Information disclosure due to buffer overread in Linux sensors

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00033.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Qualcomm Subscribe
Qca6310 Subscribe
Qca6310 Firmware Subscribe
Qca6320 Subscribe
Qca6320 Firmware Subscribe
Sd835 Subscribe
Sd835 Firmware Subscribe
Snapdragon 835 Mobile Platform Subscribe
Snapdragon 835 Mobile Platform Firmware Subscribe
Wcd9335 Subscribe
Wcd9335 Firmware Subscribe
Wcd9340 Subscribe
Wcd9340 Firmware Subscribe
Wcd9341 Subscribe
Wcd9341 Firmware Subscribe
Wcn3990 Subscribe
Wcn3990 Firmware Subscribe
Wsa8810 Subscribe
Wsa8810 Firmware Subscribe
Wsa8815 Subscribe
Wsa8815 Firmware Subscribe

Configuration 1 [-]

AND
cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6310:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:qualcomm:qca6320_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6320:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:qualcomm:sd835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd835:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:qualcomm:snapdragon_835_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_835_mobile_platform:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3990:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2022-36340 Information disclosure due to buffer overread in Linux sensors
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin cve-icon cve-icon cve-icon
History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published:

Updated: 2024-08-03T08:01:20.515Z

Reserved: 2022-06-14T10:44:39.612Z

Link: CVE-2022-33297

cve-icon Vulnrichment

Updated: 2024-08-03T08:01:20.515Z

cve-icon NVD

Status : Modified

Published: 2023-04-13T07:15:18.913

Modified: 2024-11-21T07:08:06.167

Link: CVE-2022-33297

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses