CVE-2022-22094 : memory corruption in Kernel due to race condition while getting mapping referenc

memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Published 2022-09-16 06:15:10

Updated 2023-04-19 17:10:55

Source Qualcomm, Inc.

View at NVD, CVE.org

Vulnerability category: Memory Corruption

Products affected by CVE-2022-22094

Qualcomm » Sd 8cx Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd 8cx » Version: N/A
Qualcomm » Qca6390 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6390 » Version: N/A
Qualcomm » Aqt1000 Firmware » Version: N/A
cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Aqt1000 » Version: N/A
Qualcomm » Qca6391 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6391 » Version: N/A
Qualcomm » Qca6420 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6420 » Version: N/A
Qualcomm » Qca6430 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6430 » Version: N/A
Qualcomm » Wcd9340 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9340 » Version: N/A
Qualcomm » Wcd9341 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9341 » Version: N/A
Qualcomm » Wcn3998 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3998 » Version: N/A
Qualcomm » Wcn6850 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6850 » Version: N/A
Qualcomm » Wcn6851 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6851 » Version: N/A
Qualcomm » Wcn6855 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6855 » Version: N/A
Qualcomm » Wcn6856 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6856 » Version: N/A
Qualcomm » Wsa8810 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8810 » Version: N/A
Qualcomm » Wsa8815 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8815 » Version: N/A
Qualcomm » Qrb5165 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qrb5165 » Version: N/A
Qualcomm » Qsm8350 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qsm8350_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qsm8350 » Version: N/A
Qualcomm » Sdx55m Firmware » Version: N/A
cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sdx55m » Version: N/A
Qualcomm » Sm7250p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm7250p » Version: N/A
Qualcomm » Qca6421 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6421_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6421 » Version: N/A
Qualcomm » Qca6426 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6426 » Version: N/A
Qualcomm » Qca6431 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6431_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6431 » Version: N/A
Qualcomm » Qca6436 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qca6436 » Version: N/A
Qualcomm » Sd765 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd765_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd765 » Version: N/A
Qualcomm » Sd765g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd765g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd765g » Version: N/A
Qualcomm » Sd768g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd768g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd768g » Version: N/A
Qualcomm » Sd865 5g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd865 5g » Version: N/A
Qualcomm » Sd888 5g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd888_5g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd888 5g » Version: N/A
Qualcomm » Sdxr2 5g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sdxr2 5g » Version: N/A
Qualcomm » Wcd9370 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9370 » Version: N/A
Qualcomm » Wcd9375 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9375 » Version: N/A
Qualcomm » Wcd9380 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9380 » Version: N/A
Qualcomm » Wcd9385 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcd9385 » Version: N/A
Qualcomm » Wcn3991 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn3991_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn3991 » Version: N/A
Qualcomm » Wcn6750 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6750_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6750 » Version: N/A
Qualcomm » Wsa8830 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8830 » Version: N/A
Qualcomm » Wsa8835 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8835 » Version: N/A
Qualcomm » Wcn6740 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn6740_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn6740 » Version: N/A
Qualcomm » Sd870 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd870 » Version: N/A
Qualcomm » Sd888 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd888_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd888 » Version: N/A
Qualcomm » Sd778g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd778g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd778g » Version: N/A
Qualcomm » Sm7325p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm7325p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm7325p » Version: N/A
Qualcomm » Sd780g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd780g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd780g » Version: N/A
Qualcomm » Sm7315 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm7315_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm7315 » Version: N/A
Qualcomm » Qcm6490 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcm6490_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcm6490 » Version: N/A
Qualcomm » Qcs6490 Firmware » Version: N/A
cpe:2.3:o:qualcomm:qcs6490_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qcs6490 » Version: N/A
Qualcomm » Qrb5165n Firmware » Version: N/A
cpe:2.3:o:qualcomm:qrb5165n_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qrb5165n » Version: N/A
Qualcomm » Wcn7850 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn7850 » Version: N/A
Qualcomm » Wcn7851 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wcn7851 » Version: N/A
Qualcomm » Sd 8 Gen1 5g Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm8475 » Version: N/A
Qualcomm » Sd 8cx Gen2 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sd_8cx_gen2_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sd 8cx Gen2 » Version: N/A
Qualcomm » Qrb5165m Firmware » Version: N/A
cpe:2.3:o:qualcomm:qrb5165m_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Qrb5165m » Version: N/A
Qualcomm » Sm7450 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm7450_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm7450 » Version: N/A
Qualcomm » Sm8475 Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm8475_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm8475 » Version: N/A
Qualcomm » Sm8475p Firmware » Version: N/A
cpe:2.3:o:qualcomm:sm8475p_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Sm8475p » Version: N/A
Qualcomm » Wsa8832 Firmware » Version: N/A
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Qualcomm » Wsa8832 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-22094

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 21 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-22094

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.0	HIGH	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H	1.0	5.9	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	Qualcomm, Inc.
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2022-22094

CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2022-22094

https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin

Qualcomm Documentation
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-22094

Products affected by CVE-2022-22094

Exploit prediction scoring system (EPSS) score for CVE-2022-22094

CVSS scores for CVE-2022-22094

CWE ids for CVE-2022-22094

References for CVE-2022-22094