First published: Wed Jul 06 2022(Updated: )
Memory corruption in Bluetooth HOST due to stack-based buffer overflow when when extracting data using command length parameter in Snapdragon Connectivity, Snapdragon Mobile
Credit: product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Android | ||
Qualcomm AQT1000 Firmware | ||
Qualcomm AQT1000 Firmware | ||
Qualcomm QCA6390 Firmware | ||
Qualcomm QCA6390 Firmware | ||
Qualcomm QCA6391 Firmware | ||
Qualcomm QCA6391 Firmware | ||
Qualcomm SD 675 Firmware | ||
Qualcomm Snapdragon 675 | ||
Qualcomm Snapdragon 8 Gen 1 Firmware | ||
Qualcomm SM8475P | ||
Qualcomm SD460 Firmware | ||
Qualcomm SD460 Firmware | ||
Qualcomm SD 480 Firmware | ||
Qualcomm Snapdragon 480 | ||
Qualcomm SD662 Firmware | ||
Qualcomm SD662 Firmware | ||
Qualcomm Snapdragon 665 | ||
Qualcomm Snapdragon 665 | ||
Qualcomm SD 675 Firmware | ||
Qualcomm Snapdragon 675 | ||
Qualcomm SD678 Firmware | ||
Qualcomm SD678 Firmware | ||
Qualcomm SD680 Firmware | ||
Qualcomm SD680 Firmware | ||
Qualcomm Snapdragon 690 5G Firmware | ||
Qualcomm Snapdragon 690 5G Firmware | ||
Qualcomm SD695 Firmware | ||
Qualcomm Snapdragon 695 | ||
Qualcomm Snapdragon 720G Firmware | ||
Qualcomm SD720G Firmware | ||
Qualcomm SD 730 Firmware | ||
Qualcomm Snapdragon 730 | ||
Qualcomm SD765 Firmware | ||
Qualcomm Snapdragon 765 | ||
Qualcomm SD765 Firmware | ||
Qualcomm Snapdragon 765G | ||
Qualcomm SD768 Firmware | ||
Qualcomm SD768G Firmware | ||
Qualcomm SD778G Firmware | ||
Qualcomm Snapdragon 778G | ||
Qualcomm Snapdragon 780G Firmware | ||
Qualcomm Snapdragon 780G | ||
Qualcomm Snapdragon 855 | ||
Qualcomm Snapdragon 855 | ||
Qualcomm Snapdragon 865 5G Firmware | ||
Qualcomm Snapdragon 865 5G Firmware | ||
Qualcomm SD870 | ||
Qualcomm Snapdragon 870 | ||
Qualcomm Snapdragon 888 Firmware | ||
Qualcomm Snapdragon 888 Firmware | ||
Qualcomm Snapdragon 888 5G Firmware | ||
Qualcomm Snapdragon 888 5G | ||
Qualcomm SDX55M Firmware | ||
Qualcomm SDX55M Firmware | ||
Qualcomm SM6250P Firmware | ||
Qualcomm SM6250 Firmware | ||
Qualcomm SM7250 Firmware | ||
Qualcomm SM7250 | ||
Qualcomm SM7315 | ||
Qualcomm SM7315 Firmware | ||
Qualcomm SM7325P Firmware | ||
Qualcomm SM7325P Firmware | ||
Qualcomm SM7450 Firmware | ||
Qualcomm SM7450 Firmware | ||
Qualcomm SM8475P Firmware | ||
Qualcomm SM8475P | ||
Qualcomm SM8475P Firmware | ||
Qualcomm WCD9341 | ||
Qualcomm WCD9341 Firmware | ||
Qualcomm WCD9370 Firmware | ||
Qualcomm WCD9370 Firmware | ||
Qualcomm WCD9375 | ||
Qualcomm WCD9375 Firmware | ||
Qualcomm WCD9380 | ||
Qualcomm WCD9380 Firmware | ||
Qualcomm WCD9385 | ||
Qualcomm WCD9385 Firmware | ||
Qualcomm WCN3950 Firmware | ||
Qualcomm WCN3950 Firmware | ||
Qualcomm Wcn3980 | ||
Qualcomm WCN3980 | ||
Qualcomm WCN3988 Firmware | ||
Qualcomm WCN3988 Firmware | ||
Qualcomm WCN3991 Firmware | ||
Qualcomm WCN3991 Firmware | ||
Qualcomm WCN3998 Firmware | ||
Qualcomm wcn3998 firmware | ||
Qualcomm WCN6740 Firmware | ||
Qualcomm WCN6740 Firmware | ||
Qualcomm WCN6750 Firmware | ||
Qualcomm WCN6750 Firmware | ||
Qualcomm WCN6850 Firmware | ||
Qualcomm WCN6850 Firmware | ||
Qualcomm WCN6851 Firmware | ||
Qualcomm WCN6851 Firmware | ||
Qualcomm WCN6855 Firmware | ||
Qualcomm WCN6855 Firmware | ||
Qualcomm WCN6856 Firmware | ||
Qualcomm WCN6856 Firmware | ||
Qualcomm WCN7850 Firmware | ||
Qualcomm WCN7850 Firmware | ||
Qualcomm WCN7851 | ||
Qualcomm WCN7851 Firmware | ||
Qualcomm WSA8810 | ||
Qualcomm WSA8810 Firmware | ||
Qualcomm WSA8815 Firmware | ||
Qualcomm WSA8815 Firmware | ||
Qualcomm WSA8830 | ||
Qualcomm WSA8830 | ||
Qualcomm WSA8832 Firmware | ||
Qualcomm WSA8832 Firmware | ||
Qualcomm WSA8835 | ||
Qualcomm WSA8835 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-22096 is classified as a high severity vulnerability due to potential memory corruption leading to a stack-based buffer overflow.
To fix CVE-2022-22096, users should update affected Qualcomm firmware and software to the latest versions provided by their device vendors.
CVE-2022-22096 affects various Qualcomm firmware versions, particularly those in devices utilizing Snapdragon Connectivity and Snapdragon Mobile configurations.
The impact of CVE-2022-22096 includes potential unauthorized access to system memory and the execution of malicious code due to a buffer overflow.
CVE-2022-22096 may be exploitable remotely through Bluetooth connections, making it a significant risk for users with enabled Bluetooth features.