CVE-2022-25750

HIGH

Qualcomm Kailua Firmware - Double Free

Title source: rule

Description

Memory corruption in BTHOST due to double free while music playback and calls over bluetooth headset in Snapdragon Mobile

References (1)

Scores

CVSS v3 8.4
EPSS 0.0005
EPSS Percentile 15.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-415
Status published

Affected Products (15)

qualcomm/kailua_firmware
qualcomm/sg8275_firmware
qualcomm/sg8275p_firmware
qualcomm/sm8550_firmware
qualcomm/wcd9380_firmware
qualcomm/wcd9385_firmware
qualcomm/wcd9390_firmware
qualcomm/wcd9395_firmware
qualcomm/wcn6855_firmware
qualcomm/wcn6856_firmware
qualcomm/wcn7850_firmware
qualcomm/wcn7851_firmware
qualcomm/wsa8840_firmware
qualcomm/wsa8845_firmware
qualcomm/wsa8845h_firmware

Timeline

Published Oct 19, 2022
Tracked Since Feb 18, 2026