{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2022-25677","assignerOrgId":"2cfc7d3e-20d3-47ac-8db7-1b7285aff15f","assignerShortName":"qualcomm","dateUpdated":"2025-04-22T15:57:50.369Z","dateReserved":"2022-02-22T00:00:00.000Z","datePublished":"2022-12-13T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"2cfc7d3e-20d3-47ac-8db7-1b7285aff15f","shortName":"qualcomm","dateUpdated":"2022-12-13T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking"}],"affected":[{"vendor":"Qualcomm, Inc.","product":"Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking","versions":[{"version":"APQ8096AU","status":"affected"},{"version":"AQT1000","status":"affected"},{"version":"AR9380","status":"affected"},{"version":"CSR8811","status":"affected"},{"version":"IPQ4018","status":"affected"},{"version":"IPQ4019","status":"affected"},{"version":"IPQ4028","status":"affected"},{"version":"IPQ4029","status":"affected"},{"version":"IPQ5010","status":"affected"},{"version":"IPQ5018","status":"affected"},{"version":"IPQ5028","status":"affected"},{"version":"IPQ6000","status":"affected"},{"version":"IPQ6010","status":"affected"},{"version":"IPQ6018","status":"affected"},{"version":"IPQ6028","status":"affected"},{"version":"IPQ8064","status":"affected"},{"version":"IPQ8065","status":"affected"},{"version":"IPQ8068","status":"affected"},{"version":"IPQ8070","status":"affected"},{"version":"IPQ8070A","status":"affected"},{"version":"IPQ8071A","status":"affected"},{"version":"IPQ8072A","status":"affected"},{"version":"IPQ8074A","status":"affected"},{"version":"IPQ8076","status":"affected"},{"version":"IPQ8076A","status":"affected"},{"version":"IPQ8078","status":"affected"},{"version":"IPQ8078A","status":"affected"},{"version":"IPQ8173","status":"affected"},{"version":"IPQ8174","status":"affected"},{"version":"IPQ9008","status":"affected"},{"version":"IPQ9574","status":"affected"},{"version":"MDM9150","status":"affected"},{"version":"MDM9650","status":"affected"},{"version":"MSM8996AU","status":"affected"},{"version":"PMP8074","status":"affected"},{"version":"QCA4024","status":"affected"},{"version":"QCA6310","status":"affected"},{"version":"QCA6320","status":"affected"},{"version":"QCA6335","status":"affected"},{"version":"QCA6390","status":"affected"},{"version":"QCA6391","status":"affected"},{"version":"QCA6420","status":"affected"},{"version":"QCA6426","status":"affected"},{"version":"QCA6430","status":"affected"},{"version":"QCA6436","status":"affected"},{"version":"QCA6564","status":"affected"},{"version":"QCA6564A","status":"affected"},{"version":"QCA6564AU","status":"affected"},{"version":"QCA6574A","status":"affected"},{"version":"QCA6574AU","status":"affected"},{"version":"QCA6595","status":"affected"},{"version":"QCA6595AU","status":"affected"},{"version":"QCA7500","status":"affected"},{"version":"QCA8072","status":"affected"},{"version":"QCA8075","status":"affected"},{"version":"QCA8081","status":"affected"},{"version":"QCA8337","status":"affected"},{"version":"QCA9880","status":"affected"},{"version":"QCA9886","status":"affected"},{"version":"QCA9888","status":"affected"},{"version":"QCA9889","status":"affected"},{"version":"QCA9898","status":"affected"},{"version":"QCA9980","status":"affected"},{"version":"QCA9984","status":"affected"},{"version":"QCA9985","status":"affected"},{"version":"QCA9990","status":"affected"},{"version":"QCA9992","status":"affected"},{"version":"QCA9994","status":"affected"},{"version":"QCN5021","status":"affected"},{"version":"QCN5022","status":"affected"},{"version":"QCN5024","status":"affected"},{"version":"QCN5052","status":"affected"},{"version":"QCN5054","status":"affected"},{"version":"QCN5122","status":"affected"},{"version":"QCN5124","status":"affected"},{"version":"QCN5152","status":"affected"},{"version":"QCN5154","status":"affected"},{"version":"QCN5164","status":"affected"},{"version":"QCN6023","status":"affected"},{"version":"QCN6024","status":"affected"},{"version":"QCN6100","status":"affected"},{"version":"QCN6102","status":"affected"},{"version":"QCN6112","status":"affected"},{"version":"QCN6122","status":"affected"},{"version":"QCN6132","status":"affected"},{"version":"QCN9000","status":"affected"},{"version":"QCN9012","status":"affected"},{"version":"QCN9022","status":"affected"},{"version":"QCN9024","status":"affected"},{"version":"QCN9070","status":"affected"},{"version":"QCN9072","status":"affected"},{"version":"QCN9074","status":"affected"},{"version":"QCN9100","status":"affected"},{"version":"QCN9274","status":"affected"},{"version":"QCS410","status":"affected"},{"version":"QCS610","status":"affected"},{"version":"QCS8155","status":"affected"},{"version":"QSM8250","status":"affected"},{"version":"Qualcomm215","status":"affected"},{"version":"SA515M","status":"affected"},{"version":"SA6145P","status":"affected"},{"version":"SA6155P","status":"affected"},{"version":"SA8155P","status":"affected"},{"version":"SD 675","status":"affected"},{"version":"SD205","status":"affected"},{"version":"SD210","status":"affected"},{"version":"SD429","status":"affected"},{"version":"SD675","status":"affected"},{"version":"SD678","status":"affected"},{"version":"SD720G","status":"affected"},{"version":"SD730","status":"affected"},{"version":"SD835","status":"affected"},{"version":"SD845","status":"affected"},{"version":"SD855","status":"affected"},{"version":"SD865 5G","status":"affected"},{"version":"SD870","status":"affected"},{"version":"SDA429W","status":"affected"},{"version":"SDM429W","status":"affected"},{"version":"SDX50M","status":"affected"},{"version":"SDX55","status":"affected"},{"version":"SDX55M","status":"affected"},{"version":"SDXR2 5G","status":"affected"},{"version":"SM6250","status":"affected"},{"version":"WCD9335","status":"affected"},{"version":"WCD9340","status":"affected"},{"version":"WCD9341","status":"affected"},{"version":"WCD9370","status":"affected"},{"version":"WCD9375","status":"affected"},{"version":"WCD9380","status":"affected"},{"version":"WCN3610","status":"affected"},{"version":"WCN3620","status":"affected"},{"version":"WCN3660B","status":"affected"},{"version":"WCN3680B","status":"affected"},{"version":"WCN3950","status":"affected"},{"version":"WCN3980","status":"affected"},{"version":"WCN3988","status":"affected"},{"version":"WCN3990","status":"affected"},{"version":"WCN3991","status":"affected"},{"version":"WCN3998","status":"affected"},{"version":"WCN6850","status":"affected"},{"version":"WCN6851","status":"affected"},{"version":"WSA8810","status":"affected"},{"version":"WSA8815","status":"affected"}]}],"references":[{"url":"https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin"}],"metrics":[{"cvssV3_1":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":6.7,"baseSeverity":"MEDIUM"}}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"Use After Free in DIAG"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T04:42:50.679Z"},"title":"CVE Program Container","references":[{"url":"https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin","tags":["x_transferred"]}]},{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-416","lang":"en","description":"CWE-416 Use After Free"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-04-22T15:57:43.076331Z","id":"CVE-2022-25677","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-04-22T15:57:50.369Z"}}]}}