Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Qualcomm
  • Wcn6855 Firmware
  • Sw5100
  • Wsa8830
  • Wcn7850 Firmware
  • Wcd9385 Firmware
  • Wcn7851
  • Wcd9380
  • Wcn6855
  • Sd 8 Gen1 5g Firmware
  • Wsa8830 Firmware
  • Wcn6856
  • Wcn3980
  • Wcn7851 Firmware
  • Sw5100p
  • Wcn3980 Firmware
  • Wcn3988
  • Wcn6851 Firmware
  • Wcn6856 Firmware
  • Wsa8835 Firmware
  • Sd888 5g Firmware
  • Sd888 5g
  • Wcn6851
  • Sw5100 Firmware
  • Wsa8835
  • Sm8475
  • Wcn3988 Firmware
  • Sw5100p Firmware
  • Wcd9380 Firmware
  • Wcd9385
  • Wcn7850
  • Wcn6850 Firmware
  • Wcn6850

Configuration 1 [-]

AND
cpe:2.3:h:qualcomm:sm8475:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:h:qualcomm:sd888_5g:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sd888_5g_firmware:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:h:qualcomm:wcn6855:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:h:qualcomm:wcn6856:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:h:qualcomm:wcn7850:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:h:qualcomm:wcn7851:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
References
Link Resource
https://bugzilla.suse.com/show_bug.cgi?id=1209597
https://security.netapp.com/advisory/ntap-20230616-0001/
https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin Patch Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: qualcomm

Published: 2023-03-07T04:43:57.980Z

Updated: 2024-04-12T16:31:27.661Z

Reserved: 2022-09-12T09:37:28.423Z

Link: CVE-2022-40540

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2023-03-10T21:15:12.887

Modified: 2024-04-12T17:16:40.523

Link: CVE-2022-40540

JSON object: View

cve-icon Redhat Information

No data.

CWE