THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2022-33288

Buffer copy without checking the size of input in Core

Reserved:2022-06-14
Published:2023-04-04
Updated:2024-06-10

Description

Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.



CRITICAL: 9.3CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-120 Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')

Product status

Default status
unaffected

315 5G IoT Modem
affected

AQT1000
affected

AR8035
affected

FastConnect 6200
affected

FastConnect 6700
affected

FastConnect 6800
affected

FastConnect 6900
affected

FastConnect 7800
affected

Flight RB5 5G Platform
affected

QAM8295P
affected

QCA6174A
affected

QCA6310
affected

QCA6335
affected

QCA6391
affected

QCA6420
affected

QCA6421
affected

QCA6426
affected

QCA6430
affected

QCA6431
affected

QCA6436
affected

QCA6564A
affected

QCA6564AU
affected

QCA6574
affected

QCA6574A
affected

QCA6574AU
affected

QCA6595
affected

QCA6595AU
affected

QCA6696
affected

QCA6698AQ
affected

QCA8081
affected

QCA8337
affected

QCA9377
affected

QCM6490
affected

QCN6024
affected

QCN9011
affected

QCN9012
affected

QCN9024
affected

QCS6490
affected

QRB5165M
affected

QRB5165N
affected

QSM8250
affected

QSM8350
affected

Qualcomm Robotics RB3 Platform
affected

Qualcomm Robotics RB5 Platform
affected

SA6145P
affected

SA6155
affected

SA6155P
affected

SA8150P
affected

SA8155
affected

SA8155P
affected

SA8295P
affected

SA8540P
affected

SA9000P
affected

SC8180X+SDX55
affected

SD 675
affected

SD 8 Gen1 5G
affected

SD 8CX
affected

SD 8cx Gen2
affected

SD 8cx Gen3
affected

SD670
affected

SD675
affected

SD778G
affected

SD855
affected

SD865 5G
affected

SD888
affected

SDX55
affected

SDX57M
affected

SM7250P
affected

SM7315
affected

SM7325P
affected

Snapdragon 670 Mobile Platform
affected

Snapdragon 675 Mobile Platform
affected

Snapdragon 678 Mobile Platform (SM6150-AC)
affected

Snapdragon 690 5G Mobile Platform
affected

Snapdragon 750G 5G Mobile Platform
affected

Snapdragon 765 5G Mobile Platform (SM7250-AA)
affected

Snapdragon 765G 5G Mobile Platform (SM7250-AB)
affected

Snapdragon 768G 5G Mobile Platform (SM7250-AC)
affected

Snapdragon 778G 5G Mobile Platform
affected

Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)
affected

Snapdragon 780G 5G Mobile Platform
affected

Snapdragon 782G Mobile Platform (SM7325-AF)
affected

Snapdragon 8 Gen 1 Mobile Platform
affected

Snapdragon 845 Mobile Platform
affected

Snapdragon 850 Mobile Compute Platform
affected

Snapdragon 855 Mobile Platform
affected

Snapdragon 855+/860 Mobile Platform (SM8150-AC)
affected

Snapdragon 865 5G Mobile Platform
affected

Snapdragon 865+ 5G Mobile Platform (SM8250-AB)
affected

Snapdragon 870 5G Mobile Platform (SM8250-AC)
affected

Snapdragon 888 5G Mobile Platform
affected

Snapdragon 888+ 5G Mobile Platform (SM8350-AC)
affected

Snapdragon AR2 Gen 1 Platform
affected

Snapdragon Auto 5G Modem-RF
affected

Snapdragon X24 LTE Modem
affected

Snapdragon X50 5G Modem-RF System
affected

Snapdragon X55 5G Modem-RF System
affected

Snapdragon X65 5G Modem-RF System
affected

Snapdragon X70 Modem-RF System
affected

Snapdragon XR2 5G Platform
affected

Snapdragon XR2+ Gen 1 Platform
affected

SSG2115P
affected

SSG2125P
affected

SXR1230P
affected

SXR2130
affected

SXR2230P
affected

Vision Intelligence 300 Platform
affected

Vision Intelligence 400 Platform
affected

WCD9326
affected

WCD9340
affected

WCD9341
affected

WCD9360
affected

WCD9370
affected

WCD9375
affected

WCD9380
affected

WCD9385
affected

WCN3950
affected

WCN3980
affected

WCN3988
affected

WCN3990
affected

WCN6740
affected

WSA8810
affected

WSA8815
affected

WSA8830
affected

WSA8832
affected

WSA8835
affected

References

https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

cve.org CVE-2022-33288

nvd.nist.gov CVE-2022-33288

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2022-33288