Description
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
Reserved 2022-06-14 | Published 2023-04-04 | Updated 2024-08-03 | Assigner
qualcommCRITICAL: 9.3CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Problem types
CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')
Product status
Default status
unaffected
315 5G IoT Modem
affected
AQT1000
affected
AR8035
affected
FastConnect 6200
affected
FastConnect 6700
affected
FastConnect 6800
affected
FastConnect 6900
affected
FastConnect 7800
affected
Flight RB5 5G Platform
affected
QAM8295P
affected
QCA6174A
affected
QCA6310
affected
QCA6335
affected
QCA6391
affected
QCA6420
affected
QCA6421
affected
QCA6426
affected
QCA6430
affected
QCA6431
affected
QCA6436
affected
QCA6564A
affected
QCA6564AU
affected
QCA6574
affected
QCA6574A
affected
QCA6574AU
affected
QCA6595
affected
QCA6595AU
affected
QCA6696
affected
QCA6698AQ
affected
QCA8081
affected
QCA8337
affected
QCA9377
affected
QCM6490
affected
QCN6024
affected
QCN9011
affected
QCN9012
affected
QCN9024
affected
QCS6490
affected
QRB5165M
affected
QRB5165N
affected
QSM8250
affected
QSM8350
affected
Qualcomm Robotics RB3 Platform
affected
Qualcomm Robotics RB5 Platform
affected
SA6145P
affected
SA6155
affected
SA6155P
affected
SA8150P
affected
SA8155
affected
SA8155P
affected
SA8295P
affected
SA8540P
affected
SA9000P
affected
SC8180X+SDX55
affected
SD 675
affected
SD 8 Gen1 5G
affected
SD 8CX
affected
SD 8cx Gen2
affected
SD 8cx Gen3
affected
SD670
affected
SD675
affected
SD778G
affected
SD855
affected
SD865 5G
affected
SD888
affected
SDX55
affected
SDX57M
affected
SM7250P
affected
SM7315
affected
SM7325P
affected
Snapdragon 670 Mobile Platform
affected
Snapdragon 675 Mobile Platform
affected
Snapdragon 678 Mobile Platform (SM6150-AC)
affected
Snapdragon 690 5G Mobile Platform
affected
Snapdragon 750G 5G Mobile Platform
affected
Snapdragon 765 5G Mobile Platform (SM7250-AA)
affected
Snapdragon 765G 5G Mobile Platform (SM7250-AB)
affected
Snapdragon 768G 5G Mobile Platform (SM7250-AC)
affected
Snapdragon 778G 5G Mobile Platform
affected
Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)
affected
Snapdragon 780G 5G Mobile Platform
affected
Snapdragon 782G Mobile Platform (SM7325-AF)
affected
Snapdragon 8 Gen 1 Mobile Platform
affected
Snapdragon 845 Mobile Platform
affected
Snapdragon 850 Mobile Compute Platform
affected
Snapdragon 855 Mobile Platform
affected
Snapdragon 855+/860 Mobile Platform (SM8150-AC)
affected
Snapdragon 865 5G Mobile Platform
affected
Snapdragon 865+ 5G Mobile Platform (SM8250-AB)
affected
Snapdragon 870 5G Mobile Platform (SM8250-AC)
affected
Snapdragon 888 5G Mobile Platform
affected
Snapdragon 888+ 5G Mobile Platform (SM8350-AC)
affected
Snapdragon AR2 Gen 1 Platform
affected
Snapdragon Auto 5G Modem-RF
affected
Snapdragon X24 LTE Modem
affected
Snapdragon X50 5G Modem-RF System
affected
Snapdragon X55 5G Modem-RF System
affected
Snapdragon X65 5G Modem-RF System
affected
Snapdragon X70 Modem-RF System
affected
Snapdragon XR2 5G Platform
affected
Snapdragon XR2+ Gen 1 Platform
affected
SSG2115P
affected
SSG2125P
affected
SXR1230P
affected
SXR2130
affected
SXR2230P
affected
Vision Intelligence 300 Platform
affected
Vision Intelligence 400 Platform
affected
WCD9326
affected
WCD9340
affected
WCD9341
affected
WCD9360
affected
WCD9370
affected
WCD9375
affected
WCD9380
affected
WCD9385
affected
WCN3950
affected
WCN3980
affected
WCN3988
affected
WCN3990
affected
WCN6740
affected
WSA8810
affected
WSA8815
affected
WSA8830
affected
WSA8832
affected
WSA8835
affected
References
www.qualcomm.com/...t-security/bulletins/april-2023-bulletin
cve.org (CVE-2022-33288)
nvd.nist.gov (CVE-2022-33288)
Download JSON
