CVE-2022-40538

Summary

Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonAR8035affected
Qualcomm, Inc.SnapdragonFastConnect 6900affected
Qualcomm, Inc.SnapdragonFastConnect 7800affected
Qualcomm, Inc.SnapdragonQCA8081affected
Qualcomm, Inc.SnapdragonQCA8337affected
Qualcomm, Inc.SnapdragonQCN6024affected
Qualcomm, Inc.SnapdragonQCN9024affected
Qualcomm, Inc.SnapdragonQCS8550affected
Qualcomm, Inc.SnapdragonSnapdragon X65 5G Modem-RF Systemaffected
Qualcomm, Inc.SnapdragonSnapdragon X70 Modem-RF Systemaffected
Qualcomm, Inc.SnapdragonWCD9380affected

Weaknesses

  • CWE-617: CWE-617 Reachable Assertion

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

CVE Program Container

Additional References

References