7.5
CVE-2022-25672
- EPSS 0.18%
- Published 13.12.2022 16:15:17
- Last modified 22.04.2025 16:15:21
- Source product-security@qualcomm.com
- Teams watchlist Login
- Open Login
Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile
Data is provided by the National Vulnerability Database (NVD)
Qualcomm ≫ Ar8035 Firmware Version-
Qualcomm ≫ Qca8081 Firmware Version-
Qualcomm ≫ Qca8337 Firmware Version-
Qualcomm ≫ Qcn6024 Firmware Version-
Qualcomm ≫ Qcn9024 Firmware Version-
Qualcomm ≫ Sd 8 Gen1 5g Firmware Version-
Qualcomm ≫ Sd480 Firmware Version-
Qualcomm ≫ Sd695 Firmware Version-
Qualcomm ≫ Sdx65 Firmware Version-
Qualcomm ≫ Sm4375 Firmware Version-
Qualcomm ≫ Wcd9370 Firmware Version-
Qualcomm ≫ Wcd9375 Firmware Version-
Qualcomm ≫ Wcd9380 Firmware Version-
Qualcomm ≫ Wcd9385 Firmware Version-
Qualcomm ≫ Wcn3988 Firmware Version-
Qualcomm ≫ Wcn3998 Firmware Version-
Qualcomm ≫ Wcn6855 Firmware Version-
Qualcomm ≫ Wcn6856 Firmware Version-
Qualcomm ≫ Wcn7850 Firmware Version-
Qualcomm ≫ Wcn7851 Firmware Version-
Qualcomm ≫ Wsa8810 Firmware Version-
Qualcomm ≫ Wsa8815 Firmware Version-
Qualcomm ≫ Wsa8830 Firmware Version-
Qualcomm ≫ Wsa8835 Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.18% | 0.402 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| product-security@qualcomm.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-617 Reachable Assertion
The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.