Denial of Service in Snapdragon Products by Qualcomm
CVE-2022-25675

5.5MEDIUM

Key Information:

Vendor: Qualcomm
Status: Snapdragon Compute, Snapdragon Industrial Iot, Snapdragon Mobile
Vendor: CVE Published:; 13 December 2022

What is CVE-2022-25675?

This vulnerability pertains to a denial of service that arises from a reachable assertion in the modem. This can occur when processing filter rules received from an application client, affecting various Snapdragon platforms, including Snapdragon Compute, Industrial IoT, and Mobile devices. The flaw could lead to system instability, interrupting normal operations and impacting user experience.

Affected Version(s)

Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile AQT1000

Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile QCA6310

Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile QCA6320

References

https://www.qualcomm.com/company/product-security/bulleti...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 13, 2022
Vulnerability Reserved
Feb 22, 2022