CVE-2022-25686

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Auto versions (affected versions not specified) Qualcomm Snapdragon Compute versions (affected versions not specified) Qualcomm Snapdragon Connectivity versions (affected versions not specified) Qualcomm Snapdragon Industrial IOT versions (affected versions not specified) Qualcomm Snapdragon Mobile versions (affected versions not specified) Qualcomm Snapdragon Wearables versions (affected versions not specified)

Description The issue is related to a buffer overflow in the video module while processing WAV files, which can lead to memory corruption. This can be exploited by a remote attacker to cause a denial of service or execute arbitrary code.

Recommendations For Qualcomm Snapdragon Auto, update to a version that fixes the buffer overflow issue in the video module. For Qualcomm Snapdragon Compute, update to a version that fixes the buffer overflow issue in the video module. For Qualcomm Snapdragon Connectivity, update to a version that fixes the buffer overflow issue in the video module. For Qualcomm Snapdragon Industrial IOT, update to a version that fixes the buffer overflow issue in the video module. For Qualcomm Snapdragon Mobile, update to a version that fixes the buffer overflow issue in the video module. For Qualcomm Snapdragon Wearables, update to a version that fixes the buffer overflow issue in the video module. As a temporary workaround, consider disabling the video module until a patch is available.