CVE-2022-33299

Summary

Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonAPQ8017affected
Qualcomm, Inc.SnapdragonAPQ8096AUaffected
Qualcomm, Inc.SnapdragonAR8031affected
Qualcomm, Inc.SnapdragonCSRA6620affected
Qualcomm, Inc.SnapdragonCSRA6640affected
Qualcomm, Inc.SnapdragonCSRB31024affected
Qualcomm, Inc.SnapdragonMDM9150affected
Qualcomm, Inc.SnapdragonMDM9206affected
Qualcomm, Inc.SnapdragonMDM9250affected
Qualcomm, Inc.SnapdragonMDM9607affected
Qualcomm, Inc.SnapdragonMDM9628affected
Qualcomm, Inc.SnapdragonMDM9640affected
Qualcomm, Inc.SnapdragonMDM9650affected
Qualcomm, Inc.SnapdragonMSM8996AUaffected
Qualcomm, Inc.SnapdragonQCA6174Aaffected
Qualcomm, Inc.SnapdragonQCA6175Aaffected
Qualcomm, Inc.SnapdragonQCA6564Aaffected
Qualcomm, Inc.SnapdragonQCA6564AUaffected
Qualcomm, Inc.SnapdragonQCA6574affected
Qualcomm, Inc.SnapdragonQCA6574Aaffected
Qualcomm, Inc.SnapdragonQCA6574AUaffected
Qualcomm, Inc.SnapdragonQCA6584affected
Qualcomm, Inc.SnapdragonQCA6584AUaffected
Qualcomm, Inc.SnapdragonQCA6595affected
Qualcomm, Inc.SnapdragonQCA6595AUaffected
Qualcomm, Inc.SnapdragonQCA6696affected
Qualcomm, Inc.SnapdragonQCA9367affected
Qualcomm, Inc.SnapdragonQCA9377affected
Qualcomm, Inc.SnapdragonQCN9074affected
Qualcomm, Inc.SnapdragonQCS405affected
Qualcomm, Inc.SnapdragonSA415Maffected
Qualcomm, Inc.SnapdragonSA515Maffected
Qualcomm, Inc.SnapdragonSD626affected
Qualcomm, Inc.SnapdragonSDX20affected
Qualcomm, Inc.SnapdragonSDX20Maffected
Qualcomm, Inc.SnapdragonSDX55affected
Qualcomm, Inc.SnapdragonWCD9326affected
Qualcomm, Inc.SnapdragonWCD9335affected
Qualcomm, Inc.SnapdragonWCD9360affected
Qualcomm, Inc.SnapdragonWCN3660Baffected
Qualcomm, Inc.SnapdragonWCN3680Baffected
Qualcomm, Inc.SnapdragonWCN3980affected
Qualcomm, Inc.SnapdragonWCN3998affected
Qualcomm, Inc.SnapdragonWSA8815affected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References