CVE-2022-25745 - OpenCVE

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Qualcomm	Mdm9205 Mdm9205 Firmware Qca4004 Qca4004 Firmware Qts110 Qts110 Firmware Snapdragon Wear 1300 Snapdragon Wear 1300 Firmware Wcd9306 Wcd9306 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qts110:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:qualcomm:snapdragon_wear_1300_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_wear_1300:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

History

No history.

MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2023-04-04T04:46:20.679Z

Updated: 2024-08-03T04:49:42.803Z

Reserved: 2022-02-22T11:38:09.315Z

Link: CVE-2022-25745

Vulnrichment

Updated: 2024-08-03T04:49:42.803Z

NVD

Status : Modified

Published: 2023-04-13T07:15:13.253

Modified: 2024-04-12T17:15:58.823

Link: CVE-2022-25745

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2022-25745", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "state": "PUBLISHED", "assignerShortName": "qualcomm", "dateReserved": "2022-02-22T11:38:09.315Z", "datePublished": "2023-04-04T04:46:20.679Z", "dateUpdated": "2024-08-03T04:49:42.803Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Snapdragon Industrial IOT"], "product": "Snapdragon", "vendor": "Qualcomm, Inc.", "versions": [{"status": "affected", "version": "9205 LTE Modem"}, {"status": "affected", "version": "QCA4004"}, {"status": "affected", "version": "QTS110"}, {"status": "affected", "version": "Snapdragon Wear 1300 Platform"}, {"status": "affected", "version": "WCD9306"}]}], "descriptions": [{"lang": "en", "value": "Memory corruption in modem due to improper input validation while handling the incoming CoAP message"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2024-04-12T16:28:32.354Z"}, "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin"}], "title": "Always Incorrect Control Flow Implementation in MODEM", "problemTypes": [{"descriptions": [{"cweId": "CWE-670", "description": "CWE-670 Always-Incorrect Control Flow Implementation", "lang": "en", "type": "CWE"}]}]}, "adp": [{"affected": [{"vendor": "qualcomm", "product": "9205_lte_modem_firmware", "cpes": ["cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "*", "status": "affected"}]}, {"vendor": "qualcomm", "product": "qca4004_firmware", "cpes": ["cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "*", "status": "affected"}]}, {"vendor": "qualcomm", "product": "qts110_firmware", "cpes": ["cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "*", "status": "affected"}]}, {"vendor": "qualcomm", "product": "snapdragon_wear_1300_platform_firmware", "cpes": ["cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "*", "status": "affected"}]}, {"vendor": "qualcomm", "product": "wcd9306_firmware", "cpes": ["cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "*", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-06-10T17:09:50.370669Z", "id": "CVE-2022-25745", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-10T17:09:54.802Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T04:49:42.803Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T04:49:42.803Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-25745", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-06-10T17:09:50.370669Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:qualcomm:9205_lte_modem_firmware:-:*:*:*:*:*:*:*"], "vendor": "qualcomm", "product": "9205_lte_modem_firmware", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*"], "vendor": "qualcomm", "product": "qca4004_firmware", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*"], "vendor": "qualcomm", "product": "qts110_firmware", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:qualcomm:snapdragon_wear_1300_platform_firmware:-:*:*:*:*:*:*:*"], "vendor": "qualcomm", "product": "snapdragon_wear_1300_platform_firmware", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*"], "vendor": "qualcomm", "product": "wcd9306_firmware", "versions": [{"status": "affected", "version": "*"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-10T17:09:24.828Z"}}], "cna": {"title": "Always Incorrect Control Flow Implementation in MODEM", "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Qualcomm, Inc.", "product": "Snapdragon", "versions": [{"status": "affected", "version": "9205 LTE Modem"}, {"status": "affected", "version": "QCA4004"}, {"status": "affected", "version": "QTS110"}, {"status": "affected", "version": "Snapdragon Wear 1300 Platform"}, {"status": "affected", "version": "WCD9306"}], "platforms": ["Snapdragon Industrial IOT"], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin"}], "descriptions": [{"lang": "en", "value": "Memory corruption in modem due to improper input validation while handling the incoming CoAP message"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-670", "description": "CWE-670 Always-Incorrect Control Flow Implementation"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2024-04-12T16:28:32.354Z"}}}, "cveMetadata": {"cveId": "CVE-2022-25745", "state": "PUBLISHED", "dateUpdated": "2024-08-03T04:49:42.803Z", "dateReserved": "2022-02-22T11:38:09.315Z", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "datePublished": "2023-04-04T04:46:20.679Z", "assignerShortName": "qualcomm"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*", "matchCriteriaId": "38C02461-5207-401D-B97A-3E25E23C9B2B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4004_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "DFB39496-8699-4DAF-BD7B-AE69260B20CB", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4004:-:*:*:*:*:*:*:*", "matchCriteriaId": "E9CFBC24-5F15-40DE-806E-62C1EE808992", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qts110_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "B2D4B026-2118-448D-A48D-36864DE715B8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qts110:-:*:*:*:*:*:*:*", "matchCriteriaId": "5ED10480-E005-452C-A03C-D669CE94ABE4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:snapdragon_wear_1300_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "8571A7EB-7BF1-4613-8CCB-667995115FC0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:snapdragon_wear_1300:-:*:*:*:*:*:*:*", "matchCriteriaId": "2AE7E6EB-E3E7-45FB-AA7B-29937C21D116", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9306_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC012AD0-BCEE-4B1E-9B15-5D77D78CEA01", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9306:-:*:*:*:*:*:*:*", "matchCriteriaId": "F51C69B9-F0AB-4BF5-A8C2-64FEB7075593", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Memory corruption in modem due to improper input validation while handling the incoming CoAP message"}], "id": "CVE-2022-25745", "lastModified": "2024-04-12T17:15:58.823", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "product-security@qualcomm.com", "type": "Secondary"}]}, "published": "2023-04-13T07:15:13.253", "references": [{"source": "product-security@qualcomm.com", "tags": ["Vendor Advisory"], "url": "https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin"}], "sourceIdentifier": "product-security@qualcomm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-670"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-670"}], "source": "product-security@qualcomm.com", "type": "Secondary"}]}