CVE-2022-25745 — Always-Incorrect Control Flow Implementation in INC Snapdragon
Severity
9.8CRITICALNVD
EPSS
0.3%
top 44.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 13
Description
Memory corruption in modem due to improper input validation while handling the incoming CoAP message
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9
Affected Packages1 packages
🔴Vulnerability Details
1GHSA▶
GHSA-3288-5p9j-wphm: Memory corruption in modem due to improper input validation while handling the incoming CoAP message↗2023-04-13