CVE-2022-25735: Null Pointer Dereference in MODEM
First published: Thu Feb 09 2023(Updated: )
Denial of service in modem due to missing null check while processing TCP or UDP packets from server
Credit: product-security@qualcomm.com product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Qualcomm Ar8031 | ||
| Qualcomm Csra6620 Firmware | ||
| Google Android | ||
| Qualcomm Csra6640 Firmware | ||
| Google Android | ||
| Qualcomm Mdm8207 Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Mdm9206 Firmware | ||
| Qualcomm Mdm9206 | ||
| Qualcomm Mdm9207 Firmware | ||
| Qualcomm Mdm9207 | ||
| Google Android | ||
| Qualcomm Mdm9607 | ||
| Google Android | ||
| Qualcomm Qca4004 | ||
| Qualcomm Qca4020 Firmware | ||
| Google Android | ||
| Qualcomm Qca4024 Firmware | ||
| Google Android | ||
| Qualcomm Qcs405 Firmware | ||
| Google Android | ||
| Qualcomm Qts110 Firmware | ||
| Qualcomm Qts110 | ||
| Qualcomm Ssg2115p Firmware | ||
| Qualcomm Ssg2115p | ||
| Qualcomm Ssg2125p Firmware | ||
| Qualcomm Ssg2125p | ||
| Qualcomm Sxr1230p Firmware | ||
| Qualcomm Sxr1230p | ||
| Qualcomm Sxr2230p Firmware | ||
| Qualcomm Sxr2230p | ||
| Qualcomm Wcd9306 Firmware | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Wcd9330 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Wcn6855 Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Wcn7850 Firmware | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Wcn7851 | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Wsa8832 Firmware | ||
| Qualcomm Wsa8832 | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Ar8031 | ||
| All of | ||
| Qualcomm Csra6620 Firmware | ||
| Google Android | ||
| All of | ||
| Qualcomm Csra6640 Firmware | ||
| Google Android | ||
| All of | ||
| Qualcomm Mdm8207 Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Qualcomm Mdm9206 Firmware | ||
| Qualcomm Mdm9206 | ||
| All of | ||
| Qualcomm Mdm9207 Firmware | ||
| Qualcomm Mdm9207 | ||
| All of | ||
| Google Android | ||
| Qualcomm Mdm9607 | ||
| All of | ||
| Google Android | ||
| Qualcomm Qca4004 | ||
| All of | ||
| Qualcomm Qca4020 Firmware | ||
| Google Android | ||
| All of | ||
| Qualcomm Qca4024 Firmware | ||
| Google Android | ||
| All of | ||
| Qualcomm Qcs405 Firmware | ||
| Google Android | ||
| All of | ||
| Qualcomm Qts110 Firmware | ||
| Qualcomm Qts110 | ||
| All of | ||
| Qualcomm Ssg2115p Firmware | ||
| Qualcomm Ssg2115p | ||
| All of | ||
| Qualcomm Ssg2125p Firmware | ||
| Qualcomm Ssg2125p | ||
| All of | ||
| Qualcomm Sxr1230p Firmware | ||
| Qualcomm Sxr1230p | ||
| All of | ||
| Qualcomm Sxr2230p Firmware | ||
| Qualcomm Sxr2230p | ||
| All of | ||
| Qualcomm Wcd9306 Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Wcd9330 | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Qualcomm Wcn6855 Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Qualcomm Wcn7850 Firmware | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Qualcomm Wcn7851 | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Google Android | ||
| Google Android | ||
| All of | ||
| Qualcomm Wsa8832 Firmware | ||
| Qualcomm Wsa8832 | ||
| All of | ||
| Google Android | ||
| Google Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-25735?
CVE-2022-25735 is a vulnerability that allows an attacker to cause a denial of service in a modem by exploiting a missing null check while processing TCP or UDP packets from a server.
Which software is affected by CVE-2022-25735?
Google Android, Qualcomm Ar8031 Firmware, Qualcomm Csra6620 Firmware, Qualcomm Csra6640 Firmware, Qualcomm Mdm8207 Firmware, Qualcomm Mdm9205 Firmware, Qualcomm Mdm9206 Firmware, Qualcomm Mdm9207 Firmware, Qualcomm Mdm9607 Firmware, Qualcomm Qca4004 Firmware, Qualcomm Qca4020 Firmware, Qualcomm Qca4024 Firmware, Qualcomm Qcs405 Firmware, Qualcomm Qts110 Firmware, Qualcomm Ssg2115p Firmware, Qualcomm Ssg2125p Firmware, Qualcomm Sxr1230p Firmware, Qualcomm Sxr2230p Firmware, Qualcomm Wcd9306 Firmware, Qualcomm Wcd9330 Firmware, Qualcomm Wcd9335 Firmware, Qualcomm Wcd9380 Firmware, Qualcomm Wcd9385 Firmware, Qualcomm Wcn3980 Firmware, Qualcomm Wcn3998 Firmware, Qualcomm Wcn3999 Firmware, Qualcomm Wcn6855 Firmware, Qualcomm Wcn6856 Firmware, Qualcomm Wcn7850 Firmware, Qualcomm Wcn7851 Firmware, Qualcomm Wsa8810 Firmware, Qualcomm Wsa8815 Firmware, Qualcomm Wsa8830 Firmware, Qualcomm Wsa8832 Firmware, Qualcomm Wsa8835 Firmware are all affected by CVE-2022-25735.
How severe is CVE-2022-25735?
CVE-2022-25735 has a severity rating of 7.5 (High).
How can I fix CVE-2022-25735?
To fix CVE-2022-25735, it is recommended to apply the relevant security patch provided by the software vendor.
Where can I find more information about CVE-2022-25735?
You can find more information about CVE-2022-25735 on the official Qualcomm website: [https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin](https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin).
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/title
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/google android
- canonical/qualcomm ar8031
- canonical/qualcomm csra6620 firmware
- canonical/qualcomm csra6640 firmware
- canonical/qualcomm mdm8207 firmware
- canonical/qualcomm mdm9206 firmware
- canonical/qualcomm mdm9206
- canonical/qualcomm mdm9207 firmware
- canonical/qualcomm mdm9207
- canonical/qualcomm mdm9607
- canonical/qualcomm qca4004
- canonical/qualcomm qca4020 firmware
- canonical/qualcomm qca4024 firmware
- canonical/qualcomm qcs405 firmware
- canonical/qualcomm qts110 firmware
- canonical/qualcomm qts110
- canonical/qualcomm ssg2115p firmware
- canonical/qualcomm ssg2115p
- canonical/qualcomm ssg2125p firmware
- canonical/qualcomm ssg2125p
- canonical/qualcomm sxr1230p firmware
- canonical/qualcomm sxr1230p
- canonical/qualcomm sxr2230p firmware
- canonical/qualcomm sxr2230p
- canonical/qualcomm wcd9306 firmware
- canonical/qualcomm wcd9330
- canonical/qualcomm wcn6855 firmware
- canonical/qualcomm wcn7850 firmware
- canonical/qualcomm wcn7851
- canonical/qualcomm wsa8832 firmware
- canonical/qualcomm wsa8832