PT-2023-12804 · Qualcomm · 9205 Lte Modem Firmware+34
Published
2023-04-04
·
Updated
2024-04-12
·
CVE-2022-25726
CVSS v3.1
8.2
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned in the provided descriptions.
Description
The issue involves information disclosure in modem data due to an array out of bounds access while handling incoming DNS response packets. This occurs when the system fails to properly validate the length of the DNS response, leading to unauthorized access to sensitive data.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Out of bounds Read
Buffer Over-read
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
9205 Lte Modem Firmware
9206 Lte Modem Firmware
9207 Lte Modem Firmware
Snapdragon
Fastconnect 6900 Firmware
Fastconnect 7800 Firmware
Mdm8207 Firmware
Mdm9205 Firmware
Mdm9206 Firmware
Mdm9207 Firmware
Qca4004 Firmware
Qts110 Firmware
Snapdragon 1100 Wearable Platform Firmware
Snapdragon 1200 Wearable Platform Firmware
Snapdragon Ar2 Gen 1 Platform Firmware
Snapdragon Wear 1100 Firmware
Snapdragon Wear 1200 Firmware
Snapdragon Wear 1300 Firmware
Snapdragon Wear 1300 Platform Firmware
Snapdragon X5 Lte Modem Firmware
Ssg2115P Firmware
Ssg2125P Firmware
Sxr1230P Firmware
Sxr2230P Firmware
Wcd9306 Firmware
Wcd9330 Firmware
Wcd9380 Firmware
Wcd9385 Firmware
Wcn685X-1 Firmware
Wcn685X-5 Firmware
Wcn785X-1 Firmware
Wcn785X-5 Firmware
Wsa8830 Firmware
Wsa8832 Firmware
Wsa8835 Firmware