Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

None

Attack Vector

Network

CVE-2022-33309

Disclosure Date: March 10, 2023 •

CVE-2022-33309 CVSS v3 Base Score: 7.5

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

7.5 High

Impact Score:

3.6

Exploitability Score:

3.9

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

None

Integrity (I):

None

Availability (A):

High

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

Vulnerable Versions

Snapdragon CSR8811

Snapdragon IPQ5010

Snapdragon IPQ5018

Snapdragon IPQ5028

Snapdragon IPQ6000

Snapdragon IPQ6010

Snapdragon IPQ6018

Snapdragon IPQ6028

Snapdragon IPQ8070A

Snapdragon IPQ8071A

Snapdragon IPQ8072A

Snapdragon IPQ8074A

Snapdragon IPQ8076

Snapdragon IPQ8076A

Snapdragon IPQ8078

Snapdragon IPQ8078A

Snapdragon IPQ8173

Snapdragon IPQ8174

Snapdragon IPQ9008

Snapdragon IPQ9574

Snapdragon QCA4024

Snapdragon QCA8075

Snapdragon QCA8081

Snapdragon QCA8082

Snapdragon QCA8084

Snapdragon QCA8085

Snapdragon QCA8386

Snapdragon QCA9888

Snapdragon QCA9889

Snapdragon QCN5022

Snapdragon QCN5024

Snapdragon QCN5052

Snapdragon QCN5122

Snapdragon QCN5124

Snapdragon QCN5152

Snapdragon QCN5154

Snapdragon QCN5164

Snapdragon QCN6023

Snapdragon QCN6024

Snapdragon QCN6122

Snapdragon QCN6132

Snapdragon QCN9000

Snapdragon QCN9022

Snapdragon QCN9024

Snapdragon QCN9070

Snapdragon QCN9072

Snapdragon QCN9074

Snapdragon QCN9100

Snapdragon QCN9274

Snapdragon SD 8 Gen1 5G

Snapdragon SDX65

Snapdragon SDX65M

Snapdragon SSG2115P

Snapdragon SSG2125P

Snapdragon SXR1230P

Snapdragon SXR2230P

Snapdragon WCD9380

Snapdragon WCD9385

Snapdragon WCN6855

Snapdragon WCN6856

Snapdragon WCN7850

Snapdragon WCN7851

Snapdragon WSA8830

Snapdragon WSA8832

Snapdragon WSA8835

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

qualcomm

Products

References

Canonical

CVE-2022-33309 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33309)

Miscellaneous

https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin

Rapid7

Unknown

CVE-2022-33309

Unknown

Unknown

None

None

Network

CVE-2022-33309

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Unknown

CVE-2022-33309

Unknown

Unknown

None

None

Network

CVE-2022-33309

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification