CVE-2022-22095 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-22095 PUBLISHED CVSS 8.399999618530273 HIGH

Memory corruption in synx driver due to use-after-free condition in the synx driver due to accessing object handles without acquiring lock in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

EPSS 0.11% · 29.8th percentile

Risk Scores

CVSS v3.1

8.399999618530273

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.11%

29.8th percentile

Affected Products

Vendor	Product	Versions
qualcomm	wcd9380_firmware
qualcomm	wcn3998_firmware
qualcomm	sdx55m_firmware
qualcomm	qcs4290_firmware
qualcomm	sdxr2_5g_firmware
qualcomm	wcn6851_firmware
qualcomm	qrb5165n_firmware
qualcomm	wsa8835_firmware
qualcomm	qcs2290_firmware
qualcomm	qrb5165m_firmware
qualcomm	wcn3991_firmware
qualcomm	qca6390_firmware
qualcomm	sd750g_firmware
qualcomm	qca6436_firmware
qualcomm	wcd9375_firmware
qualcomm	wcn3615_firmware
qualcomm	sd662_firmware
qualcomm	wcn3988_firmware
qualcomm	wcn3680b_firmware
qualcomm	qrb5165_firmware

…and 30 more

Timeline

Sep 7, 2022 CVE Published
Sep 16, 2022 EPSS Score
Oct 30, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Jan 27, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 12, 2023 EPSS Score
Apr 26, 2023 EPSS Score
Jun 9, 2023 EPSS Score
Jul 23, 2023 EPSS Score
Sep 5, 2023 EPSS Score
Oct 20, 2023 EPSS Score

References

Open in Interactive Console →