CVE-2022-33220

Information disclosure in Automotive multimedia due to buffer over-read.

CVSS v3 5.1 MEDIUM

5.1^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 4.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin	Patch Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6420:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6426:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6430:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6436:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qcc5100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcc5100:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8145p:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_8_gen1_5g:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd855:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd870:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:sd888_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd888_5g:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdxr2_5g:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6855:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6856:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn7850:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn7851:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:07

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~5.5~~	v2 : unknown v3 : 5.1
References	~~() https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin - Patch, Vendor Advisory~~	() https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin - Patch, Vendor Advisory

08 Sep 2023, 16:44

Type	Values Removed	Values Added
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin - Patch, Vendor Advisory
CPE		cpe:2.3:o:qualcomm:sdx55m_firmware:-:::::::* cpe:2.3:o:qualcomm:sd865_5g_firmware:-:::::::* cpe:2.3:h:qualcomm:sw5100:-:::::::* cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6574au_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6595au:-:::::::* cpe:2.3:o:qualcomm:wcn3980_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6390:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn3998_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6696_firmware:-:::::::* cpe:2.3:o:qualcomm:sa6155p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa6150p_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6390_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6696:-:::::::* cpe:2.3:h:qualcomm:sa6155p:-:::::::* cpe:2.3:o:qualcomm:wcn3988_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:h:qualcomm:sa8150p:-:::::::* cpe:2.3:h:qualcomm:qcc5100:-:::::::* cpe:2.3:h:qualcomm:sd888_5g:-:::::::* cpe:2.3:h:qualcomm:qca6430:-:::::::* cpe:2.3:h:qualcomm:sa8195p:-:::::::* cpe:2.3:h:qualcomm:sa6150p:-:::::::* cpe:2.3:h:qualcomm:wcd9341:-:::::::* cpe:2.3:h:qualcomm:qca6574au:-:::::::* cpe:2.3:o:qualcomm:sa6145p_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3998:-:::::::* cpe:2.3:h:qualcomm:qca6420:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:h:qualcomm:wcn3980:-:::::::* cpe:2.3:h:qualcomm:sdx55m:-:::::::* cpe:2.3:o:qualcomm:sa8295p_firmware:-:::::::* cpe:2.3:o:qualcomm:sd855_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9385:-:::::::* cpe:2.3:o:qualcomm:sd888_5g_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6420_firmware:-:::::::* cpe:2.3:h:qualcomm:sd865_5g:-:::::::* cpe:2.3:h:qualcomm:aqt1000:-:::::::* cpe:2.3:o:qualcomm:qca6436_firmware:-:::::::* cpe:2.3:h:qualcomm:sw5100p:-:::::::* cpe:2.3:o:qualcomm:qcc5100_firmware:-:::::::* cpe:2.3:h:qualcomm:sd_8_gen1_5g:-:::::::* cpe:2.3:o:qualcomm:sw5100p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8145p_firmware:-:::::::* cpe:2.3:o:qualcomm:sa8195p_firmware:-:::::::* cpe:2.3:h:qualcomm:sd870:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:o:qualcomm:aqt1000_firmware:-:::::::* cpe:2.3:o:qualcomm:sd870_firmware:-:::::::* cpe:2.3:h:qualcomm:sa6145p:-:::::::* cpe:2.3:o:qualcomm:sa8150p_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn6856:-:::::::* cpe:2.3:o:qualcomm:wcn6850_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn7851:-:::::::* cpe:2.3:o:qualcomm:wcn7850_firmware:-:::::::* cpe:2.3:h:qualcomm:sd855:-:::::::* cpe:2.3:h:qualcomm:wcn6850:-:::::::* cpe:2.3:o:qualcomm:wcn6856_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8155p:-:::::::* cpe:2.3:h:qualcomm:wsa8835:-:::::::* cpe:2.3:o:qualcomm:wcd9341_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6426_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn6855:-:::::::* cpe:2.3:h:qualcomm:qca6436:-:::::::* cpe:2.3:h:qualcomm:sdxr2_5g:-:::::::* cpe:2.3:o:qualcomm:wcd9385_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6391:-:::::::* cpe:2.3:o:qualcomm:wcn6855_firmware:-:::::::* cpe:2.3:h:qualcomm:qam8295p:-:::::::* cpe:2.3:h:qualcomm:wcn7850:-:::::::* cpe:2.3:o:qualcomm:wcn6851_firmware:-:::::::* cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8830:-:::::::* cpe:2.3:o:qualcomm:sa8155p_firmware:-:::::::* cpe:2.3:o:qualcomm:wcn7851_firmware:-:::::::* cpe:2.3:h:qualcomm:sa8295p:-:::::::* cpe:2.3:h:qualcomm:sa8145p:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6430_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn3988:-:::::::* cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6595au_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6426:-:::::::* cpe:2.3:o:qualcomm:qam8295p_firmware:-:::::::* cpe:2.3:o:qualcomm:sw5100_firmware:-:::::::* cpe:2.3:h:qualcomm:wcn6851:-:::::::* cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:::::::*
CWE		CWE-125
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
First Time		Qualcomm qca6696 Qualcomm sa8295p Qualcomm qca6430 Qualcomm sd870 Firmware Qualcomm Qualcomm sd865 5g Firmware Qualcomm sa6150p Firmware Qualcomm sw5100 Firmware Qualcomm sd855 Qualcomm sa8195p Firmware Qualcomm qca6420 Qualcomm wcn3980 Qualcomm wsa8810 Qualcomm sa6145p Qualcomm wcn6855 Firmware Qualcomm sa8145p Qualcomm sw5100p Qualcomm aqt1000 Qualcomm wsa8815 Qualcomm qca6436 Qualcomm sa6145p Firmware Qualcomm wsa8815 Firmware Qualcomm qca6595au Firmware Qualcomm sd855 Firmware Qualcomm wcn6850 Firmware Qualcomm wcd9380 Firmware Qualcomm qca6436 Firmware Qualcomm wcn6855 Qualcomm sw5100 Qualcomm wcd9341 Firmware Qualcomm sd 8 Gen1 5g Firmware Qualcomm qam8295p Firmware Qualcomm sa8295p Firmware Qualcomm sd865 5g Qualcomm sdxr2 5g Qualcomm sa8150p Qualcomm sd870 Qualcomm wcn6856 Qualcomm qca6391 Qualcomm qca6390 Firmware Qualcomm wcd9341 Qualcomm wcn3998 Firmware Qualcomm wcn3988 Firmware Qualcomm wcn6851 Firmware Qualcomm sa8155p Qualcomm sd888 5g Firmware Qualcomm wcn6850 Qualcomm wsa8835 Firmware Qualcomm wcn7851 Firmware Qualcomm sdxr2 5g Firmware Qualcomm qca6426 Firmware Qualcomm wsa8835 Qualcomm qca6595au Qualcomm sa6155p Firmware Qualcomm qcc5100 Qualcomm wcn6856 Firmware Qualcomm qcc5100 Firmware Qualcomm sa6150p Qualcomm sd888 5g Qualcomm qca6430 Firmware Qualcomm sd 8 Gen1 5g Qualcomm sw5100p Firmware Qualcomm wcn7851 Qualcomm wsa8810 Firmware Qualcomm sdx55m Firmware Qualcomm sa8155p Firmware Qualcomm wcn3988 Qualcomm sdx55m Qualcomm sa8150p Firmware Qualcomm wcn7850 Qualcomm wcn3980 Firmware Qualcomm qca6574au Qualcomm wsa8830 Firmware Qualcomm qca6420 Firmware Qualcomm wcn6851 Qualcomm wcd9380 Qualcomm wsa8830 Qualcomm wcn7850 Firmware Qualcomm wcd9385 Firmware Qualcomm sa6155p Qualcomm sa8195p Qualcomm qca6696 Firmware Qualcomm aqt1000 Firmware Qualcomm qam8295p Qualcomm qca6390 Qualcomm qca6426 Qualcomm qca6391 Firmware Qualcomm sa8145p Firmware Qualcomm qca6574au Firmware Qualcomm wcd9385 Qualcomm wcn3998

05 Sep 2023, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-05 07:15

Updated : 2024-11-21 07:07

NVD link : CVE-2022-33220

Mitre link : CVE-2022-33220

CVE.ORG link : CVE-2022-33220

JSON object : View

Products Affected

qualcomm

sa8295p_firmware
wcd9385
sd865_5g_firmware
wsa8815_firmware
sa6155p_firmware
qcc5100
wcn6850
sd_8_gen1_5g
wsa8815
sa6150p
sa8155p_firmware
sa8295p
qca6595au
wsa8835_firmware
wcn3988
wcn7851_firmware
wcn6855
sw5100p
qca6426_firmware
sa8195p
sd870
sa6150p_firmware
sa8155p
sd_8_gen1_5g_firmware
qca6696
sa8150p_firmware
sa6145p
sd865_5g
wsa8810
qca6420_firmware
sa8145p
sa8195p_firmware
qca6391
sa8145p_firmware
wcd9385_firmware
sdx55m_firmware
sdxr2_5g_firmware
wcd9341_firmware
wcn6851_firmware
wcn3980_firmware
wcn6856
aqt1000_firmware
sw5100
wcn7850
qca6595au_firmware
sd870_firmware
qca6436_firmware
qca6426
sd855_firmware
qam8295p_firmware
wcn3988_firmware
wcd9380_firmware
wcd9380
wcd9341
qca6574au
wcn6851
wcn7850_firmware
qam8295p
sw5100_firmware
wsa8830_firmware
sdxr2_5g
wcn6855_firmware
qca6430_firmware
sa6145p_firmware
qca6430
sw5100p_firmware
qca6574au_firmware
wsa8810_firmware
wcn3980
qca6436
sdx55m
wcn6850_firmware
wsa8830
qca6420
wcn6856_firmware
wcn3998_firmware
sa6155p
aqt1000
wcn3998
qca6696_firmware
qca6390
sd888_5g_firmware
qca6390_firmware
qca6391_firmware
sd855
wcn7851
wsa8835
sa8150p
sd888_5g
qcc5100_firmware

CWE

CWE-126

Buffer Over-read

CWE-125

Out-of-bounds Read

5.1 /10