CVE-2022-22091 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-22091 PUBLISHED CVSS 7.5 HIGH

Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

EPSS 0.36% · 57.8th percentile

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.36%

57.8th percentile

Affected Products

Vendor	Product	Versions
qualcomm	sc8180x\+sdx55_firmware
qualcomm	apq8017_firmware
qualcomm	sm6250p_firmware
qualcomm	sw5100p_firmware
qualcomm	sd480_firmware
qualcomm	wcd9385_firmware
qualcomm	qca6310_firmware
qualcomm	qca6431_firmware
qualcomm	wcn3660_firmware
qualcomm	sd665_firmware
qualcomm	sm7250p_firmware
qualcomm	wcn3998_firmware
qualcomm	qcs4290_firmware
qualcomm	wcd9341_firmware
qualcomm	wcd9380_firmware
qualcomm	sd670_firmware
qualcomm	qcs410_firmware
qualcomm	sd778_firmware
qualcomm	sdxr2_5g_firmware
qualcomm	sdx55_firmware

…and 110 more

Timeline

Sep 7, 2022 CVE Published
Sep 16, 2022 EPSS Score
Oct 30, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Jan 27, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 12, 2023 EPSS Score
Apr 26, 2023 EPSS Score
Jun 9, 2023 EPSS Score
Jul 23, 2023 EPSS Score
Sep 5, 2023 EPSS Score
Oct 20, 2023 EPSS Score

References

Open in Interactive Console →