Skip to main content

Sa8540p Firmware CVE-2022-22106

HIGH
2022-09-02 product-security@qualcomm.com
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Sep 02, 2022 - 12:15 nvd
HIGH 7.8

DescriptionNVD

Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto

AnalysisAI

Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

Memory corruption in multimedia due to improper length check while copying the data in Snapdragon Auto Affected products include: Qualcomm Sa8540P Firmware, Qualcomm Sa9000P Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2024-21480 CRITICAL
9.8 May 06

Memory corruption while playing audio file having large-sized input buffer. Rated critical severity (CVSS 9.8), this vul

CVE-2023-33030 CRITICAL
9.3 Jan 02

Memory corruption in HLOS while running playready use-case. Rated critical severity (CVSS 9.3), this vulnerability is no

CVE-2023-28585 HIGH
8.8 Dec 05

Memory corruption while loading an ELF segment in TEE Kernel. Rated high severity (CVSS 8.8), this vulnerability is low

CVE-2025-47345 HIGH
8.4 Jan 07

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

CVE-2024-33035 HIGH
8.4 Sep 02

Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.

CVE-2024-23365 HIGH
8.4 Sep 02

Memory corruption while releasing shared resources in MinkSocket listener thread. Rated high severity (CVSS 8.4), this v

CVE-2024-21481 HIGH
8.4 Aug 05

Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. Rated high severity (

CVE-2023-22382 HIGH
8.2 Oct 03

Weak configuration in Automotive while VM is processing a listener request from TEE. Rated high severity (CVSS 8.2), thi

CVE-2025-21468 HIGH
7.8 May 06

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to w

CVE-2025-21460 HIGH
7.8 May 06

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed cont

CVE-2025-21453 HIGH
7.8 May 06

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential f

CVE-2024-49845 HIGH
7.8 May 06

Memory corruption during the FRS UDS generation process. Rated high severity (CVSS 7.8), this vulnerability is low attac

Share

CVE-2022-22106 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy