CVE-2022-25681 (GCVE-0-2022-25681)
Vulnerability from cvelistv5
Published
2022-12-13 00:00
Modified
2025-04-22 15:57
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- Improper Access Control in KERNEL
Summary
Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile |
Version: AQT1000 Version: AR8035 Version: QAM8295P Version: QCA6174A Version: QCA6310 Version: QCA6335 Version: QCA6390 Version: QCA6391 Version: QCA6420 Version: QCA6421 Version: QCA6426 Version: QCA6430 Version: QCA6431 Version: QCA6436 Version: QCA6564A Version: QCA6564AU Version: QCA6574 Version: QCA6574A Version: QCA6574AU Version: QCA6595 Version: QCA6595AU Version: QCA6696 Version: QCA8081 Version: QCA8337 Version: QCA9377 Version: QCM6490 Version: QCN9011 Version: QCN9012 Version: QCS603 Version: QCS605 Version: QCS6490 Version: QRB5165 Version: QRB5165M Version: QRB5165N Version: QSM8350 Version: SA6145P Version: SA6155 Version: SA6155P Version: SA8150P Version: SA8155 Version: SA8155P Version: SA8295P Version: SA8540P Version: SA9000P Version: SD 675 Version: SD 8 Gen1 5G Version: SD 8CX Version: SD 8cx Gen2 Version: SD 8cx Gen3 Version: SD670 Version: SD675 Version: SD678 Version: SD765 Version: SD765G Version: SD768G Version: SD778G Version: SD780G Version: SD845 Version: SD850 Version: SD855 Version: SD865 5G Version: SD870 Version: SD888 Version: SD888 5G Version: SDX24 Version: SDX50M Version: SDX55 Version: SDX55M Version: SDX57M Version: SDX65 Version: SDXR2 5G Version: SM7250P Version: SM7315 Version: SM7325P Version: WCD9326 Version: WCD9340 Version: WCD9341 Version: WCD9370 Version: WCD9375 Version: WCD9380 Version: WCD9385 Version: WCN3950 Version: WCN3980 Version: WCN3990 Version: WCN3991 Version: WCN3998 Version: WCN6740 Version: WCN6750 Version: WCN6850 Version: WCN6851 Version: WCN6855 Version: WCN6856 Version: WCN7850 Version: WCN7851 Version: WSA8810 Version: WSA8815 Version: WSA8830 Version: WSA8835 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:42:50.776Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-25681",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-22T15:56:30.965428Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-119",
"description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-22T15:57:14.752Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "AQT1000"
},
{
"status": "affected",
"version": "AR8035"
},
{
"status": "affected",
"version": "QAM8295P"
},
{
"status": "affected",
"version": "QCA6174A"
},
{
"status": "affected",
"version": "QCA6310"
},
{
"status": "affected",
"version": "QCA6335"
},
{
"status": "affected",
"version": "QCA6390"
},
{
"status": "affected",
"version": "QCA6391"
},
{
"status": "affected",
"version": "QCA6420"
},
{
"status": "affected",
"version": "QCA6421"
},
{
"status": "affected",
"version": "QCA6426"
},
{
"status": "affected",
"version": "QCA6430"
},
{
"status": "affected",
"version": "QCA6431"
},
{
"status": "affected",
"version": "QCA6436"
},
{
"status": "affected",
"version": "QCA6564A"
},
{
"status": "affected",
"version": "QCA6564AU"
},
{
"status": "affected",
"version": "QCA6574"
},
{
"status": "affected",
"version": "QCA6574A"
},
{
"status": "affected",
"version": "QCA6574AU"
},
{
"status": "affected",
"version": "QCA6595"
},
{
"status": "affected",
"version": "QCA6595AU"
},
{
"status": "affected",
"version": "QCA6696"
},
{
"status": "affected",
"version": "QCA8081"
},
{
"status": "affected",
"version": "QCA8337"
},
{
"status": "affected",
"version": "QCA9377"
},
{
"status": "affected",
"version": "QCM6490"
},
{
"status": "affected",
"version": "QCN9011"
},
{
"status": "affected",
"version": "QCN9012"
},
{
"status": "affected",
"version": "QCS603"
},
{
"status": "affected",
"version": "QCS605"
},
{
"status": "affected",
"version": "QCS6490"
},
{
"status": "affected",
"version": "QRB5165"
},
{
"status": "affected",
"version": "QRB5165M"
},
{
"status": "affected",
"version": "QRB5165N"
},
{
"status": "affected",
"version": "QSM8350"
},
{
"status": "affected",
"version": "SA6145P"
},
{
"status": "affected",
"version": "SA6155"
},
{
"status": "affected",
"version": "SA6155P"
},
{
"status": "affected",
"version": "SA8150P"
},
{
"status": "affected",
"version": "SA8155"
},
{
"status": "affected",
"version": "SA8155P"
},
{
"status": "affected",
"version": "SA8295P"
},
{
"status": "affected",
"version": "SA8540P"
},
{
"status": "affected",
"version": "SA9000P"
},
{
"status": "affected",
"version": "SD 675"
},
{
"status": "affected",
"version": "SD 8 Gen1 5G"
},
{
"status": "affected",
"version": "SD 8CX"
},
{
"status": "affected",
"version": "SD 8cx Gen2"
},
{
"status": "affected",
"version": "SD 8cx Gen3"
},
{
"status": "affected",
"version": "SD670"
},
{
"status": "affected",
"version": "SD675"
},
{
"status": "affected",
"version": "SD678"
},
{
"status": "affected",
"version": "SD765"
},
{
"status": "affected",
"version": "SD765G"
},
{
"status": "affected",
"version": "SD768G"
},
{
"status": "affected",
"version": "SD778G"
},
{
"status": "affected",
"version": "SD780G"
},
{
"status": "affected",
"version": "SD845"
},
{
"status": "affected",
"version": "SD850"
},
{
"status": "affected",
"version": "SD855"
},
{
"status": "affected",
"version": "SD865 5G"
},
{
"status": "affected",
"version": "SD870"
},
{
"status": "affected",
"version": "SD888"
},
{
"status": "affected",
"version": "SD888 5G"
},
{
"status": "affected",
"version": "SDX24"
},
{
"status": "affected",
"version": "SDX50M"
},
{
"status": "affected",
"version": "SDX55"
},
{
"status": "affected",
"version": "SDX55M"
},
{
"status": "affected",
"version": "SDX57M"
},
{
"status": "affected",
"version": "SDX65"
},
{
"status": "affected",
"version": "SDXR2 5G"
},
{
"status": "affected",
"version": "SM7250P"
},
{
"status": "affected",
"version": "SM7315"
},
{
"status": "affected",
"version": "SM7325P"
},
{
"status": "affected",
"version": "WCD9326"
},
{
"status": "affected",
"version": "WCD9340"
},
{
"status": "affected",
"version": "WCD9341"
},
{
"status": "affected",
"version": "WCD9370"
},
{
"status": "affected",
"version": "WCD9375"
},
{
"status": "affected",
"version": "WCD9380"
},
{
"status": "affected",
"version": "WCD9385"
},
{
"status": "affected",
"version": "WCN3950"
},
{
"status": "affected",
"version": "WCN3980"
},
{
"status": "affected",
"version": "WCN3990"
},
{
"status": "affected",
"version": "WCN3991"
},
{
"status": "affected",
"version": "WCN3998"
},
{
"status": "affected",
"version": "WCN6740"
},
{
"status": "affected",
"version": "WCN6750"
},
{
"status": "affected",
"version": "WCN6850"
},
{
"status": "affected",
"version": "WCN6851"
},
{
"status": "affected",
"version": "WCN6855"
},
{
"status": "affected",
"version": "WCN6856"
},
{
"status": "affected",
"version": "WCN7850"
},
{
"status": "affected",
"version": "WCN7851"
},
{
"status": "affected",
"version": "WSA8810"
},
{
"status": "affected",
"version": "WSA8815"
},
{
"status": "affected",
"version": "WSA8830"
},
{
"status": "affected",
"version": "WSA8835"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Improper Access Control in KERNEL",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-12-13T00:00:00.000Z",
"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
"shortName": "qualcomm"
},
"references": [
{
"url": "https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
"assignerShortName": "qualcomm",
"cveId": "CVE-2022-25681",
"datePublished": "2022-12-13T00:00:00.000Z",
"dateReserved": "2022-02-22T00:00:00.000Z",
"dateUpdated": "2025-04-22T15:57:14.752Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"vulnrichment": {
"containers": "{\"cna\": {\"providerMetadata\": {\"orgId\": \"2cfc7d3e-20d3-47ac-8db7-1b7285aff15f\", \"shortName\": \"qualcomm\", \"dateUpdated\": \"2022-12-13T00:00:00.000Z\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile\"}], \"affected\": [{\"vendor\": \"Qualcomm, Inc.\", \"product\": \"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile\", \"versions\": [{\"version\": \"AQT1000\", \"status\": \"affected\"}, {\"version\": \"AR8035\", \"status\": \"affected\"}, {\"version\": \"QAM8295P\", \"status\": \"affected\"}, {\"version\": \"QCA6174A\", \"status\": \"affected\"}, {\"version\": \"QCA6310\", \"status\": \"affected\"}, {\"version\": \"QCA6335\", \"status\": \"affected\"}, {\"version\": \"QCA6390\", \"status\": \"affected\"}, {\"version\": \"QCA6391\", \"status\": \"affected\"}, {\"version\": \"QCA6420\", \"status\": \"affected\"}, {\"version\": \"QCA6421\", \"status\": \"affected\"}, {\"version\": \"QCA6426\", \"status\": \"affected\"}, {\"version\": \"QCA6430\", \"status\": \"affected\"}, {\"version\": \"QCA6431\", \"status\": \"affected\"}, {\"version\": \"QCA6436\", \"status\": \"affected\"}, {\"version\": \"QCA6564A\", \"status\": \"affected\"}, {\"version\": \"QCA6564AU\", \"status\": \"affected\"}, {\"version\": \"QCA6574\", \"status\": \"affected\"}, {\"version\": \"QCA6574A\", \"status\": \"affected\"}, {\"version\": \"QCA6574AU\", \"status\": \"affected\"}, {\"version\": \"QCA6595\", \"status\": \"affected\"}, {\"version\": \"QCA6595AU\", \"status\": \"affected\"}, {\"version\": \"QCA6696\", \"status\": \"affected\"}, {\"version\": \"QCA8081\", \"status\": \"affected\"}, {\"version\": \"QCA8337\", \"status\": \"affected\"}, {\"version\": \"QCA9377\", \"status\": \"affected\"}, {\"version\": \"QCM6490\", \"status\": \"affected\"}, {\"version\": \"QCN9011\", \"status\": \"affected\"}, {\"version\": \"QCN9012\", \"status\": \"affected\"}, {\"version\": \"QCS603\", \"status\": \"affected\"}, {\"version\": \"QCS605\", \"status\": \"affected\"}, {\"version\": \"QCS6490\", \"status\": \"affected\"}, {\"version\": \"QRB5165\", \"status\": \"affected\"}, {\"version\": \"QRB5165M\", \"status\": \"affected\"}, {\"version\": \"QRB5165N\", \"status\": \"affected\"}, {\"version\": \"QSM8350\", \"status\": \"affected\"}, {\"version\": \"SA6145P\", \"status\": \"affected\"}, {\"version\": \"SA6155\", \"status\": \"affected\"}, {\"version\": \"SA6155P\", \"status\": \"affected\"}, {\"version\": \"SA8150P\", \"status\": \"affected\"}, {\"version\": \"SA8155\", \"status\": \"affected\"}, {\"version\": \"SA8155P\", \"status\": \"affected\"}, {\"version\": \"SA8295P\", \"status\": \"affected\"}, {\"version\": \"SA8540P\", \"status\": \"affected\"}, {\"version\": \"SA9000P\", \"status\": \"affected\"}, {\"version\": \"SD 675\", \"status\": \"affected\"}, {\"version\": \"SD 8 Gen1 5G\", \"status\": \"affected\"}, {\"version\": \"SD 8CX\", \"status\": \"affected\"}, {\"version\": \"SD 8cx Gen2\", \"status\": \"affected\"}, {\"version\": \"SD 8cx Gen3\", \"status\": \"affected\"}, {\"version\": \"SD670\", \"status\": \"affected\"}, {\"version\": \"SD675\", \"status\": \"affected\"}, {\"version\": \"SD678\", \"status\": \"affected\"}, {\"version\": \"SD765\", \"status\": \"affected\"}, {\"version\": \"SD765G\", \"status\": \"affected\"}, {\"version\": \"SD768G\", \"status\": \"affected\"}, {\"version\": \"SD778G\", \"status\": \"affected\"}, {\"version\": \"SD780G\", \"status\": \"affected\"}, {\"version\": \"SD845\", \"status\": \"affected\"}, {\"version\": \"SD850\", \"status\": \"affected\"}, {\"version\": \"SD855\", \"status\": \"affected\"}, {\"version\": \"SD865 5G\", \"status\": \"affected\"}, {\"version\": \"SD870\", \"status\": \"affected\"}, {\"version\": \"SD888\", \"status\": \"affected\"}, {\"version\": \"SD888 5G\", \"status\": \"affected\"}, {\"version\": \"SDX24\", \"status\": \"affected\"}, {\"version\": \"SDX50M\", \"status\": \"affected\"}, {\"version\": \"SDX55\", \"status\": \"affected\"}, {\"version\": \"SDX55M\", \"status\": \"affected\"}, {\"version\": \"SDX57M\", \"status\": \"affected\"}, {\"version\": \"SDX65\", \"status\": \"affected\"}, {\"version\": \"SDXR2 5G\", \"status\": \"affected\"}, {\"version\": \"SM7250P\", \"status\": \"affected\"}, {\"version\": \"SM7315\", \"status\": \"affected\"}, {\"version\": \"SM7325P\", \"status\": \"affected\"}, {\"version\": \"WCD9326\", \"status\": \"affected\"}, {\"version\": \"WCD9340\", \"status\": \"affected\"}, {\"version\": \"WCD9341\", \"status\": \"affected\"}, {\"version\": \"WCD9370\", \"status\": \"affected\"}, {\"version\": \"WCD9375\", \"status\": \"affected\"}, {\"version\": \"WCD9380\", \"status\": \"affected\"}, {\"version\": \"WCD9385\", \"status\": \"affected\"}, {\"version\": \"WCN3950\", \"status\": \"affected\"}, {\"version\": \"WCN3980\", \"status\": \"affected\"}, {\"version\": \"WCN3990\", \"status\": \"affected\"}, {\"version\": \"WCN3991\", \"status\": \"affected\"}, {\"version\": \"WCN3998\", \"status\": \"affected\"}, {\"version\": \"WCN6740\", \"status\": \"affected\"}, {\"version\": \"WCN6750\", \"status\": \"affected\"}, {\"version\": \"WCN6850\", \"status\": \"affected\"}, {\"version\": \"WCN6851\", \"status\": \"affected\"}, {\"version\": \"WCN6855\", \"status\": \"affected\"}, {\"version\": \"WCN6856\", \"status\": \"affected\"}, {\"version\": \"WCN7850\", \"status\": \"affected\"}, {\"version\": \"WCN7851\", \"status\": \"affected\"}, {\"version\": \"WSA8810\", \"status\": \"affected\"}, {\"version\": \"WSA8815\", \"status\": \"affected\"}, {\"version\": \"WSA8830\", \"status\": \"affected\"}, {\"version\": \"WSA8835\", \"status\": \"affected\"}]}], \"references\": [{\"url\": \"https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin\"}], \"metrics\": [{\"cvssV3_1\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"baseScore\": 8.4, \"baseSeverity\": \"HIGH\"}}], \"problemTypes\": [{\"descriptions\": [{\"type\": \"text\", \"lang\": \"en\", \"description\": \"Improper Access Control in KERNEL\"}]}]}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T04:42:50.776Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin\", \"tags\": [\"x_transferred\"]}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-25681\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-22T15:56:30.965428Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-119\", \"description\": \"CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-22T15:57:09.917Z\"}}]}",
"cveMetadata": "{\"state\": \"PUBLISHED\", \"cveId\": \"CVE-2022-25681\", \"assignerOrgId\": \"2cfc7d3e-20d3-47ac-8db7-1b7285aff15f\", \"assignerShortName\": \"qualcomm\", \"dateUpdated\": \"2025-04-22T15:57:14.752Z\", \"dateReserved\": \"2022-02-22T00:00:00.000Z\", \"datePublished\": \"2022-12-13T00:00:00.000Z\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…