CVE-2022-25693: Use After Free
First published: Fri Sep 16 2022(Updated: )
Memory corruption in graphics due to use-after-free while graphics profiling in Snapdragon Connectivity, Snapdragon Mobile
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | ||
| Qualcomm Snapdragon 8 Gen 1 Firmware | ||
| Qualcomm SM8475P | ||
| Qualcomm SM7450 Firmware | ||
| Qualcomm SM7450 Firmware | ||
| Qualcomm SM8475P Firmware | ||
| Qualcomm SM8475P | ||
| Qualcomm SM8475P Firmware | ||
| Qualcomm WCD9370 Firmware | ||
| Qualcomm WCD9370 Firmware | ||
| Qualcomm WCD9375 | ||
| Qualcomm WCD9375 Firmware | ||
| Qualcomm WCD9380 | ||
| Qualcomm WCD9380 Firmware | ||
| Qualcomm WCD9385 | ||
| Qualcomm WCD9385 Firmware | ||
| qualcomm wcn6750 firmware | ||
| qualcomm wcn6750 firmware | ||
| Qualcomm WCN6855 Firmware | ||
| Qualcomm WCN6855 Firmware | ||
| Qualcomm WCN6856 Firmware | ||
| Qualcomm WCN6856 | ||
| Qualcomm WCN7851 | ||
| Qualcomm WCN7851 Firmware | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8832 | ||
| qualcomm wsa8832 firmware | ||
| Qualcomm WSA8835 | ||
| Qualcomm WSA8835 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-25693?
CVE-2022-25693 is a vulnerability in Snapdragon Connectivity and Snapdragon Mobile that allows memory corruption due to a use-after-free while graphics profiling.
Which software is affected by CVE-2022-25693?
The affected software includes Qualcomm Sm7450 Firmware, Qualcomm Sm8475 Firmware, Qualcomm Sm8475p Firmware, Qualcomm Wcd9370 Firmware, Qualcomm Wcd9375 Firmware, Qualcomm Wcd9380 Firmware, Qualcomm Wcd9385 Firmware, Qualcomm Wcn6750 Firmware, Qualcomm Wcn6855 Firmware, Qualcomm Wcn6856 Firmware, Qualcomm Wcn7851 Firmware, Qualcomm Wsa8830 Firmware, Qualcomm Wsa8832 Firmware, and Qualcomm Wsa8835 Firmware.
What is the severity of CVE-2022-25693?
The severity of CVE-2022-25693 is high, with a CVSS score of 7.8.
How can I fix CVE-2022-25693?
To fix CVE-2022-25693, it is recommended to apply the patches and updates provided by Qualcomm.
Where can I find more information about CVE-2022-25693?
You can find more information about CVE-2022-25693 on the Qualcomm Product Security Bulletins page and the Android Security Bulletin for September 2022.
- agent/type
- agent/remedy
- agent/references
- agent/author
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/first-publish-date
- agent/event
- agent/source
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- vendor/google
- canonical/android
- vendor/qualcomm
- canonical/qualcomm snapdragon 8 gen 1 firmware
- canonical/qualcomm sm8475p
- canonical/qualcomm sm7450 firmware
- canonical/qualcomm sm8475p firmware
- canonical/qualcomm wcd9370 firmware
- canonical/qualcomm wcd9375
- canonical/qualcomm wcd9375 firmware
- canonical/qualcomm wcd9380
- canonical/qualcomm wcd9380 firmware
- canonical/qualcomm wcd9385
- canonical/qualcomm wcd9385 firmware
- canonical/qualcomm wcn6750 firmware
- canonical/qualcomm wcn6855 firmware
- canonical/qualcomm wcn6856 firmware
- canonical/qualcomm wcn6856
- canonical/qualcomm wcn7851
- canonical/qualcomm wcn7851 firmware
- canonical/qualcomm wsa8830
- canonical/qualcomm wsa8832
- canonical/qualcomm wsa8832 firmware
- canonical/qualcomm wsa8835
- canonical/qualcomm wsa8835 firmware