Memory Corruption in Snapdragon Products from Qualcomm
CVE-2022-25696
Key Information:
- Vendor
- Qualcomm
- Vendor
- CVE Published:
- 16 September 2022
Summary
A memory corruption vulnerability exists due to a time-of-check time-of-use race condition during the map or unmap operations in various Qualcomm Snapdragon platforms. This issue could potentially allow an attacker to manipulate system memory, leading to unexpected behavior or system instability across several Snapdragon product lines, including Automotive, Computing, Connectivity, and Mobile applications. Users and organizations using affected devices should remain vigilant and apply any available patches to reduce the risk of exploitation.
Affected Version(s)
Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables APQ8053, AQT1000, MSM8953, QCA6390, QCA6391, QCA6420, QCA6430, QCA6574, QCA6574A, QCA6574AU, QCA6595AU, QCA6696, QCM2290, QCM4290, QCM6490, QCS2290, QCS4290, QCS6490, Qualcomm215, SA6155P, SA8155P, SA8195P, SD 675, SD 8 Gen1 5G, SD439, SD460, SD480, SD662, SD665, SD670, SD675, SD678, SD680, SD690 5G, SD695, SD710, SD720G, SD730, SD750G, SD765, SD765G, SD768G, SD778G, SD780G, SD855, SD865 5G, SD870, SD888, SD888 5G, SDX50M, SDX55, SDX55M, SM4125, SM6250, SM7250P, SM7315, SM7325P, SM7450, SM8475, SM8475P, SW5100, SW5100P, WCD9326, WCD9335, WCD9341, WCD9370, WCD9375, WCD9380, WCD9385, WCN3615, WCN3660B, WCN3680B, WCN3910, WCN3950, WCN3980, WCN3988, WCN3990, WCN3991, WCN3998, WCN6740, WCN6750, WCN6850, WCN6851, WCN6855, WCN6856, WCN7850, WCN7851, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved