What software is affected by CVE-2022-25697?

Android devices with Qualcomm Snapdragon Mobile and Snapdragon Wearables are affected by CVE-2022-25697.

What is the severity of CVE-2022-25697?

CVE-2022-25697 has a severity rating of 7.8 (High).

How can I fix the CVE-2022-25697 vulnerability?

To fix the CVE-2022-25697 vulnerability, it is recommended to apply the security patches provided by Qualcomm and follow the instructions provided by the device manufacturer.

Where can I find more information about CVE-2022-25697?

You can find more information about CVE-2022-25697 on the Qualcomm Product Security Bulletins page and the Android Security Bulletin for December 2022.

Vulnerability/
CVE-2022-25697

high

8.4

CWE

787 20

5/12/2022

13/12/2022

3/8/2024

CVE-2022-25697: Input Validation

First published: Mon Dec 05 2022(Updated: )

Memory corruption in i2c buses due to improper input validation while reading address configuration from i2c driver in Snapdragon Mobile, Snapdragon Wearables

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Google Android
Qualcomm Sm8475
Google Android
Google Android
Qualcomm Sda429w Firmware
Google Android
Qualcomm Sdm429w Firmware
Qualcomm Sdm429w
Google Android
Google Android
Qualcomm Wcn3610 Firmware
Google Android
Google Android
Qualcomm Wcn3620
Google Android
Google Android
Google Android
Google Android
Google Android
Google Android
Qualcomm Wcn6855 Firmware
Google Android
Google Android
Google Android
Qualcomm Wcn7850 Firmware
Google Android
Google Android
Qualcomm Wcn7851
Google Android
Google Android
Google Android
Google Android
Google Android

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2022-25697?
CVE-2022-25697 is a memory corruption vulnerability in i2c buses due to improper input validation while reading address configuration from the i2c driver in Snapdragon Mobile and Snapdragon Wearables.
What software is affected by CVE-2022-25697?
Android devices with Qualcomm Snapdragon Mobile and Snapdragon Wearables are affected by CVE-2022-25697.
What is the severity of CVE-2022-25697?
CVE-2022-25697 has a severity rating of 7.8 (High).
How can I fix the CVE-2022-25697 vulnerability?
To fix the CVE-2022-25697 vulnerability, it is recommended to apply the security patches provided by Qualcomm and follow the instructions provided by the device manufacturer.
Where can I find more information about CVE-2022-25697?
You can find more information about CVE-2022-25697 on the Qualcomm Product Security Bulletins page and the Android Security Bulletin for December 2022.

collector/nvd-index
agent/type
agent/first-publish-date
collector/android-source
source/Android
agent/software-canonical-lookup
agent/author
agent/last-modified-date
agent/weakness
agent/severity
agent/references
agent/softwarecombine
agent/description
agent/event
agent/tags
collector/mitre-cve
source/MITRE
vendor/qualcomm
canonical/google android
canonical/qualcomm sm8475
canonical/qualcomm sda429w firmware
canonical/qualcomm sdm429w firmware
canonical/qualcomm sdm429w
canonical/qualcomm wcn3610 firmware
canonical/qualcomm wcn3620
canonical/qualcomm wcn6855 firmware
canonical/qualcomm wcn7850 firmware
canonical/qualcomm wcn7851
vendor/google

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.