Vulnerability
CVE-2022-25695
Component: CELLULAR
Location: FIRMWARE
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Impact
Severity (Manufact.)
HIGH
Severity (NIST)
7.8
Severity (Android)
N/A
Chipsets
17
Devices
540
Affected Hardware
| Name | Also known as | Manufacturer |
|---|---|---|
| MSM8208 | Snapdragon 208 | Qualcomm |
| MSM8917 | Snapdragon 425 | Qualcomm |
| MSM8920 | Snapdragon 427 | Qualcomm |
| MSM8937 | Snapdragon 430 | Qualcomm |
| MSM8940 | Snapdragon 435 | Qualcomm |
| SM4375 | Snapdragon 4 Gen 1 | Qualcomm |
| MSM8952 | Snapdragon 617 | Qualcomm |
| SDM630 | Snapdragon 630 | Qualcomm |
| SDM636 | Snapdragon 636 | Qualcomm |
| MSM8956 | Snapdragon 650 | Qualcomm |
17 of 17 row(s) shown.
Rows per page
Page 1 of 2
Information reliability
The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.
Timeline
Introduced (est):
Jan 1, 2014
Reported:
Feb 19, 2022
Advisory Published:
Dec 5, 2022
CVE Published:
Dec 13, 2022
Android Patch Level:
Dec 2022
