CVE-2022-33274

CVSS V2 None CVSS V3 None
Description
Memory corruption in android core due to improper validation of array index while returning feature ids after license authentication.
Overview
  • CVE ID
  • CVE-2022-33274
  • Assigner
  • product-security@qualcomm.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-09T08:15:12
  • Last Modified Date
  • 2023-01-12T21:00:00
Weakness Enumerations
CWE URL
CWE-129 http://cwe.mitre.org/data/definitions/129.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:qam8295p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa8145p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:qualcomm:sa8295p:-:*:*:*:*:*:*:* 0 OR
References
Reference URL Reference Tags
https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2022-33274
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-33274
History
Created Old Value New Value Data Type Notes
2023-01-09 08:20:35 Added to TrackCVE
2023-01-09 13:18:12 2023-01-09T12:40:16 CVE Modified Date updated
2023-01-09 13:18:12 Received Awaiting Analysis Vulnerability Status updated
2023-01-12 05:16:34 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-12 21:14:55 2023-01-12T21:00:00 CVE Modified Date updated
2023-01-12 21:14:55 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-12 21:14:55 Weakness Enumeration new
2023-01-12 21:14:58 CPE Information updated