CVE-2022-25745

Summary

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon9205 LTE Modemaffected
Qualcomm, Inc.SnapdragonQCA4004affected
Qualcomm, Inc.SnapdragonQTS110affected
Qualcomm, Inc.SnapdragonSnapdragon Wear 1300 Platformaffected
Qualcomm, Inc.SnapdragonWCD9306affected

Weaknesses

  • CWE-670: CWE-670 Always-Incorrect Control Flow Implementation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

CVE Program Container

Additional References

References