Memory corruption due to use after free in trusted application environment.

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00033.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Qualcomm
  • Apq8096au
  • Apq8096au Firmware
  • Mdm9628
  • Mdm9628 Firmware
  • Msm8996au
  • Msm8996au Firmware
  • Qca6390
  • Qca6390 Firmware
  • Qca6391
  • Qca6391 Firmware
  • Qca6426
  • Qca6426 Firmware
  • Qca6436
  • Qca6436 Firmware
  • Qca6564a
  • Qca6564a Firmware
  • Qca6564au
  • Qca6564au Firmware
  • Qca6574a
  • Qca6574a Firmware
  • Qca6574au
  • Qca6574au Firmware
  • Qualcomm215
  • Qualcomm215 Firmware
  • Sd205
  • Sd205 Firmware
  • Sd210
  • Sd210 Firmware
  • Sd429
  • Sd429 Firmware
  • Sd865 5g
  • Sd865 5g Firmware
  • Sd870
  • Sd870 Firmware
  • Sdm429w
  • Sdm429w Firmware
  • Sdx55m
  • Sdx55m Firmware
  • Sdxr2 5g
  • Sdxr2 5g Firmware
  • Wcd9340
  • Wcd9340 Firmware
  • Wcd9380
  • Wcd9380 Firmware
  • Wcn3610
  • Wcn3610 Firmware
  • Wcn3620
  • Wcn3620 Firmware
  • Wcn3660b
  • Wcn3660b Firmware
  • Wcn6850
  • Wcn6850 Firmware
  • Wcn6851
  • Wcn6851 Firmware
  • Wsa8810
  • Wsa8810 Firmware
  • Wsa8815
  • Wsa8815 Firmware

Configuration 1 [-]

AND
cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:mdm9628:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6426:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6436:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qualcomm215:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd205:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd210:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:qualcomm:sd429_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd429:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd870:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdxr2_5g:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3610:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:qualcomm:wcn3620_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3620:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3660b:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND
cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2022-36268 Memory corruption due to use after free in trusted application environment.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin cve-icon cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published:

Updated: 2024-08-03T08:01:20.254Z

Reserved: 2022-06-14T10:44:39.577Z

Link: CVE-2022-33225

cve-icon Vulnrichment

Updated: 2024-08-03T08:01:20.254Z

cve-icon NVD

Status : Modified

Published: 2023-02-12T04:15:13.907

Modified: 2024-11-21T07:07:46.303

Link: CVE-2022-33225

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.