First published: Tue Apr 04 2023(Updated: )
Information disclosure in modem due to buffer over-read while processing packets from DNS server
Credit: product-security@qualcomm.com product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Android | ||
Google Android | ||
Qualcomm Mdm9206 Firmware | ||
Qualcomm Mdm9206 | ||
Qualcomm Mdm9207 Firmware | ||
Qualcomm Mdm9207 | ||
Qualcomm Mdm8207 Firmware | ||
Google Android | ||
Google Android | ||
Qualcomm Qca4004 | ||
Qualcomm Qca4010 Firmware | ||
Qualcomm Qca4010 | ||
Qualcomm Qts110 Firmware | ||
Qualcomm Qts110 | ||
Qualcomm Snapdragon Wear 1300 Firmware | ||
Qualcomm Snapdragon Wear 1300 | ||
Qualcomm Snapdragon X5 Lte Modem Firmware | ||
Qualcomm Snapdragon X5 Lte Modem | ||
Google Android | ||
Qualcomm Wcd9330 | ||
Qualcomm Wcd9306 Firmware | ||
Google Android | ||
All of | ||
Google Android | ||
Google Android | ||
All of | ||
Qualcomm Mdm9206 Firmware | ||
Qualcomm Mdm9206 | ||
All of | ||
Qualcomm Mdm9207 Firmware | ||
Qualcomm Mdm9207 | ||
All of | ||
Qualcomm Mdm8207 Firmware | ||
Google Android | ||
All of | ||
Google Android | ||
Qualcomm Qca4004 | ||
All of | ||
Qualcomm Qca4010 Firmware | ||
Qualcomm Qca4010 | ||
All of | ||
Qualcomm Qts110 Firmware | ||
Qualcomm Qts110 | ||
All of | ||
Qualcomm Snapdragon Wear 1100 Firmware | ||
Qualcomm Snapdragon Wear 1100 | ||
All of | ||
Qualcomm Snapdragon Wear 1200 Firmware | ||
Qualcomm Snapdragon Wear 1200 | ||
All of | ||
Qualcomm Snapdragon Wear 1300 Firmware | ||
Qualcomm Snapdragon Wear 1300 | ||
All of | ||
Qualcomm Snapdragon X5 Lte Modem Firmware | ||
Qualcomm Snapdragon X5 Lte Modem | ||
All of | ||
Google Android | ||
Qualcomm Wcd9330 | ||
All of | ||
Qualcomm Wcd9306 Firmware | ||
Google Android |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-25731 is a vulnerability that allows information disclosure in a modem due to a buffer over-read while processing packets from a DNS server.
The software affected by CVE-2022-25731 is Qualcomm Mdm9205 Firmware, Qualcomm Mdm9206 Firmware, Qualcomm Mdm9207 Firmware, Qualcomm Mdm8207 Firmware, Qualcomm Qca4004 Firmware, Qualcomm Qca4010 Firmware, Qualcomm Qts110 Firmware, Qualcomm Snapdragon Wear 1300 Firmware, Qualcomm Snapdragon X5 Lte Modem Firmware, Qualcomm Wcd9330 Firmware, and Qualcomm Wcd9306 Firmware.
CVE-2022-25731 has a severity level of 7.5 (High).
CVE-2022-25731 works by exploiting a buffer over-read vulnerability in the modem while processing packets from a DNS server, leading to information disclosure.
To fix CVE-2022-25731, it is recommended to apply the necessary security patches provided by Qualcomm.