CVE-2022-22094 — Vulnetix

CVE-2022-22094 PUBLISHED CVSS 7.800000190734863 HIGH

memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

EPSS 0.09% · 25.8th percentile

Risk Scores

CVSS 3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.09%

25.8th percentile

Affected Products

Vendor	Product	Versions
qualcomm	sm8475_firmware
qualcomm	qrb5165n_firmware
qualcomm	wcn6855_firmware
qualcomm	sm7325p_firmware
qualcomm	wcd9370_firmware
qualcomm	wcn6851_firmware
qualcomm	qca6431_firmware
qualcomm	sd_8cx_firmware
qualcomm	sd_8cx_gen2_firmware
qualcomm	wcd9340_firmware
qualcomm	qca6436_firmware
Qualcomm, Inc.	Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile	AQT1000, QCA6390, QCA6391, QCA6420, QCA6421, QCA6426, QCA6430, QCA6431, QCA6436, QCM6490, QCS6490, QRB5165, QRB5165M, QRB5165N, QSM8350, SD 8 Gen1 5G, SD 8CX, SD 8cx Gen2, SD765, SD765G, SD768G, SD778G, SD780G, SD865 5G, SD870, SD888, SD888 5G, SDX55M, SDXR2 5G, SM7250P, SM7315, SM7325P, SM7450, SM8475, SM8475P, WCD9340, WCD9341, WCD9370, WCD9375, WCD9380, WCD9385, WCN3991, WCN3998, WCN6740, WCN6750, WCN6850, WCN6851, WCN6855, WCN6856, WCN7850, WCN7851, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835
qualcomm	wsa8810_firmware
qualcomm	wcn7850_firmware
qualcomm	wcd9385_firmware
qualcomm	qsm8350_firmware
qualcomm	wsa8832_firmware
qualcomm	wsa8835_firmware
qualcomm	sdx55m_firmware
qualcomm	sd765g_firmware

…and 37 more

Exploit Intelligence

https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin (circl)

Timeline

Sep 7, 2022 CVE Published
Sep 16, 2022 EPSS Score
Oct 31, 2022 EPSS Score
Dec 15, 2022 EPSS Score
Jan 29, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 15, 2023 EPSS Score
Apr 28, 2023 EPSS Score
Jun 12, 2023 EPSS Score
Jul 27, 2023 EPSS Score
Sep 10, 2023 EPSS Score
Oct 25, 2023 EPSS Score

References

Open in Interactive Console →