7.5
CVE-2022-25739
- EPSS 0.12%
- Published 13.04.2023 07:15:12
- Last modified 21.11.2024 06:52:52
- Source product-security@qualcomm.com
- Teams watchlist Login
- Open Login
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
Data is provided by the National Vulnerability Database (NVD)
Qualcomm ≫ Mdm9205 Firmware Version-
Qualcomm ≫ Mdm9206 Firmware Version-
Qualcomm ≫ Mdm9207 Firmware Version-
Qualcomm ≫ Mdm8207 Firmware Version-
Qualcomm ≫ Qca4004 Firmware Version-
Qualcomm ≫ Qts110 Firmware Version-
Qualcomm ≫ Snapdragon Ar2 Gen 1 Platform Firmware Version-
Qualcomm ≫ Snapdragon X5 Lte Modem Firmware Version-
Qualcomm ≫ Ssg2115p Firmware Version-
Qualcomm ≫ Ssg2125p Firmware Version-
Qualcomm ≫ Sxr1230p Firmware Version-
Qualcomm ≫ Sxr2230p Firmware Version-
Qualcomm ≫ Wcd9306 Firmware Version-
Qualcomm ≫ Wcd9330 Firmware Version-
Qualcomm ≫ Wcd9380 Firmware Version-
Qualcomm ≫ Wcd9385 Firmware Version-
Qualcomm ≫ Wsa8830 Firmware Version-
Qualcomm ≫ Wsa8832 Firmware Version-
Qualcomm ≫ Wsa8835 Firmware Version-
Qualcomm ≫ Wcn685x-1 Firmware Version-
Qualcomm ≫ Wcn785x-1 Firmware Version-
Qualcomm ≫ Snapdragon Wear 1100 Firmware Version-
Qualcomm ≫ Snapdragon Wear 1200 Firmware Version-
Qualcomm ≫ Snapdragon Wear 1300 Firmware Version-
Qualcomm ≫ Wcn685x-5 Firmware Version-
Qualcomm ≫ Wcn785x-5 Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.282 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| product-security@qualcomm.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.