CVE-2022-40535
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Transient DOS due to buffer over-read in WLAN while sending a packet to device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Qualcomm, Inc. | Snapdragon | CSR8811 | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8070A | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8071A | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8072A | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8074A | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8076 | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8076A | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8078 | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8078A | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8173 | affected |
| Qualcomm, Inc. | Snapdragon | IPQ8174 | affected |
| Qualcomm, Inc. | Snapdragon | IPQ9008 | affected |
| Qualcomm, Inc. | Snapdragon | IPQ9574 | affected |
| Qualcomm, Inc. | Snapdragon | QCA4024 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6390 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6391 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6421 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6426 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6431 | affected |
| Qualcomm, Inc. | Snapdragon | QCA6436 | affected |
| Qualcomm, Inc. | Snapdragon | QCA8081 | affected |
| Qualcomm, Inc. | Snapdragon | QCA8082 | affected |
| Qualcomm, Inc. | Snapdragon | QCA8084 | affected |
| Qualcomm, Inc. | Snapdragon | QCA8085 | affected |
| Qualcomm, Inc. | Snapdragon | QCA8386 | affected |
| Qualcomm, Inc. | Snapdragon | QCA9888 | affected |
| Qualcomm, Inc. | Snapdragon | QCA9889 | affected |
| Qualcomm, Inc. | Snapdragon | QCN5024 | affected |
| Qualcomm, Inc. | Snapdragon | QCN5124 | affected |
| Qualcomm, Inc. | Snapdragon | QCN5154 | affected |
| Qualcomm, Inc. | Snapdragon | QCN5164 | affected |
| Qualcomm, Inc. | Snapdragon | QCN6023 | affected |
| Qualcomm, Inc. | Snapdragon | QCN6024 | affected |
| Qualcomm, Inc. | Snapdragon | QCN9000 | affected |
| Qualcomm, Inc. | Snapdragon | QCN9024 | affected |
| Qualcomm, Inc. | Snapdragon | QCN9070 | affected |
| Qualcomm, Inc. | Snapdragon | QCN9072 | affected |
| Qualcomm, Inc. | Snapdragon | QCN9074 | affected |
| Qualcomm, Inc. | Snapdragon | QCN9274 | affected |
| Qualcomm, Inc. | Snapdragon | SD460 | affected |
| Qualcomm, Inc. | Snapdragon | SD480 | affected |
| Qualcomm, Inc. | Snapdragon | SD662 | affected |
| Qualcomm, Inc. | Snapdragon | SD680 | affected |
| Qualcomm, Inc. | Snapdragon | SD695 | affected |
| Qualcomm, Inc. | Snapdragon | SD865 5G | affected |
| Qualcomm, Inc. | Snapdragon | SD870 | affected |
| Qualcomm, Inc. | Snapdragon | SDX55M | affected |
| Qualcomm, Inc. | Snapdragon | SDX65 | affected |
| Qualcomm, Inc. | Snapdragon | SDX65M | affected |
| Qualcomm, Inc. | Snapdragon | SM4125 | affected |
| Qualcomm, Inc. | Snapdragon | Snapdragon 4 Gen 1 | affected |
| Qualcomm, Inc. | Snapdragon | SW5100 | affected |
| Qualcomm, Inc. | Snapdragon | SW5100P | affected |
| Qualcomm, Inc. | Snapdragon | WCD9326 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9335 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9370 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9375 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9380 | affected |
| Qualcomm, Inc. | Snapdragon | WCD9385 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3910 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3950 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3980 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3988 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3991 | affected |
| Qualcomm, Inc. | Snapdragon | WCN3998 | affected |
| Qualcomm, Inc. | Snapdragon | WCN6850 | affected |
| Qualcomm, Inc. | Snapdragon | WCN6851 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8810 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8815 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8830 | affected |
| Qualcomm, Inc. | Snapdragon | WSA8835 | affected |
Weaknesses
- CWE-126: CWE-126 Buffer Over-read
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.