First published: Tue Nov 15 2022(Updated: )
Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music
Credit: product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | ||
Qualcomm Ar8031 | ||
Qualcomm Csra6620 Firmware | ||
Google Android | ||
Qualcomm Csra6640 Firmware | ||
Google Android | ||
Qualcomm Mdm8207 Firmware | ||
Google Android | ||
Google Android | ||
Google Android | ||
Qualcomm Mdm9206 Firmware | ||
Qualcomm Mdm9206 | ||
Qualcomm Mdm9207 Firmware | ||
Qualcomm Mdm9207 | ||
Google Android | ||
Qualcomm Mdm9607 | ||
Google Android | ||
Qualcomm Qca4004 | ||
Qualcomm Qca4010 Firmware | ||
Qualcomm Qca4010 | ||
Qualcomm Qca4020 Firmware | ||
Google Android | ||
Qualcomm Qca4024 Firmware | ||
Google Android | ||
Qualcomm Qcs405 Firmware | ||
Qualcomm Qcs405 | ||
Qualcomm Wcd9306 Firmware | ||
Google Android | ||
Google Android | ||
Qualcomm Wcd9330 | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android | ||
Google Android |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-25727 is critical with a CVSS score of 9.8.
The affected software for CVE-2022-25727 includes Snapdragon Consumer IOT, Snapdragon Industrial IOT, and Snapdragon Voice & Music.
CVE-2022-25727 occurs due to memory corruption in the modem caused by improper length checks while copying into memory in Qualcomm devices.
No, Qualcomm Ar8031 is not vulnerable to CVE-2022-25727.
To fix CVE-2022-25727, it is recommended to update to the latest firmware or software version provided by Qualcomm.