CVE-2022-33274

Memory corruption in android core due to improper validation of array index while returning feature ids after license authentication.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8145p:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:07

Type Values Removed Values Added
References () https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin - Vendor Advisory () https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin - Vendor Advisory
CVSS v2 : unknown
v3 : 7.8
v2 : unknown
v3 : 8.4
Summary
  • (es) Corrupción de la memoria en el núcleo de Android debido a una validación incorrecta del índice de la matriz al devolver identificadores de funciones después de la autenticación de la licencia.

Information

Published : 2023-01-09 08:15

Updated : 2024-11-21 07:07


NVD link : CVE-2022-33274

Mitre link : CVE-2022-33274

CVE.ORG link : CVE-2022-33274


JSON object : View

Products Affected

qualcomm

  • sa6155p
  • sa6150p_firmware
  • qca6574au_firmware
  • sa8195p_firmware
  • sa8150p_firmware
  • sa8295p_firmware
  • qam8295p_firmware
  • qam8295p
  • sa8155p_firmware
  • sa8155p
  • qca6574au
  • qca6696
  • sa8145p
  • sa6155p_firmware
  • sa8145p_firmware
  • sa6145p
  • sa8195p
  • qca6696_firmware
  • sa6145p_firmware
  • sa6150p
  • sa8295p
  • sa8150p
CWE
CWE-129

Improper Validation of Array Index