First published: Tue May 02 2023(Updated: )
Information disclosure due to buffer over-read in Modem while parsing DNS hostname.
Credit: product-security@qualcomm.com product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Qualcomm 9205 Lte Modem Firmware | ||
Qualcomm 9205 Lte Modem | ||
Qualcomm 9206 Lte Modem Firmware | ||
Qualcomm 9206 Lte Modem | ||
Qualcomm 9207 Lte Modem Firmware | ||
Qualcomm 9207 Lte Modem | ||
Qualcomm Mdm8207 Firmware | ||
Google Android | ||
Google Android | ||
Qualcomm Qca4004 | ||
Qualcomm Qca4010 Firmware | ||
Qualcomm Qca4010 | ||
Qualcomm Qts110 Firmware | ||
Qualcomm Qts110 | ||
Qualcomm Snapdragon 1100 Wearable Platform Firmware | ||
Qualcomm Snapdragon 1100 Wearable Platform | ||
Qualcomm Snapdragon 1200 Wearable Platform Firmware | ||
Qualcomm Snapdragon 1200 Wearable Platform | ||
Qualcomm Snapdragon Wear 1300 Platform Firmware | ||
Qualcomm Snapdragon Wear 1300 Platform | ||
Qualcomm Snapdragon X5 Lte Modem Firmware | ||
Qualcomm Snapdragon X5 Lte Modem | ||
Qualcomm Wcd9306 Firmware | ||
Google Android | ||
Google Android | ||
Qualcomm Wcd9330 | ||
All of | ||
Qualcomm 9205 Lte Modem | ||
Qualcomm 9205 Lte Modem Firmware | ||
All of | ||
Qualcomm 9206 Lte Modem | ||
Qualcomm 9206 Lte Modem Firmware | ||
All of | ||
Qualcomm 9207 Lte Modem | ||
Qualcomm 9207 Lte Modem Firmware | ||
All of | ||
Google Android | ||
Qualcomm Mdm8207 Firmware | ||
All of | ||
Qualcomm Qca4004 | ||
Google Android | ||
All of | ||
Qualcomm Qca4010 | ||
Qualcomm Qca4010 Firmware | ||
All of | ||
Qualcomm Qts110 Firmware | ||
Qualcomm Qts110 | ||
All of | ||
Qualcomm Snapdragon 1100 Wearable Platform Firmware | ||
Qualcomm Snapdragon 1100 Wearable Platform | ||
All of | ||
Qualcomm Snapdragon 1200 Wearable Platform Firmware | ||
Qualcomm Snapdragon 1200 Wearable Platform | ||
All of | ||
Qualcomm Snapdragon Wear 1300 Platform Firmware | ||
Qualcomm Snapdragon Wear 1300 Platform | ||
All of | ||
Qualcomm Snapdragon X5 Lte Modem Firmware | ||
Qualcomm Snapdragon X5 Lte Modem | ||
All of | ||
Qualcomm Wcd9306 Firmware | ||
Google Android | ||
All of | ||
Google Android | ||
Qualcomm Wcd9330 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-40505 is a vulnerability that allows for information disclosure due to a buffer over-read in Modem while parsing DNS hostname.
Qualcomm 9205 Lte Modem Firmware, Qualcomm 9206 Lte Modem Firmware, Qualcomm 9207 Lte Modem Firmware, Qualcomm Mdm8207 Firmware, Qualcomm Qca4004 Firmware, Qualcomm Qca4010 Firmware, Qualcomm Qts110 Firmware, Qualcomm Snapdragon 1100 Wearable Platform Firmware, Qualcomm Snapdragon 1200 Wearable Platform Firmware, Qualcomm Snapdragon Wear 1300 Platform Firmware, Qualcomm Snapdragon X5 Lte Modem Firmware, Qualcomm Wcd9306 Firmware, Qualcomm Wcd9330 Firmware are affected by CVE-2022-40505.
The severity of CVE-2022-40505 is high, with a severity value of 7.5.
There is no official fix or patch available for CVE-2022-40505 at the moment. It is recommended to follow the recommendations provided by the vendor and apply any updates or patches as soon as they become available.
More information about CVE-2022-40505 can be found on the official bulletin page of the Qualcomm website: [LINK]