CVE-2022-40525

Information disclosure in Linux Networking Firmware due to unauthorized information leak during side channel analysis.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csr8811:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6000:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:ipq6005_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6005:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6010:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:ipq6028_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6028:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:ipq9008_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq9008:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:ipq9574_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq9574:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4024:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qca8072_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8072:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qca8075_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8075:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qca8082_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8082:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:qca8084_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8084:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:qca8085_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8085:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:qca8386_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8386:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:qcn5021_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5021:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:qcn5022_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5022:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:qcn5052_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5052:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:qcn5121_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5121:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:qcn5122_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5122:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:qcn5152_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5152:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:qcn6023_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6023:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6024:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:qcn9000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9000:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:qcn9022_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9022:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9024:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:qcn9070_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9070:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:qcn9072_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9072:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9074:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:qcn9274_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9274:-:*:*:*:*:*:*:*

History

12 Apr 2024, 17:16

Type	Values Removed	Values Added
CWE		CWE-200

10 Jun 2023, 02:07

Type	Values Removed	Values Added
References	~~(MISC) https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin -~~	(MISC) https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin - Vendor Advisory
CPE		cpe:2.3:o:qualcomm:qca8072_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq9574:-:::::::* cpe:2.3:o:qualcomm:qcn5121_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn9024:-:::::::* cpe:2.3:o:qualcomm:qcn9072_firmware:-:::::::* cpe:2.3:o:qualcomm:ipq9574_firmware:-:::::::* cpe:2.3:h:qualcomm:qca8085:-:::::::* cpe:2.3:o:qualcomm:qcn5122_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn9074_firmware:-:::::::* cpe:2.3:o:qualcomm:csr8811_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5122:-:::::::* cpe:2.3:h:qualcomm:qcn6024:-:::::::* cpe:2.3:h:qualcomm:ipq9008:-:::::::* cpe:2.3:h:qualcomm:qca4024:-:::::::* cpe:2.3:h:qualcomm:qcn9070:-:::::::* cpe:2.3:o:qualcomm:ipq9008_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8084_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8085_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq6005:-:::::::* cpe:2.3:o:qualcomm:qcn5022_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn9024_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn5052_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5052:-:::::::* cpe:2.3:h:qualcomm:qca8081:-:::::::* cpe:2.3:o:qualcomm:ipq6028_firmware:-:::::::* cpe:2.3:o:qualcomm:ipq6000_firmware:-:::::::* cpe:2.3:h:qualcomm:csr8811:-:::::::* cpe:2.3:h:qualcomm:qcn5121:-:::::::* cpe:2.3:h:qualcomm:qca8386:-:::::::* cpe:2.3:h:qualcomm:qcn5021:-:::::::* cpe:2.3:h:qualcomm:qcn9000:-:::::::* cpe:2.3:h:qualcomm:ipq6010:-:::::::* cpe:2.3:o:qualcomm:qcn9022_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq6028:-:::::::* cpe:2.3:o:qualcomm:qcn9070_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn6024_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8081_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8075_firmware:-:::::::* cpe:2.3:o:qualcomm:qca8386_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5152:-:::::::* cpe:2.3:o:qualcomm:qcn9000_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn6023:-:::::::* cpe:2.3:h:qualcomm:qcn9074:-:::::::* cpe:2.3:o:qualcomm:qcn5021_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn5022:-:::::::* cpe:2.3:o:qualcomm:ipq6010_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq6000:-:::::::* cpe:2.3:o:qualcomm:ipq6018_firmware:-:::::::* cpe:2.3:o:qualcomm:qcn6023_firmware:-:::::::* cpe:2.3:h:qualcomm:ipq6018:-:::::::* cpe:2.3:o:qualcomm:ipq6005_firmware:-:::::::* cpe:2.3:h:qualcomm:qca8072:-:::::::* cpe:2.3:o:qualcomm:qca4024_firmware:-:::::::* cpe:2.3:h:qualcomm:qca8075:-:::::::* cpe:2.3:o:qualcomm:qca8082_firmware:-:::::::* cpe:2.3:h:qualcomm:qca8082:-:::::::* cpe:2.3:o:qualcomm:qcn5152_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn9022:-:::::::* cpe:2.3:o:qualcomm:qcn9274_firmware:-:::::::* cpe:2.3:h:qualcomm:qcn9072:-:::::::* cpe:2.3:h:qualcomm:qca8084:-:::::::* cpe:2.3:h:qualcomm:qcn9274:-:::::::*
First Time		Qualcomm qca8386 Firmware Qualcomm qcn6023 Firmware Qualcomm qcn9024 Qualcomm qca8072 Qualcomm qca8082 Qualcomm qca8081 Firmware Qualcomm ipq6028 Qualcomm qcn5021 Firmware Qualcomm qca8386 Qualcomm ipq9574 Qualcomm csr8811 Firmware Qualcomm qcn9000 Firmware Qualcomm qca8072 Firmware Qualcomm ipq6005 Firmware Qualcomm qcn6024 Firmware Qualcomm qca4024 Qualcomm qcn9074 Qualcomm qcn5152 Firmware Qualcomm qcn5022 Firmware Qualcomm csr8811 Qualcomm ipq6000 Qualcomm qcn9274 Firmware Qualcomm ipq9574 Firmware Qualcomm qcn5052 Qualcomm qca8082 Firmware Qualcomm qcn5122 Qualcomm qcn9074 Firmware Qualcomm qcn5121 Qualcomm qca8075 Firmware Qualcomm qcn5021 Qualcomm qcn5052 Firmware Qualcomm qca8081 Qualcomm Qualcomm qcn6023 Qualcomm qcn5122 Firmware Qualcomm ipq6010 Qualcomm qca8085 Qualcomm qcn9022 Firmware Qualcomm qcn9072 Qualcomm qcn9072 Firmware Qualcomm ipq6005 Qualcomm qcn9070 Firmware Qualcomm qcn9274 Qualcomm qcn5152 Qualcomm qca8084 Qualcomm qca8075 Qualcomm ipq6018 Qualcomm qca8084 Firmware Qualcomm ipq6028 Firmware Qualcomm ipq6000 Firmware Qualcomm qcn5121 Firmware Qualcomm qcn5022 Qualcomm ipq9008 Qualcomm qcn9000 Qualcomm qcn6024 Qualcomm ipq6018 Firmware Qualcomm qcn9070 Qualcomm qca8085 Firmware Qualcomm qcn9024 Firmware Qualcomm ipq9008 Firmware Qualcomm qca4024 Firmware Qualcomm qcn9022 Qualcomm ipq6010 Firmware
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
CWE		CWE-668

06 Jun 2023, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-06-06 08:15

Updated : 2024-04-12 17:16

NVD link : CVE-2022-40525

Mitre link : CVE-2022-40525

CVE.ORG link : CVE-2022-40525

JSON object : View

Products Affected

qualcomm

qca8075
qca4024
qcn5152_firmware
qcn9070
qcn5052_firmware
qcn5122_firmware
qcn9074
csr8811_firmware
qca8082
qca8085
qcn9070_firmware
qca8082_firmware
qca8386_firmware
qca8085_firmware
qcn5122
qcn6024_firmware
qca8081_firmware
qcn9072_firmware
qca8084
qca8072_firmware
qcn6023
qcn5022
qcn5052
qcn9024_firmware
ipq9008
ipq6000
ipq6005
qcn6023_firmware
qcn9024
qcn9072
qcn5021_firmware
qcn9000_firmware
qcn5152
qcn6024
qca8072
csr8811
ipq6018_firmware
ipq9008_firmware
ipq9574
qca8386
qcn5022_firmware
qcn9000
qcn9022
qcn5021
qca8081
ipq6000_firmware
ipq6010
ipq9574_firmware
qca4024_firmware
ipq6018
ipq6028
qcn5121
qcn9274_firmware
ipq6028_firmware
qca8075_firmware
qcn9274
qcn9074_firmware
qca8084_firmware
qcn5121_firmware
qcn9022_firmware
ipq6010_firmware
ipq6005_firmware

CWE

CWE-668

Exposure of Resource to Wrong Sphere

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

5.5 /10