CVE-2022-22079

Summary

Denial of service while processing fastboot flash command on mmc due to buffer over read

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonAPQ8009affected
Qualcomm, Inc.SnapdragonAPQ8009Waffected
Qualcomm, Inc.SnapdragonAPQ8064AUaffected
Qualcomm, Inc.SnapdragonAPQ8096AUaffected
Qualcomm, Inc.SnapdragonMDM9150affected
Qualcomm, Inc.SnapdragonMDM9250affected
Qualcomm, Inc.SnapdragonMDM9628affected
Qualcomm, Inc.SnapdragonMDM9650affected
Qualcomm, Inc.SnapdragonMSM8108affected
Qualcomm, Inc.SnapdragonMSM8208affected
Qualcomm, Inc.SnapdragonMSM8209affected
Qualcomm, Inc.SnapdragonMSM8608affected
Qualcomm, Inc.SnapdragonMSM8909Waffected
Qualcomm, Inc.SnapdragonMSM8996AUaffected
Qualcomm, Inc.SnapdragonQCA4020affected
Qualcomm, Inc.SnapdragonQCA6174Aaffected
Qualcomm, Inc.SnapdragonQCA6564Aaffected
Qualcomm, Inc.SnapdragonQCA6564AUaffected
Qualcomm, Inc.SnapdragonQCA6574affected
Qualcomm, Inc.SnapdragonQCA6574Aaffected
Qualcomm, Inc.SnapdragonQCA6574AUaffected
Qualcomm, Inc.SnapdragonQCA6584AUaffected
Qualcomm, Inc.SnapdragonQCA9377affected
Qualcomm, Inc.SnapdragonQCA9379affected
Qualcomm, Inc.SnapdragonQualcomm215affected
Qualcomm, Inc.SnapdragonSD210affected
Qualcomm, Inc.SnapdragonSD429affected
Qualcomm, Inc.SnapdragonSD625affected
Qualcomm, Inc.SnapdragonSD626affected
Qualcomm, Inc.SnapdragonSD835affected
Qualcomm, Inc.SnapdragonSDA429Waffected
Qualcomm, Inc.SnapdragonSDM429Waffected
Qualcomm, Inc.SnapdragonSDW2500affected
Qualcomm, Inc.SnapdragonSDX20affected
Qualcomm, Inc.SnapdragonSDX20Maffected
Qualcomm, Inc.SnapdragonWCD9326affected
Qualcomm, Inc.SnapdragonWCD9335affected
Qualcomm, Inc.SnapdragonWCN3610affected
Qualcomm, Inc.SnapdragonWCN3615affected
Qualcomm, Inc.SnapdragonWCN3620affected
Qualcomm, Inc.SnapdragonWCN3660Baffected
Qualcomm, Inc.SnapdragonWCN3680affected
Qualcomm, Inc.SnapdragonWCN3680Baffected
Qualcomm, Inc.SnapdragonWCN3980affected
Qualcomm, Inc.SnapdragonWCN3990affected
Qualcomm, Inc.SnapdragonWSA8815affected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References