Description
Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin
Scores
CVSS v3
9.8
EPSS
0.0032
EPSS Percentile
55.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (50)
qualcomm/aqt1000_firmware
qualcomm/ar8035_firmware
qualcomm/qca6390_firmware
qualcomm/qca6391_firmware
qualcomm/qca6564_firmware
qualcomm/qca6564au_firmware
qualcomm/qca6574a_firmware
qualcomm/qca8081_firmware
qualcomm/qca8337_firmware
qualcomm/qcm2290_firmware
... and 40 more
Published
Jun 14, 2022
Tracked Since
Feb 18, 2026