualcommQca8081-
QualcommQca8337 Firmware-
QualcommQca8337-
QualcommQcn6024 Firmware-
QualcommQcn6024-
QualcommQcn9024 Firmware-
QualcommQcn9024-
QualcommQcs8550 Firmware-
QualcommQcs8550-

Related Weaknesses (CWE)

CWE-617

References

FAQ

What is CVE-2022-40538?

CVE-2022-40538 is a vulnerability with a CVSS score of 7.5 (HIGH). Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.

How severe is CVE-2022-40538?

CVE-2022-40538 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-40538?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Ar8035 Firmware, Qualcomm Ar8035, Qualcomm Wcn685X-5 Firmware, Qualcomm Wcn685X-5, Qualcomm Wcn685X-1 Firmware.