CVE-2022-25712

MEDIUM

Qualcomm Firmware - Memory Corruption in Camera via Buffer Overflow

Title source: llm
STIX 2.1

Description

Memory corruption in camera due to buffer copy without checking size of input in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wearables

References (1)

Core 1

Scores

CVSS v3 6.7
EPSS 0.0012
EPSS Percentile 2.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-120
Status published
Products (46)
qualcomm/aqt1000_firmware
qualcomm/mdm9150_firmware
qualcomm/qca6310_firmware
qualcomm/qca6335_firmware
qualcomm/qca6390_firmware
qualcomm/qca6391_firmware
qualcomm/qca6420_firmware
qualcomm/qca6426_firmware
qualcomm/qca6430_firmware
qualcomm/qca6436_firmware
... and 36 more
Published Dec 13, 2022
Tracked Since Feb 18, 2026