CVE-2022-33253 — Out-of-bounds Read in INC Snapdragon

Severity

5.5MEDIUMNVD

EPSS

0.2%

top 51.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJan 9

Description

Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

▶CVEListV5qualcomm_inc/snapdragon161 versions+160

GHSA

GHSA-qmxp-f2px-7fcq: Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames↗2023-01-09

▶

Android

CVE-2022-33253: Closed-source component↗2023-01-01

▶