CVE-2022-25726: Buffer Over-read in MODEM
First published: Tue Apr 04 2023(Updated: )
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
Credit: product-security@qualcomm.com product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm 9205 Firmware | ||
| Qualcomm 9205 | ||
| Qualcomm MDM9206 | ||
| Qualcomm MDM9206 firmware | ||
| qualcomm MDM9207C firmware | ||
| qualcomm MDM9207C firmware | ||
| Qualcomm WCN685X-1 | ||
| Qualcomm WCN685X | ||
| Qualcomm WCN785X Firmware | ||
| Qualcomm WCN785X Firmware | ||
| Qualcomm MDM8207 | ||
| Qualcomm MDM8207 Firmware | ||
| Qualcomm QCA4004 Firmware | ||
| Qualcomm QCA4004 Firmware | ||
| Qualcomm QTS110 | ||
| Qualcomm QTS110 | ||
| Qualcomm Snapdragon 1100 Wearable | ||
| Qualcomm Snapdragon Wear 1100 Firmware | ||
| Qualcomm Snapdragon 1200 Wearable Firmware | ||
| Qualcomm Snapdragon 1200 Wearable Firmware | ||
| Qualcomm Snapdragon AR2 Gen 1 Firmware | ||
| Qualcomm Snapdragon AR2 Gen 1 Platform Firmware | ||
| Qualcomm Snapdragon Wear 1300 Firmware | ||
| Qualcomm Snapdragon Wear 1300 Platform Firmware | ||
| Qualcomm Snapdragon X5 LTE Firmware | ||
| Qualcomm Snapdragon X5 LTE | ||
| Qualcomm SSG2115P Firmware | ||
| Qualcomm SSG2115P Firmware | ||
| Qualcomm SSG2125P | ||
| Qualcomm SSG2125P | ||
| Qualcomm SXR1230P | ||
| Qualcomm SXR1230P Firmware | ||
| Qualcomm SXR2230P | ||
| Qualcomm SXR2230P | ||
| Qualcomm WCD9306 | ||
| Qualcomm WCD9306 | ||
| Qualcomm WCD9330 | ||
| Qualcomm WCD9330 Firmware | ||
| Qualcomm WCD9380 | ||
| Qualcomm WCD9380 Firmware | ||
| Qualcomm WCD9385 | ||
| Qualcomm WCD9385 Firmware | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8832 Firmware | ||
| Qualcomm WSA8832 Firmware | ||
| Qualcomm WSA8835 | ||
| Qualcomm WSA8835 Firmware | ||
| Qualcomm WCN685X-5 Firmware | ||
| Qualcomm WCN685X-5 Firmware | ||
| Qualcomm WCN785X Firmware | ||
| qualcomm wcn785x-5 firmware | ||
| All of | ||
| Qualcomm 9205 Firmware | ||
| Qualcomm 9205 | ||
| All of | ||
| Qualcomm MDM9206 | ||
| Qualcomm MDM9206 firmware | ||
| All of | ||
| qualcomm MDM9207C firmware | ||
| qualcomm MDM9207C firmware | ||
| All of | ||
| Qualcomm WCN685X-1 | ||
| Qualcomm WCN685X | ||
| All of | ||
| Qualcomm WCN785X Firmware | ||
| Qualcomm WCN785X Firmware | ||
| All of | ||
| Qualcomm MDM8207 | ||
| Qualcomm MDM8207 Firmware | ||
| All of | ||
| Qualcomm QCA4004 Firmware | ||
| Qualcomm QCA4004 Firmware | ||
| All of | ||
| Qualcomm QTS110 | ||
| Qualcomm QTS110 | ||
| All of | ||
| Qualcomm Snapdragon 1100 Wearable | ||
| Qualcomm Snapdragon Wear 1100 Firmware | ||
| All of | ||
| Qualcomm Snapdragon 1200 Wearable Firmware | ||
| Qualcomm Snapdragon 1200 Wearable Firmware | ||
| All of | ||
| Qualcomm Snapdragon AR2 Gen 1 Firmware | ||
| Qualcomm Snapdragon AR2 Gen 1 Platform Firmware | ||
| All of | ||
| Qualcomm Snapdragon Wear 1300 Firmware | ||
| Qualcomm Snapdragon Wear 1300 Platform Firmware | ||
| All of | ||
| Qualcomm Snapdragon X5 LTE Firmware | ||
| Qualcomm Snapdragon X5 LTE | ||
| All of | ||
| Qualcomm SSG2115P Firmware | ||
| Qualcomm SSG2115P Firmware | ||
| All of | ||
| Qualcomm SSG2125P | ||
| Qualcomm SSG2125P | ||
| All of | ||
| Qualcomm SXR1230P | ||
| Qualcomm SXR1230P Firmware | ||
| All of | ||
| Qualcomm SXR2230P | ||
| Qualcomm SXR2230P | ||
| All of | ||
| Qualcomm WCD9306 | ||
| Qualcomm WCD9306 | ||
| All of | ||
| Qualcomm WCD9330 | ||
| Qualcomm WCD9330 Firmware | ||
| All of | ||
| Qualcomm WCD9380 | ||
| Qualcomm WCD9380 Firmware | ||
| All of | ||
| Qualcomm WCD9385 | ||
| Qualcomm WCD9385 Firmware | ||
| All of | ||
| Qualcomm WSA8830 | ||
| Qualcomm WSA8830 | ||
| All of | ||
| Qualcomm WSA8832 Firmware | ||
| Qualcomm WSA8832 Firmware | ||
| All of | ||
| Qualcomm WSA8835 | ||
| Qualcomm WSA8835 Firmware | ||
| All of | ||
| Qualcomm WCN685X-5 Firmware | ||
| Qualcomm WCN685X-5 Firmware | ||
| All of | ||
| Qualcomm WCN785X Firmware | ||
| qualcomm wcn785x-5 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this information disclosure vulnerability?
The vulnerability ID for this information disclosure vulnerability is CVE-2022-25726.
What is the severity level of CVE-2022-25726?
The severity level of CVE-2022-25726 is high with a severity value of 7.5.
What software is affected by CVE-2022-25726?
The affected software includes Qualcomm Mdm9205 Firmware, Google Android, Qualcomm Mdm9206 Firmware, Qualcomm Mdm9207 Firmware, Qualcomm Wcn685x-1 Firmware, Qualcomm Wcn785x-1 Firmware, Qualcomm Mdm8207 Firmware, Qualcomm Qca4004 Firmware, Qualcomm Qts110 Firmware, Qualcomm Snapdragon Wear 1300 Firmware, Qualcomm Snapdragon X5 Lte Modem Firmware, Qualcomm Ssg2115p Firmware, Qualcomm Ssg2125p Firmware, Qualcomm Sxr1230p Firmware, Qualcomm Sxr2230p Firmware, Qualcomm Wcd9306 Firmware, Qualcomm Wcd9330 Firmware, Qualcomm Wcd9380 Firmware, Qualcomm Wcd9385 Firmware, Qualcomm Wsa8830 Firmware, Qualcomm Wsa8832 Firmware, Qualcomm Wsa8835 Firmware, Qualcomm Wcn685x-5 Firmware, Qualcomm Wcn785x-5 Firmware.
How does this vulnerability result in information disclosure?
This vulnerability in modem data results in information disclosure due to array out-of-bound access while handling the incoming DNS response packet.
Is there a fix available for CVE-2022-25726?
For information on fixes available for CVE-2022-25726, please refer to the referenced link.
- agent/type
- agent/references
- agent/title
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/qualcomm 9205 firmware
- canonical/qualcomm 9205
- canonical/qualcomm mdm9206
- canonical/qualcomm mdm9206 firmware
- canonical/qualcomm mdm9207c firmware
- canonical/qualcomm wcn685x-1
- canonical/qualcomm wcn685x
- canonical/qualcomm wcn785x firmware
- canonical/qualcomm mdm8207
- canonical/qualcomm mdm8207 firmware
- canonical/qualcomm qca4004 firmware
- canonical/qualcomm qts110
- canonical/qualcomm snapdragon 1100 wearable
- canonical/qualcomm snapdragon wear 1100 firmware
- canonical/qualcomm snapdragon 1200 wearable firmware
- canonical/qualcomm snapdragon ar2 gen 1 firmware
- canonical/qualcomm snapdragon ar2 gen 1 platform firmware
- canonical/qualcomm snapdragon wear 1300 firmware
- canonical/qualcomm snapdragon wear 1300 platform firmware
- canonical/qualcomm snapdragon x5 lte firmware
- canonical/qualcomm snapdragon x5 lte
- canonical/qualcomm ssg2115p firmware
- canonical/qualcomm ssg2125p
- canonical/qualcomm sxr1230p
- canonical/qualcomm sxr1230p firmware
- canonical/qualcomm sxr2230p
- canonical/qualcomm wcd9306
- canonical/qualcomm wcd9330
- canonical/qualcomm wcd9330 firmware
- canonical/qualcomm wcd9380
- canonical/qualcomm wcd9380 firmware
- canonical/qualcomm wcd9385
- canonical/qualcomm wcd9385 firmware
- canonical/qualcomm wsa8830
- canonical/qualcomm wsa8832 firmware
- canonical/qualcomm wsa8835
- canonical/qualcomm wsa8835 firmware
- canonical/qualcomm wcn685x-5 firmware
- canonical/qualcomm wcn785x-5 firmware