critical
10
CWE
190
Advisory Published
Updated

CVE-2022-25651: Integer Overflow

First published: Tue Jun 14 2022(Updated: )

Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

Credit: product-security@qualcomm.com

Affected SoftwareAffected VersionHow to fix
Qualcomm Apq8009 Firmware
Qualcomm Apq8009
Qualcomm Apq8017 Firmware
Qualcomm Apq8017
Qualcomm Apq8053 Firmware
Qualcomm Apq8053
Qualcomm Apq8096au Firmware
Qualcomm Apq8096au
Google Android
Qualcomm Ar8031
Qualcomm Csra6620 Firmware
Qualcomm Csra6620
Qualcomm Csra6640 Firmware
Qualcomm Csra6640
Qualcomm Csrb31024 Firmware
Qualcomm Csrb31024
Qualcomm Mdm9150 Firmware
Qualcomm Mdm9150
Qualcomm Mdm9250 Firmware
Qualcomm Mdm9250
Qualcomm Mdm9607 Firmware
Qualcomm Mdm9607
Google Android
Google Android
Qualcomm Mdm9628 Firmware
Qualcomm Mdm9628
Qualcomm Mdm9640 Firmware
Qualcomm Mdm9640
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
Qualcomm Qca4020 Firmware
Google Android
Qualcomm Qca6174a Firmware
Qualcomm Qca6174a
Qualcomm Qca6564a Firmware
Qualcomm Qca6564a
Qualcomm Qca6564au Firmware
Google Android
Qualcomm Qca6574 Firmware
Qualcomm Qca6574
Qualcomm Qca6574a Firmware
Qualcomm Qca6574a
Qualcomm Qca6574au Firmware
Qualcomm Qca6574au
Qualcomm Qca6584 Firmware
Qualcomm Qca6584
Qualcomm Qca6595 Firmware
Qualcomm Qca6595
Qualcomm Qca6595au Firmware
Qualcomm Qca6595au
Qualcomm Qca6696 Firmware
Qualcomm Qca6696
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Qualcomm Qcs405 Firmware
Qualcomm Qcs405
Qualcomm Sa415m Firmware
Qualcomm Sa415m
Qualcomm Sa515m Firmware
Google Android
Google Android
Google Android
Qualcomm Sa6155p Firmware
Qualcomm Sa6155p
Qualcomm Sa8155 Firmware
Google Android
Google Android
Qualcomm Sa8155p
Qualcomm Sa8195p Firmware
Qualcomm Sa8195p
Qualcomm Sd820 Firmware
Qualcomm Sd820
Qualcomm Sdx20 Firmware
Qualcomm Sdx20
Qualcomm Sdx55 Firmware
Qualcomm Sdx55
Qualcomm Wcd9326 Firmware
Google Android
Google Android
Google Android
Google Android
Google Android
Qualcomm Wcn3610 Firmware
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2022-25651?

    The severity of CVE-2022-25651 is critical with a CVSS score of 9.8.

  • What is the root cause of memory corruption in CVE-2022-25651?

    Memory corruption in CVE-2022-25651 is due to an integer overflow while processing the BT HFP-UNIT profile in Qualcomm devices.

  • Which Qualcomm devices are affected by CVE-2022-25651?

    Devices such as Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, and Snapdragon Voice & Music are affected by CVE-2022-25651.

  • How can I mitigate the risk posed by CVE-2022-25651?

    To mitigate the risk posed by CVE-2022-25651, it is recommended to apply the patches provided by Qualcomm in their June 2022 security bulletin.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203