CVE-2022-33309

nvd nist

Published: Mar 10, 2023Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.

Affected (65)

Products: Qualcomm: Csr8811 Firmware, Ipq5010 Firmware, Ipq5018 Firmware, Ipq5028 Firmware, Ipq6000 Firmware, Ipq6010 Firmware, Ipq6018 Firmware, Ipq6028 Firmware, Ipq8070a Firmware, Ipq8071a Firmware, Ipq8072a Firmware, Ipq8074a Firmware, Ipq8076 Firmware, Ipq8076a Firmware, Ipq8078 Firmware, Ipq8078a Firmware, Ipq8173 Firmware, Ipq8174 Firmware, Ipq9008 Firmware, Ipq9574 Firmware, Qca4024 Firmware, Qca8075 Firmware, Qca8081 Firmware, Qca8082 Firmware, Qca8084 Firmware, Qca8085 Firmware, Qca8386 Firmware, Qca9888 Firmware, Qca9889 Firmware, Qcn5022 Firmware, Qcn5024 Firmware, Qcn5052 Firmware, Qcn5122 Firmware, Qcn5124 Firmware, Qcn5152 Firmware, Qcn5154 Firmware, Qcn5164 Firmware, Qcn6023 Firmware, Qcn6024 Firmware, Qcn6122 Firmware, Qcn6132 Firmware, Qcn9000 Firmware, Qcn9022 Firmware, Qcn9024 Firmware, Qcn9070 Firmware, Qcn9072 Firmware, Qcn9074 Firmware, Qcn9100 Firmware, Qcn9274 Firmware, Sd 8 Gen1 5g Firmware, Sdx65 Firmware, Sdx65m Firmware, Ssg2115p Firmware, Ssg2125p Firmware, Sxr1230p Firmware, Sxr2230p Firmware, Wcd9380 Firmware, Wcd9385 Firmware, Wcn6855 Firmware, Wcn6856 Firmware, Wcn7850 Firmware, Wcn7851 Firmware, Wsa8830 Firmware, Wsa8832 Firmware, Wsa8835 Firmware

65 products

Sd 8 Gen1 5g Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Csr8811 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Csr8811	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq5010 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq5010	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq5018 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq5018	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq5028 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq5028	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq6000 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq6000	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq6010 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq6010	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq6018 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq6018	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq6028 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq6028	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8070a Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8070a	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8071a Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8071a	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8072a Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8072a	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8074a Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8074a	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8076 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8076	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8076a Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8076a	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8078 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8078	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8078a Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8078a	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8173 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8173	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq8174 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq8174	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq9008 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq9008	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ipq9574 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ipq9574	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca4024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca4024	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8075 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8075	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8081 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8081	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8082 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8082	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8084 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8084	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8085 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8085	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca8386 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca8386	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca9888 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca9888	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca9889 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca9889	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5022 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5022	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5024	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5052 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5052	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5122 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5122	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5124 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5124	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5152 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5152	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5154 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5154	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn5164 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn5164	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn6023 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn6023	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn6024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn6024	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn6122 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn6122	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn6132 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn6132	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9000 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9000	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9022 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9022	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9024 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9024	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9070 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9070	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9072 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9072	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9074 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9074	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9100 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9100	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcn9274 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcn9274	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd 8 Gen1 5g Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sm8475	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sdx65 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sdx65	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sdx65m Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sdx65m	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ssg2115p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ssg2115p	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ssg2125p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ssg2125p	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sxr1230p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sxr1230p	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sxr2230p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sxr2230p	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9380 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9380	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9385 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9385	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn6855 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn6855	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn6856 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn6856	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn7850 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn7850	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcn7851 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcn7851	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8830 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8830	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8832 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8832	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8835 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8835	All versions

Related CWEs

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

CWE-126

Buffer Over-read

The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.

References (2)

https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin

Source: product-security@qualcomm.com

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.