CVE-2022-33236 in Snapdragon Compute
Summary
by MITRE • 11/15/2022
Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 06/10/2026
The vulnerability identified as CVE-2022-33236 represents a critical transient denial of service condition affecting multiple Qualcomm Snapdragon product lines including compute, connectivity, mobile, wired infrastructure, and networking devices. This weakness manifests within the wireless local area network firmware component when processing cipher suite information attributes during wireless communication protocols. The issue stems from improper bounds checking mechanisms that fail to validate input data length before processing, creating a scenario where malformed or oversized cipher suite attribute data can trigger unexpected behavior in the wireless subsystem.
The technical flaw constitutes a buffer over-read condition that occurs when the WLAN firmware attempts to parse cipher suite information attributes without adequate validation of the incoming data structure. This particular vulnerability falls under the Common Weakness Enumeration category of CWE-125, which specifically addresses out-of-bounds read vulnerabilities. The flaw exists in the wireless protocol handling layer where the firmware processes authentication and key management attributes during wireless network association processes. When an attacker crafts malicious cipher suite information elements containing oversized or malformed data structures, the firmware's parsing routine reads beyond the allocated buffer boundaries, potentially causing system instability or complete service interruption.
The operational impact of this vulnerability extends across multiple device categories and deployment scenarios where Qualcomm Snapdragon chipsets are utilized. Mobile devices, wireless access points, network infrastructure equipment, and compute platforms all face potential risk from this transient denial of service condition. Attackers can exploit this weakness by transmitting specially crafted wireless frames containing malformed cipher suite attributes to targeted devices, resulting in temporary system unavailability. The transient nature of this vulnerability means that affected systems may recover automatically after the malicious packet is processed, but the service disruption can still cause significant operational interruptions in mission-critical wireless environments. Network administrators and device manufacturers must consider the potential for cascading failures when multiple devices in a network are simultaneously affected by this vulnerability.
Mitigation strategies for CVE-2022-33236 should prioritize firmware updates from device manufacturers, as Qualcomm has released patches addressing the buffer over-read condition in affected Snapdragon product lines. Network security teams should implement monitoring solutions to detect anomalous wireless traffic patterns that might indicate exploitation attempts, particularly focusing on unusual cipher suite attribute structures. The implementation of wireless intrusion detection systems can help identify malformed wireless frames targeting this vulnerability. Device configuration best practices should include disabling unnecessary wireless protocols and implementing proper access control measures to limit exposure to potentially malicious wireless traffic. Organizations should also consider network segmentation strategies to isolate critical systems from wireless environments where this vulnerability might be exploited. Additionally, regular vulnerability assessments and security audits should be conducted to identify devices running outdated firmware versions that may still be susceptible to this transient denial of service condition, ensuring comprehensive protection against potential exploitation attempts.