CVE-2022-25734

Summary

Denial of service in modem due to missing null check while processing IP packets with padding

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonAR8031affected
Qualcomm, Inc.SnapdragonCSRA6620affected
Qualcomm, Inc.SnapdragonCSRA6640affected
Qualcomm, Inc.SnapdragonMDM8207affected
Qualcomm, Inc.SnapdragonMDM9205affected
Qualcomm, Inc.SnapdragonMDM9206affected
Qualcomm, Inc.SnapdragonMDM9207affected
Qualcomm, Inc.SnapdragonMDM9607affected
Qualcomm, Inc.SnapdragonQCA4004affected
Qualcomm, Inc.SnapdragonQCA4010affected
Qualcomm, Inc.SnapdragonQCA4020affected
Qualcomm, Inc.SnapdragonQCA4024affected
Qualcomm, Inc.SnapdragonQCS405affected
Qualcomm, Inc.SnapdragonQTS110affected
Qualcomm, Inc.SnapdragonSSG2115Paffected
Qualcomm, Inc.SnapdragonSSG2125Paffected
Qualcomm, Inc.SnapdragonSXR1230Paffected
Qualcomm, Inc.SnapdragonSXR2230Paffected
Qualcomm, Inc.SnapdragonWCD9306affected
Qualcomm, Inc.SnapdragonWCD9330affected
Qualcomm, Inc.SnapdragonWCD9335affected
Qualcomm, Inc.SnapdragonWCD9380affected
Qualcomm, Inc.SnapdragonWCD9385affected
Qualcomm, Inc.SnapdragonWCN3980affected
Qualcomm, Inc.SnapdragonWCN3998affected
Qualcomm, Inc.SnapdragonWCN3999affected
Qualcomm, Inc.SnapdragonWCN6855affected
Qualcomm, Inc.SnapdragonWCN6856affected
Qualcomm, Inc.SnapdragonWCN7850affected
Qualcomm, Inc.SnapdragonWCN7851affected
Qualcomm, Inc.SnapdragonWSA8810affected
Qualcomm, Inc.SnapdragonWSA8815affected
Qualcomm, Inc.SnapdragonWSA8830affected
Qualcomm, Inc.SnapdragonWSA8832affected
Qualcomm, Inc.SnapdragonWSA8835affected

Weaknesses

  • CWE-835: CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References