CVE-2022-25727 - Vulnerability Details

Vendors	Products
Qualcomm	Ar8031 Ar8031 Firmware Csra6620 Csra6620 Firmware Csra6640 Csra6640 Firmware Mdm8207 Mdm8207 Firmware Mdm9205 Mdm9205 Firmware Mdm9206 Mdm9206 Firmware Mdm9207 Mdm9207 Firmware Mdm9607 Mdm9607 Firmware Qca4004 Qca4004 Firmware Qca4010 Qca4010 Firmware Qca4020 Qca4020 Firmware Qca4024 Qca4024 Firmware Qcs405 Qcs405 Firmware Wcd9306 Wcd9306 Firmware Wcd9330 Wcd9330 Firmware Wcd9335 Wcd9335 Firmware Wcn3980 Wcn3980 Firmware Wcn3998 Wcn3998 Firmware Wcn3999 Wcn3999 Firmware Wsa8810 Wsa8810 Firmware Wsa8815 Wsa8815 Firmware

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-25727", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "assignerShortName": "qualcomm", "dateUpdated": "2025-04-22T15:50:04.596Z", "dateReserved": "2022-02-22T00:00:00.000Z", "datePublished": "2022-11-15T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2022-11-15T00:00:00.000Z"}, "descriptions": [{"lang": "en", "value": "Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music"}], "affected": [{"vendor": "Qualcomm, Inc.", "product": "Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music", "versions": [{"version": "AR8031", "status": "affected"}, {"version": "CSRA6620", "status": "affected"}, {"version": "CSRA6640", "status": "affected"}, {"version": "MDM8207", "status": "affected"}, {"version": "MDM9205", "status": "affected"}, {"version": "MDM9206", "status": "affected"}, {"version": "MDM9207", "status": "affected"}, {"version": "MDM9607", "status": "affected"}, {"version": "QCA4004", "status": "affected"}, {"version": "QCA4010", "status": "affected"}, {"version": "QCA4020", "status": "affected"}, {"version": "QCA4024", "status": "affected"}, {"version": "QCS405", "status": "affected"}, {"version": "WCD9306", "status": "affected"}, {"version": "WCD9330", "status": "affected"}, {"version": "WCD9335", "status": "affected"}, {"version": "WCN3980", "status": "affected"}, {"version": "WCN3998", "status": "affected"}, {"version": "WCN3999", "status": "affected"}, {"version": "WSA8810", "status": "affected"}, {"version": "WSA8815", "status": "affected"}]}], "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin"}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "Use of Out-of-range Pointer Offset  in MODEM"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T04:49:42.821Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin", "tags": ["x_transferred"]}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-1284", "lang": "en", "description": "CWE-1284 Improper Validation of Specified Quantity in Input"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-04-22T14:52:37.177187Z", "id": "CVE-2022-25727", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-22T15:50:04.596Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

state : PUBLISHED (string)

cveId : CVE-2022-25727 (string)

assignerOrgId : 2cfc7d3e-20d3-47ac-8db7-1b7285aff15f (string)

assignerShortName : qualcomm (string)

dateUpdated : 2025-04-22T15:50:04.596Z (string)

dateReserved : 2022-02-22T00:00:00.000Z (string)

datePublished : 2022-11-15T00:00:00.000Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : 2cfc7d3e-20d3-47ac-8db7-1b7285aff15f (string)

shortName : qualcomm (string)

dateUpdated : 2022-11-15T00:00:00.000Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music (string)

}

]

affected : [ »

0 : { »

vendor : Qualcomm, Inc. (string)

product : Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music (string)

versions : [ »

0 : { »

version : AR8031 (string)

status : affected (string)

}

1 : { »

version : CSRA6620 (string)

status : affected (string)

}

2 : { »

version : CSRA6640 (string)

status : affected (string)

}

3 : { »

version : MDM8207 (string)

status : affected (string)

}

4 : { »

version : MDM9205 (string)

status : affected (string)

}

5 : { »

version : MDM9206 (string)

status : affected (string)

}

6 : { »

version : MDM9207 (string)

status : affected (string)

}

7 : { »

version : MDM9607 (string)

status : affected (string)

}

8 : { »

version : QCA4004 (string)

status : affected (string)

}

9 : { »

version : QCA4010 (string)

status : affected (string)

}

10 : { »

version : QCA4020 (string)

status : affected (string)

}

11 : { »

version : QCA4024 (string)

status : affected (string)

}

12 : { »

version : QCS405 (string)

status : affected (string)

}

13 : { »

version : WCD9306 (string)

status : affected (string)

}

14 : { »

version : WCD9330 (string)

status : affected (string)

}

15 : { »

version : WCD9335 (string)

status : affected (string)

}

16 : { »

version : WCN3980 (string)

status : affected (string)

}

17 : { »

version : WCN3998 (string)

status : affected (string)

}

18 : { »

version : WCN3999 (string)

status : affected (string)

}

19 : { »

version : WSA8810 (string)

status : affected (string)

}

20 : { »

version : WSA8815 (string)

status : affected (string)

}

]

}

]

references : [ »

0 : { »

url : https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin (string)

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

attackVector : NETWORK (string)

attackComplexity : LOW (string)

privilegesRequired : NONE (string)

userInteraction : NONE (string)

scope : UNCHANGED (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : text (string)

lang : en (string)

description : Use of Out-of-range Pointer Offset in MODEM (string)

}

]

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T04:49:42.821Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

1 : { »

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : CWE (string)

cweId : CWE-1284 (string)

lang : en (string)

description : CWE-1284 Improper Validation of Specified Quantity in Input (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2025-04-22T14:52:37.177187Z (string)

id : CVE-2022-25727 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : total (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2025-04-22T15:50:04.596Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T04:49:42.821Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-25727", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-04-22T14:52:37.177187Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1284", "description": "CWE-1284 Improper Validation of Specified Quantity in Input"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-22T15:06:20.667Z"}}], "cna": {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Qualcomm, Inc.", "product": "Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music", "versions": [{"status": "affected", "version": "AR8031"}, {"status": "affected", "version": "CSRA6620"}, {"status": "affected", "version": "CSRA6640"}, {"status": "affected", "version": "MDM8207"}, {"status": "affected", "version": "MDM9205"}, {"status": "affected", "version": "MDM9206"}, {"status": "affected", "version": "MDM9207"}, {"status": "affected", "version": "MDM9607"}, {"status": "affected", "version": "QCA4004"}, {"status": "affected", "version": "QCA4010"}, {"status": "affected", "version": "QCA4020"}, {"status": "affected", "version": "QCA4024"}, {"status": "affected", "version": "QCS405"}, {"status": "affected", "version": "WCD9306"}, {"status": "affected", "version": "WCD9330"}, {"status": "affected", "version": "WCD9335"}, {"status": "affected", "version": "WCN3980"}, {"status": "affected", "version": "WCN3998"}, {"status": "affected", "version": "WCN3999"}, {"status": "affected", "version": "WSA8810"}, {"status": "affected", "version": "WSA8815"}]}], "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin"}], "descriptions": [{"lang": "en", "value": "Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "Use of Out-of-range Pointer Offset  in MODEM"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2022-11-15T00:00:00.000Z"}}}, "cveMetadata": {"cveId": "CVE-2022-25727", "state": "PUBLISHED", "dateUpdated": "2025-04-22T15:50:04.596Z", "dateReserved": "2022-02-22T00:00:00.000Z", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "datePublished": "2022-11-15T00:00:00.000Z", "assignerShortName": "qualcomm"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin (string)

tags : [ »

0 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T04:49:42.821Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2022-25727 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : yes (string)

}

2 : { »

Technical Impact : total (string)

}

]

version : 2.0.3 (string)

timestamp : 2025-04-22T14:52:37.177187Z (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : CWE (string)

cweId : CWE-1284 (string)

description : CWE-1284 Improper Validation of Specified Quantity in Input (string)

}

]

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2025-04-22T15:06:20.667Z (string)

}

]

cna : { »

metrics : [ »

0 : { »

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 9.8 (number)

attackVector : NETWORK (string)

baseSeverity : CRITICAL (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

integrityImpact : HIGH (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

availabilityImpact : HIGH (string)

privilegesRequired : NONE (string)

confidentialityImpact : HIGH (string)

}

]

affected : [ »

0 : { »

vendor : Qualcomm, Inc. (string)

product : Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music (string)

versions : [ »

0 : { »

status : affected (string)

version : AR8031 (string)

}

1 : { »

status : affected (string)

version : CSRA6620 (string)

}

2 : { »

status : affected (string)

version : CSRA6640 (string)

}

3 : { »

status : affected (string)

version : MDM8207 (string)

}

4 : { »

status : affected (string)

version : MDM9205 (string)

}

5 : { »

status : affected (string)

version : MDM9206 (string)

}

6 : { »

status : affected (string)

version : MDM9207 (string)

}

7 : { »

status : affected (string)

version : MDM9607 (string)

}

8 : { »

status : affected (string)

version : QCA4004 (string)

}

9 : { »

status : affected (string)

version : QCA4010 (string)

}

10 : { »

status : affected (string)

version : QCA4020 (string)

}

11 : { »

status : affected (string)

version : QCA4024 (string)

}

12 : { »

status : affected (string)

version : QCS405 (string)

}

13 : { »

status : affected (string)

version : WCD9306 (string)

}

14 : { »

status : affected (string)

version : WCD9330 (string)

}

15 : { »

status : affected (string)

version : WCD9335 (string)

}

16 : { »

status : affected (string)

version : WCN3980 (string)

}

17 : { »

status : affected (string)

version : WCN3998 (string)

}

18 : { »

status : affected (string)

version : WCN3999 (string)

}

19 : { »

status : affected (string)

version : WSA8810 (string)

}

20 : { »

status : affected (string)

version : WSA8815 (string)

}

]

}

]

references : [ »

0 : { »

url : https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : text (string)

description : Use of Out-of-range Pointer Offset in MODEM (string)

}

]

}

]

providerMetadata : { »

orgId : 2cfc7d3e-20d3-47ac-8db7-1b7285aff15f (string)

shortName : qualcomm (string)

dateUpdated : 2022-11-15T00:00:00.000Z (string)

}

cveMetadata : { »

cveId : CVE-2022-25727 (string)

state : PUBLISHED (string)

dateUpdated : 2025-04-22T15:50:04.596Z (string)

dateReserved : 2022-02-22T00:00:00.000Z (string)

assignerOrgId : 2cfc7d3e-20d3-47ac-8db7-1b7285aff15f (string)

datePublished : 2022-11-15T00:00:00.000Z (string)

assignerShortName : qualcomm (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FCE1ADA9-8042-4CDE-A2B9-E96665CB41BE", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:*", "matchCriteriaId": "BB1DE046-DD70-4ACA-9DF4-59939DAC1889", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FA42F2EA-5D00-42B8-B020-C27675B72915", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:*", "matchCriteriaId": "BFCF207D-B8C8-4860-89C7-673C821F0237", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A8A35ECF-B12E-42DE-A74B-2C3BE03639A4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:*", "matchCriteriaId": "65B283D6-B2D2-49B6-98A8-08EDB54C1F15", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FE3BA789-3EC2-474D-BD5F-AD67BAE64413", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:*", "matchCriteriaId": "5954E2E1-3A62-4601-8D7F-21B7B2D02370", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*", "matchCriteriaId": "38C02461-5207-401D-B97A-3E25E23C9B2B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A960B86A-C397-4ACB-AEE6-55F316D32949", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*", "matchCriteriaId": "D79B8959-3D1E-4B48-9181-D75FE90AAF98", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm9207_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "F30E5379-0AA7-44C4-99E7-99B63A6B49EC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm9207:-:*:*:*:*:*:*:*", "matchCriteriaId": "3676B953-5BC5-4AFF-A600-3DBFF01B31AD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*", "matchCriteriaId": "E9765187-8653-4D66-B230-B2CE862AC5C0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "DFB39496-8699-4DAF-BD7B-AE69260B20CB", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:*", "matchCriteriaId": "E9CFBC24-5F15-40DE-806E-62C1EE808992", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4010_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "04F1CE4C-CAF8-4AB9-B44D-ADC2F2E7CF4C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4010:-:*:*:*:*:*:*:*", "matchCriteriaId": "30C10881-C26D-452D-A2D1-8617C2709D60", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4020_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "97E02FD6-F0A7-4B60-9ED8-26AAE497AEED", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4020:-:*:*:*:*:*:*:*", "matchCriteriaId": "3A732D0D-E999-4CE8-9448-FC6BA7FCC0A4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C359D1E7-6E0A-41B5-ABE5-B55598960700", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4024:-:*:*:*:*:*:*:*", "matchCriteriaId": "B4DC3CE7-0C4A-458B-A42E-8F80C062DD5F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "36F5A18B-8C9E-4A38-B994-E3E2696BB83D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*", "matchCriteriaId": "B703667D-DE09-40AF-BA44-E0E56252A790", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC012AD0-BCEE-4B1E-9B15-5D77D78CEA01", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:*", "matchCriteriaId": "F51C69B9-F0AB-4BF5-A8C2-64FEB7075593", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "43A90019-4E96-40B5-9E4D-CCBDD51ACA34", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:*", "matchCriteriaId": "BC3D23FE-B3D5-4EC3-8268-98F12181966D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "28717583-463A-468A-8073-ECF0F90585F6", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*", "matchCriteriaId": "4D1A7188-7D5D-4D46-AEAB-08BA84FFF539", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "9C6E9038-9B18-4958-BE1E-215901C9B4B2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*", "matchCriteriaId": "B36D3274-F8D0-49C5-A6D5-95F5DC6D1950", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "34AB9074-97A3-43F0-B829-CDB4E3066AC4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*", "matchCriteriaId": "362252ED-1DB3-4CF6-86DD-14919826D75E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "DF49BC31-A332-4B9A-A826-F63116D7029F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcn3999:-:*:*:*:*:*:*:*", "matchCriteriaId": "6DD3C245-D5F8-4145-8CDF-F635D2C8F088", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "15307882-7039-43E9-9BA3-035045988B99", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*", "matchCriteriaId": "AA85B322-E593-4499-829A-CC6D70BAE884", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "E839A0B9-64C3-4C7A-82B7-D2AAF65928F8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*", "matchCriteriaId": "7E870D82-DE3B-4199-A730-C8FB545BAA98", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music"}, {"lang": "es", "value": "Corrupci\u00f3n de la memoria en el m\u00f3dem debido a una verificaci\u00f3n de longitud incorrecta al copiar en la memoria en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice &amp; Music "}], "id": "CVE-2022-25727", "lastModified": "2025-04-22T16:15:26.880", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "product-security@qualcomm.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-11-15T10:15:14.997", "references": [{"source": "product-security@qualcomm.com", "tags": ["Vendor Advisory"], "url": "https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin"}], "sourceIdentifier": "product-security@qualcomm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1284"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-1284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FCE1ADA9-8042-4CDE-A2B9-E96665CB41BE (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:ar8031:-:*:*:*:*:*:*:* (string)

matchCriteriaId : BB1DE046-DD70-4ACA-9DF4-59939DAC1889 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FA42F2EA-5D00-42B8-B020-C27675B72915 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:csra6620:-:*:*:*:*:*:*:* (string)

matchCriteriaId : BFCF207D-B8C8-4860-89C7-673C821F0237 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A8A35ECF-B12E-42DE-A74B-2C3BE03639A4 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:csra6640:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 65B283D6-B2D2-49B6-98A8-08EDB54C1F15 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

3 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:mdm8207_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FE3BA789-3EC2-474D-BD5F-AD67BAE64413 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:mdm8207:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 5954E2E1-3A62-4601-8D7F-21B7B2D02370 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

4 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 38C02461-5207-401D-B97A-3E25E23C9B2B (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

5 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A960B86A-C397-4ACB-AEE6-55F316D32949 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D79B8959-3D1E-4B48-9181-D75FE90AAF98 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

6 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:mdm9207_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F30E5379-0AA7-44C4-99E7-99B63A6B49EC (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:mdm9207:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3676B953-5BC5-4AFF-A600-3DBFF01B31AD (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

7 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : A35FECFB-60AE-42A8-BCBB-FEA7D5826D49 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E9765187-8653-4D66-B230-B2CE862AC5C0 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

8 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DFB39496-8699-4DAF-BD7B-AE69260B20CB (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E9CFBC24-5F15-40DE-806E-62C1EE808992 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

9 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:qca4010_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 04F1CE4C-CAF8-4AB9-B44D-ADC2F2E7CF4C (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:qca4010:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 30C10881-C26D-452D-A2D1-8617C2709D60 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

10 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:qca4020_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 97E02FD6-F0A7-4B60-9ED8-26AAE497AEED (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:qca4020:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3A732D0D-E999-4CE8-9448-FC6BA7FCC0A4 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

11 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C359D1E7-6E0A-41B5-ABE5-B55598960700 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:qca4024:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B4DC3CE7-0C4A-458B-A42E-8F80C062DD5F (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

12 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 36F5A18B-8C9E-4A38-B994-E3E2696BB83D (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B703667D-DE09-40AF-BA44-E0E56252A790 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

13 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FC012AD0-BCEE-4B1E-9B15-5D77D78CEA01 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F51C69B9-F0AB-4BF5-A8C2-64FEB7075593 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

14 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wcd9330_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 43A90019-4E96-40B5-9E4D-CCBDD51ACA34 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wcd9330:-:*:*:*:*:*:*:* (string)

matchCriteriaId : BC3D23FE-B3D5-4EC3-8268-98F12181966D (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

15 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 28717583-463A-468A-8073-ECF0F90585F6 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 4D1A7188-7D5D-4D46-AEAB-08BA84FFF539 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

16 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 9C6E9038-9B18-4958-BE1E-215901C9B4B2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B36D3274-F8D0-49C5-A6D5-95F5DC6D1950 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

17 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 34AB9074-97A3-43F0-B829-CDB4E3066AC4 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 362252ED-1DB3-4CF6-86DD-14919826D75E (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

18 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : DF49BC31-A332-4B9A-A826-F63116D7029F (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wcn3999:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 6DD3C245-D5F8-4145-8CDF-F635D2C8F088 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

19 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 15307882-7039-43E9-9BA3-035045988B99 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:* (string)

matchCriteriaId : AA85B322-E593-4499-829A-CC6D70BAE884 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

20 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E839A0B9-64C3-4C7A-82B7-D2AAF65928F8 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7E870D82-DE3B-4199-A730-C8FB545BAA98 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music (string)

}

1 : { »

lang : es (string)

value : Corrupción de la memoria en el módem debido a una verificación de longitud incorrecta al copiar en la memoria en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music (string)

}

]

id : CVE-2022-25727 (string)

lastModified : 2025-04-22T16:15:26.880 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 5.9 (number)

source : product-security@qualcomm.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 9.8 (number)

baseSeverity : CRITICAL (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2022-11-15T10:15:14.997 (string)

references : [ »

0 : { »

source : product-security@qualcomm.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin (string)

}

]

sourceIdentifier : product-security@qualcomm.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-1284 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-1284 (string)

}

]

source : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object