A vulnerability classified as critical has been found in Qualcomm AQT1000, AR8035, CSRA6620, CSRA6640, QAM8295P, QCA6390, QCA6391, QCA6420, QCA6421, QCA6426, QCA6430, QCA6431, QCA6436, QCA6574, QCA6574A, QCA6574AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA8081, QCA8337, QCC5100, QCM2290, QCM4290, QCM6125, QCM6490, QCN6024, QCN7606, QCN9024, QCS2290, QCS405, QCS4290, QCS6125, QCS6490, QSM8350, SA4150P, SA4155P, SA6145P, SA6150P, SA6155, SA6155P, SA8145P, SA8150P, SA8155, SA8155P, SA8195P, SA8295P, SA8540P, SA9000P, SD 675, SD 8 Gen1 5G, SD 8cx Gen3, SD460, SD480, SD662, SD665, SD670, SD675, SD678, SD680, SD690 5G, SD695, SD710, SD720G, SD730, SD750G, SD765, SD765G, SD768G, SD778G, SD780G, SD855, SD865 5G, SD870, SD888, SD888 5G, SDX50M, SDX55M, SDX65, SDXR1, SDXR2 5G, SG4150P, SM4125, SM6250, SM7250P, SM7315, SM7325P, Snapdragon 4 Gen 1, SSG2115P, SSG2125P, SW5100, SW5100P, SXR1230P, SXR2150P, SXR2230P, WCD9326, WCD9335, WCD9341 and WCD9370 (Chip Software). Affected is an unknown functionality of the component HLOS. The manipulation with an unknown input leads to a memory corruption vulnerability. CWE is classifying the issue as CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.

The weakness was shared 03/11/2023. The advisory is shared for download at qualcomm.com. This vulnerability is traded as CVE-2022-33278 since 06/14/2022. There are neither technical details nor an exploit publicly available. The current price for an exploit might be approx. USD $0-$5k (estimation calculated on 03/11/2023).

Upgrading eliminates this vulnerability.

Productinfo

Type

• Chip Software

Vendor

• Qualcomm

Name

• AQT1000
• AR8035
• CSRA6620
• CSRA6640
• QAM8295P
• QCA6390
• QCA6391
• QCA6420
• QCA6421
• QCA6426
• QCA6430
• QCA6431
• QCA6436
• QCA6574
• QCA6574A
• QCA6574AU
• QCA6595
• QCA6595AU
• QCA6696
• QCA6698AQ
• QCA8081
• QCA8337
• QCC5100
• QCM2290
• QCM4290
• QCM6125
• QCM6490
• QCN6024
• QCN7606
• QCN9024
• QCS405
• QCS2290
• QCS4290
• QCS6125
• QCS6490
• QSM8350
• SA4150P
• SA4155P
• SA6145P
• SA6150P
• SA6155
• SA6155P
• SA8145P
• SA8150P
• SA8155
• SA8155P
• SA8195P
• SA8295P
• SA8540P
• SA9000P
• SD 8 Gen1 5G
• SD 8cx Gen3
• SD460
• SD480
• SD662
• SD665
• SD670
• SD 675
• SD675
• SD678
• SD680
• SD690 5G
• SD695
• SD710
• SD720G
• SD730
• SD750G
• SD765
• SD765G
• SD768G
• SD778G
• SD780G
• SD855
• SD865 5G
• SD870
• SD888
• SD888 5G
• SDX50M
• SDX55M
• SDX65
• SDXR1
• SDXR2 5G
• SG4150P
• SM4125
• SM6250
• SM7250P
• SM7315
• SM7325P
• Snapdragon 4 Gen 1
• SSG2115P
• SSG2125P
• SW5100
• SW5100P
• SXR1230P
• SXR2150P
• SXR2230P
• WCD9326
• WCD9335
• WCD9341
• WCD9370
• WCD9375
• WCD9380
• WCD9385
• WCN3910
• WCN3950
• WCN3980
• WCN3988
• WCN3990
• WCN3991
• WCN3998
• WCN6740
• WCN6750

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion