CVE-2022-25652

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking

CVSS v3.0 7.8 HIGH

7.8^/10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:csr8811:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:ipq5010_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq5010:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:ipq5028_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq5028:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6000:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:ipq6005_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6005:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6010:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:ipq6028_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq6028:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:ipq8070_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8070:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:ipq8070a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8070a:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:ipq8071_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8071:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:ipq8071a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8071a:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:ipq8072_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8072:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:ipq8072a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8072a:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:ipq8074a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8074a:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:ipq8076_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8076:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:ipq8076a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8076a:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:ipq8078_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8078:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:ipq8078a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8078a:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:ipq8173_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8173:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:ipq8174_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ipq8174:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:pmp8074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:pmp8074:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca4024:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:qca6428_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6428:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:qca6438_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6438:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:qca8072_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8072:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:qca8075_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8075:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9888:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9889:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:qcn5021_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5021:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:qcn5022_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5022:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:qcn5024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5024:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:qcn5052_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5052:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND

cpe:2.3:o:qualcomm:qcn5054_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5054:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND

cpe:2.3:o:qualcomm:qcn5064_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5064:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND

cpe:2.3:o:qualcomm:qcn5121_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5121:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND

cpe:2.3:o:qualcomm:qcn5122_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5122:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND

cpe:2.3:o:qualcomm:qcn5124_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5124:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND

cpe:2.3:o:qualcomm:qcn5152_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5152:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND

cpe:2.3:o:qualcomm:qcn5154_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5154:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND

cpe:2.3:o:qualcomm:qcn5164_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5164:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND

cpe:2.3:o:qualcomm:qcn5550_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn5550:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND

cpe:2.3:o:qualcomm:qcn6023_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6023:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND

cpe:2.3:o:qualcomm:qcn6024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6024:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND

cpe:2.3:o:qualcomm:qcn6100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6100:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND

cpe:2.3:o:qualcomm:qcn6102_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6102:-:*:*:*:*:*:*:*

Configuration 50 (hide)

AND

cpe:2.3:o:qualcomm:qcn6112_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6112:-:*:*:*:*:*:*:*

Configuration 51 (hide)

AND

cpe:2.3:o:qualcomm:qcn6122_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6122:-:*:*:*:*:*:*:*

Configuration 52 (hide)

AND

cpe:2.3:o:qualcomm:qcn6132_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn6132:-:*:*:*:*:*:*:*

Configuration 53 (hide)

AND

cpe:2.3:o:qualcomm:qcn9000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9000:-:*:*:*:*:*:*:*

Configuration 54 (hide)

AND

cpe:2.3:o:qualcomm:qcn9012_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9012:-:*:*:*:*:*:*:*

Configuration 55 (hide)

AND

cpe:2.3:o:qualcomm:qcn9022_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9022:-:*:*:*:*:*:*:*

Configuration 56 (hide)

AND

cpe:2.3:o:qualcomm:qcn9024_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9024:-:*:*:*:*:*:*:*

Configuration 57 (hide)

AND

cpe:2.3:o:qualcomm:qcn9070_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9070:-:*:*:*:*:*:*:*

Configuration 58 (hide)

AND

cpe:2.3:o:qualcomm:qcn9072_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9072:-:*:*:*:*:*:*:*

Configuration 59 (hide)

AND

cpe:2.3:o:qualcomm:qcn9074_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9074:-:*:*:*:*:*:*:*

Configuration 60 (hide)

AND

cpe:2.3:o:qualcomm:qcn9100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcn9100:-:*:*:*:*:*:*:*

Information

Published : 2022-09-15 23:15

Updated : 2022-09-20 06:20

NVD link : CVE-2022-25652

Mitre link : CVE-2022-25652

JSON object : View

CWE

CWE-287

Improper Authentication

Products Affected

qualcomm

ipq6010_firmware
ipq8078a
qca4024_firmware
qcn6102
qcn5124_firmware
ipq5010
qcn5021
qca8075_firmware
qcn9012_firmware
qcn9000
qcn9072_firmware
ipq8078a_firmware
qcn6024
qcn5052_firmware
qcn5152
qcn5122_firmware
ipq8072a
qca6428
qca9889_firmware
qcn5121_firmware
qcn6023
ipq8071_firmware
ipq5028
csr8811
qcn9012
qcn9100_firmware
ipq8070a_firmware
ipq8078
qcn6102_firmware
ipq8173
ipq8070
qcn5122
ipq8074a
ipq6018_firmware
pmp8074_firmware
qcn5154
ipq8078_firmware
ipq6000
ipq8074
qca8081_firmware
qcn5064
qcn9074
ipq8071a
qcn9024
ipq6018
ipq8076a
qca9889
qcn5550_firmware
qca6438_firmware
ipq8072_firmware
ipq8076
ipq8071a_firmware
qcn5152_firmware
qcn9074_firmware
qcn9100
ipq8072
qcn6132_firmware
qca6438
ipq6000_firmware
ipq5018_firmware
qcn9022_firmware
ipq8174
ipq5028_firmware
ipq8070_firmware
qcn5054_firmware
qca9888
qcn6023_firmware
ipq8070a
qcn5550
qcn6122_firmware
ipq8173_firmware
qcn5022_firmware
ipq6028_firmware
qcn6132
qcn5164
qca8081
qcn5021_firmware
qcn9022
qca4024
ipq8076_firmware
pmp8074
ipq6005
ipq6028
qcn6100
qcn6122
qcn5054
qcn5154_firmware
qcn5022
qcn5121
qca9888_firmware
qcn6112
ipq8076a_firmware
qcn6024_firmware
qcn9072
ipq8174_firmware
csr8811_firmware
qca8072_firmware
ipq8074_firmware
qca8072
ipq5010_firmware
ipq8074a_firmware
ipq8072a_firmware
qcn5024_firmware
qcn5124
qca8075
qcn5052
qcn6100_firmware
ipq6005_firmware
qcn5164_firmware
qcn6112_firmware
qcn9070_firmware
qcn5024
qcn9000_firmware
qcn9024_firmware
qcn5064_firmware
ipq5018
ipq6010
ipq8071
qcn9070
qca6428_firmware

7.8 /10