CVE-2022-33255

Summary

Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonAPQ8009affected
Qualcomm, Inc.SnapdragonAR8031affected
Qualcomm, Inc.SnapdragonCSRA6620affected
Qualcomm, Inc.SnapdragonCSRA6640affected
Qualcomm, Inc.SnapdragonMSM8108affected
Qualcomm, Inc.SnapdragonMSM8208affected
Qualcomm, Inc.SnapdragonMSM8209affected
Qualcomm, Inc.SnapdragonMSM8608affected
Qualcomm, Inc.SnapdragonQCA6310affected
Qualcomm, Inc.SnapdragonQCA6320affected
Qualcomm, Inc.SnapdragonQCA6335affected
Qualcomm, Inc.SnapdragonQCA6390affected
Qualcomm, Inc.SnapdragonQCA6391affected
Qualcomm, Inc.SnapdragonQCA6421affected
Qualcomm, Inc.SnapdragonQCA6426affected
Qualcomm, Inc.SnapdragonQCA6431affected
Qualcomm, Inc.SnapdragonQCA6436affected
Qualcomm, Inc.SnapdragonQCA6574affected
Qualcomm, Inc.SnapdragonQCA6574Aaffected
Qualcomm, Inc.SnapdragonQCA6574AUaffected
Qualcomm, Inc.SnapdragonQCA6595affected
Qualcomm, Inc.SnapdragonQCA6595AUaffected
Qualcomm, Inc.SnapdragonQCA6696affected
Qualcomm, Inc.SnapdragonQCC5100affected
Qualcomm, Inc.SnapdragonQCM6125affected
Qualcomm, Inc.SnapdragonQCN9011affected
Qualcomm, Inc.SnapdragonQCN9012affected
Qualcomm, Inc.SnapdragonQCN9074affected
Qualcomm, Inc.SnapdragonQCS405affected
Qualcomm, Inc.SnapdragonQCS410affected
Qualcomm, Inc.SnapdragonQCS605affected
Qualcomm, Inc.SnapdragonQCS610affected
Qualcomm, Inc.SnapdragonQCS6125affected
Qualcomm, Inc.SnapdragonQRB5165affected
Qualcomm, Inc.SnapdragonQRB5165Maffected
Qualcomm, Inc.SnapdragonQRB5165Naffected
Qualcomm, Inc.SnapdragonQualcomm215affected
Qualcomm, Inc.SnapdragonSA6145Paffected
Qualcomm, Inc.SnapdragonSA6150Paffected
Qualcomm, Inc.SnapdragonSA6155affected
Qualcomm, Inc.SnapdragonSA6155Paffected
Qualcomm, Inc.SnapdragonSA8145Paffected
Qualcomm, Inc.SnapdragonSA8150Paffected
Qualcomm, Inc.SnapdragonSA8155affected
Qualcomm, Inc.SnapdragonSA8155Paffected
Qualcomm, Inc.SnapdragonSA8195Paffected
Qualcomm, Inc.SnapdragonSD 8 Gen1 5Gaffected
Qualcomm, Inc.SnapdragonSD205affected
Qualcomm, Inc.SnapdragonSD210affected
Qualcomm, Inc.SnapdragonSD429affected
Qualcomm, Inc.SnapdragonSD439affected
Qualcomm, Inc.SnapdragonSD625affected
Qualcomm, Inc.SnapdragonSD626affected
Qualcomm, Inc.SnapdragonSD660affected
Qualcomm, Inc.SnapdragonSD835affected
Qualcomm, Inc.SnapdragonSD845affected
Qualcomm, Inc.SnapdragonSD865 5Gaffected
Qualcomm, Inc.SnapdragonSD870affected
Qualcomm, Inc.SnapdragonSDM429Waffected
Qualcomm, Inc.SnapdragonSDX55Maffected
Qualcomm, Inc.SnapdragonSDXR1affected
Qualcomm, Inc.SnapdragonSDXR2 5Gaffected
Qualcomm, Inc.SnapdragonSW5100affected
Qualcomm, Inc.SnapdragonSW5100Paffected
Qualcomm, Inc.SnapdragonWCD9326affected
Qualcomm, Inc.SnapdragonWCD9335affected
Qualcomm, Inc.SnapdragonWCD9340affected
Qualcomm, Inc.SnapdragonWCD9341affected
Qualcomm, Inc.SnapdragonWCD9370affected
Qualcomm, Inc.SnapdragonWCD9380affected
Qualcomm, Inc.SnapdragonWCD9385affected
Qualcomm, Inc.SnapdragonWCN3610affected
Qualcomm, Inc.SnapdragonWCN3615affected
Qualcomm, Inc.SnapdragonWCN3620affected
Qualcomm, Inc.SnapdragonWCN3660Baffected
Qualcomm, Inc.SnapdragonWCN3680affected
Qualcomm, Inc.SnapdragonWCN3680Baffected
Qualcomm, Inc.SnapdragonWCN3950affected
Qualcomm, Inc.SnapdragonWCN3980affected
Qualcomm, Inc.SnapdragonWCN3988affected
Qualcomm, Inc.SnapdragonWCN3990affected
Qualcomm, Inc.SnapdragonWCN3998affected
Qualcomm, Inc.SnapdragonWCN6850affected
Qualcomm, Inc.SnapdragonWCN6851affected
Qualcomm, Inc.SnapdragonWCN6855affected
Qualcomm, Inc.SnapdragonWCN6856affected
Qualcomm, Inc.SnapdragonWCN7850affected
Qualcomm, Inc.SnapdragonWCN7851affected
Qualcomm, Inc.SnapdragonWSA8810affected
Qualcomm, Inc.SnapdragonWSA8815affected
Qualcomm, Inc.SnapdragonWSA8830affected
Qualcomm, Inc.SnapdragonWSA8835affected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References