CVE-2022-40505

Information disclosure due to buffer over-read in Modem while parsing DNS hostname.

CVSS v3 8.2 HIGH

8.2^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin	Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:9205_lte_modem:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:9206_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:9206_lte_modem:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:9207_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:9207_lte_modem:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:qca4010_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4010:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qts110:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_1100_wearable_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_1100_wearable_platform:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_1200_wearable_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_1200_wearable_platform:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_wear_1300_platform:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_x5_lte_modem_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_x5_lte_modem:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:21

Type	Values Removed	Values Added
References	~~() https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin - Vendor Advisory~~	() https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~7.5~~	v2 : unknown v3 : 8.2

09 May 2023, 16:34

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5
CPE		cpe:2.3:h:qualcomm:wcd9330:-:::::::* cpe:2.3:h:qualcomm:qts110:-:::::::* cpe:2.3:h:qualcomm:snapdragon_1100_wearable_platform:-:::::::* cpe:2.3:o:qualcomm:qca4004_firmware:-:::::::* cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:::::::* cpe:2.3:h:qualcomm:9206_lte_modem:-:::::::* cpe:2.3:h:qualcomm:9205_lte_modem:-:::::::* cpe:2.3:h:qualcomm:9207_lte_modem:-:::::::* cpe:2.3:o:qualcomm:qts110_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_1200_wearable_platform_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_1100_wearable_platform_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_x5_lte_modem_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9306_firmware:-:::::::* cpe:2.3:h:qualcomm:qca4010:-:::::::* cpe:2.3:h:qualcomm:wcd9306:-:::::::* cpe:2.3:o:qualcomm:mdm8207_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_x5_lte_modem:-:::::::* cpe:2.3:h:qualcomm:snapdragon_wear_1300_platform:-:::::::* cpe:2.3:o:qualcomm:wcd9330_firmware:-:::::::* cpe:2.3:h:qualcomm:mdm8207:-:::::::* cpe:2.3:h:qualcomm:snapdragon_1200_wearable_platform:-:::::::* cpe:2.3:o:qualcomm:9206_lte_modem_firmware:-:::::::* cpe:2.3:o:qualcomm:qca4010_firmware:-:::::::* cpe:2.3:o:qualcomm:9207_lte_modem_firmware:-:::::::* cpe:2.3:h:qualcomm:qca4004:-:::::::*
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin - Vendor Advisory
CWE		CWE-125
First Time		Qualcomm qca4004 Qualcomm snapdragon 1200 Wearable Platform Firmware Qualcomm snapdragon X5 Lte Modem Firmware Qualcomm 9205 Lte Modem Qualcomm snapdragon 1100 Wearable Platform Firmware Qualcomm 9207 Lte Modem Qualcomm wcd9330 Firmware Qualcomm snapdragon X5 Lte Modem Qualcomm mdm8207 Qualcomm snapdragon Wear 1300 Platform Firmware Qualcomm qca4004 Firmware Qualcomm qts110 Firmware Qualcomm snapdragon Wear 1300 Platform Qualcomm 9207 Lte Modem Firmware Qualcomm snapdragon 1200 Wearable Platform Qualcomm snapdragon 1100 Wearable Platform Qualcomm 9205 Lte Modem Firmware Qualcomm qts110 Qualcomm 9206 Lte Modem Qualcomm wcd9330 Qualcomm wcd9306 Qualcomm wcd9306 Firmware Qualcomm mdm8207 Firmware Qualcomm qca4010 Firmware Qualcomm 9206 Lte Modem Firmware Qualcomm qca4010 Qualcomm

02 May 2023, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-05-02 06:15

Updated : 2024-11-21 07:21

NVD link : CVE-2022-40505

Mitre link : CVE-2022-40505

CVE.ORG link : CVE-2022-40505

JSON object : View

Products Affected

qualcomm

qts110_firmware
qts110
9205_lte_modem
snapdragon_1200_wearable_platform
wcd9330
qca4010_firmware
mdm8207
qca4004
snapdragon_1100_wearable_platform_firmware
9205_lte_modem_firmware
wcd9306_firmware
snapdragon_wear_1300_platform_firmware
snapdragon_x5_lte_modem_firmware
wcd9330_firmware
9207_lte_modem_firmware
9207_lte_modem
snapdragon_x5_lte_modem
snapdragon_wear_1300_platform
qca4004_firmware
qca4010
snapdragon_1200_wearable_platform_firmware
mdm8207_firmware
9206_lte_modem_firmware
9206_lte_modem
snapdragon_1100_wearable_platform
wcd9306

CWE

CWE-126

Buffer Over-read

CWE-125

Out-of-bounds Read

{"id": "CVE-2022-40505", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "product-security@qualcomm.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 4.2, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2023-05-02T06:15:10.173", "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin", "tags": ["Vendor Advisory"], "source": "product-security@qualcomm.com"}, {"url": "https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "product-security@qualcomm.com", "description": [{"lang": "en", "value": "CWE-126"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "Information disclosure due to buffer over-read in Modem while parsing DNS hostname."}], "lastModified": "2024-11-21T07:21:29.357", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "920F873B-F52D-4754-9726-BECCAD0CAC45"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:9205_lte_modem:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5EB573E2-C2B9-4B12-9EEF-9152FBFE3927"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:9206_lte_modem_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2C2632A-02F2-4C59-AF96-E2C77940360F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:9206_lte_modem:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D10A104D-951A-4FA9-938A-1324640A998D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:9207_lte_modem_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CB54B6E-0AAE-428D-A264-4BF58A852645"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:9207_lte_modem:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E12F5DF9-4D12-4321-A92C-86862A91E816"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE3BA789-3EC2-474D-BD5F-AD67BAE64413"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5954E2E1-3A62-4601-8D7F-21B7B2D02370"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFB39496-8699-4DAF-BD7B-AE69260B20CB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E9CFBC24-5F15-40DE-806E-62C1EE808992"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4010_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04F1CE4C-CAF8-4AB9-B44D-ADC2F2E7CF4C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4010:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "30C10881-C26D-452D-A2D1-8617C2709D60"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2D4B026-2118-448D-A48D-36864DE715B8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qts110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5ED10480-E005-452C-A03C-D669CE94ABE4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:snapdragon_1100_wearable_platform_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7760D19-1CE2-4EB1-A81A-EA2DE1E142D2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:snapdragon_1100_wearable_platform:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E19FA5E-24D1-4E7B-B8A3-BFAA09E4A40C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:snapdragon_1200_wearable_platform_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E89870DD-3B20-4B06-9A51-755E204ECCDB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:snapdragon_1200_wearable_platform:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "955F15D0-2F36-45E7-9828-96593DA7DA80"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A402233-B76F-41D5-B7C2-325C8FC4D560"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:snapdragon_wear_1300_platform:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C8643194-C881-408A-AAA1-78572075120A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:snapdragon_x5_lte_modem_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "312A5688-2508-4609-835F-F0957C511AE8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:snapdragon_x5_lte_modem:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ADD6DFCE-2D24-4A68-8B46-FB47ABEC6694"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC012AD0-BCEE-4B1E-9B15-5D77D78CEA01"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F51C69B9-F0AB-4BF5-A8C2-64FEB7075593"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43A90019-4E96-40B5-9E4D-CCBDD51ACA34"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BC3D23FE-B3D5-4EC3-8268-98F12181966D"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "product-security@qualcomm.com"}

8.2 /10