CVE-2022-33266

MEDIUM

Qualcomm APQ8009 Firmware - Memory Corruption via Integer Overflow in Audio Playback

Title source: llm

Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.

Core 1

Core References

Vendor Advisory

CVSS v3 5.9

EPSS 0.0012

EPSS Percentile 29.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-190

Status published

Products (50)

qualcomm/apq8009_firmware

qualcomm/apq8009w_firmware

qualcomm/apq8017_firmware

qualcomm/apq8064au_firmware

qualcomm/apq8096au_firmware

qualcomm/aqt1000_firmware

qualcomm/ar8031_firmware

qualcomm/ar8035_firmware

qualcomm/csra6620_firmware

qualcomm/csra6640_firmware

... and 40 more

Published Jan 09, 2023

Tracked Since Feb 18, 2026