Vulnerabilities > CVE-2022-33290 - NULL Pointer Dereference vulnerability in Qualcomm products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

qualcomm

CWE-476

NVD

Published: 2023-01-09

Updated: 2023-01-12

Summary

Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed.

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Apq8017 Firmware - Qualcomm Apq8096Au Firmware - Qualcomm Ar8031 Firmware - Qualcomm Csra6620 Firmware - Qualcomm Csra6640 Firmware - Qualcomm Csrb31024 Firmware - Qualcomm Mdm9150 Firmware - Qualcomm Mdm9206 Firmware - Qualcomm Mdm9250 Firmware - Qualcomm Mdm9607 Firmware - Qualcomm Mdm9628 Firmware - Qualcomm Mdm9640 Firmware - Qualcomm Mdm9650 Firmware - Qualcomm Msm8996Au Firmware - Qualcomm Qam8295P Firmware - Qualcomm Qca6174A Firmware - Qualcomm Qca6175A Firmware - Qualcomm Qca6564A Firmware - Qualcomm Qca6564Au Firmware - Qualcomm Qca6574 Firmware - Qualcomm Qca6574A Firmware - Qualcomm Qca6574Au Firmware - Qualcomm Qca6584 Firmware - Qualcomm Qca6584Au Firmware - Qualcomm Qca6595 Firmware - Qualcomm Qca6595Au Firmware - Qualcomm Qca6696 Firmware - Qualcomm Qca9367 Firmware - Qualcomm Qca9377 Firmware - Qualcomm Qcn9074 Firmware - Qualcomm Qcs405 Firmware - Qualcomm Sa415M Firmware - Qualcomm Sa515M Firmware - Qualcomm Sa8295P Firmware - Qualcomm Sd626 Firmware - Qualcomm Sdx20 Firmware - Qualcomm Sdx20M Firmware - Qualcomm Sdx55 Firmware - Qualcomm Wcd9326 Firmware - Qualcomm Wcd9335 Firmware - Qualcomm Wcd9360 Firmware - Qualcomm Wcn3660B Firmware - Qualcomm Wcn3680B Firmware - Qualcomm Wcn3980 Firmware - Qualcomm Wcn3998 Firmware - Qualcomm Wsa8815 Firmware -	46
Hardware	Qualcomm Qualcomm Apq8017 - Qualcomm Apq8096Au - Qualcomm Ar8031 - Qualcomm Csra6620 - Qualcomm Csra6640 - Qualcomm Csrb31024 - Qualcomm Mdm9150 - Qualcomm Mdm9206 - Qualcomm Mdm9250 - Qualcomm Mdm9607 - Qualcomm Mdm9628 - Qualcomm Mdm9640 - Qualcomm Mdm9650 - Qualcomm Msm8996Au - Qualcomm Qam8295P - Qualcomm Qca6174A - Qualcomm Qca6175A - Qualcomm Qca6564A - Qualcomm Qca6564Au - Qualcomm Qca6574 - Qualcomm Qca6574A - Qualcomm Qca6574Au - Qualcomm Qca6584 - Qualcomm Qca6584Au - Qualcomm Qca6595 - Qualcomm Qca6595Au - Qualcomm Qca6696 - Qualcomm Qca9367 - Qualcomm Qca9377 - Qualcomm Qcn9074 - Qualcomm Qcs405 - Qualcomm Sa415M - Qualcomm Sa515M - Qualcomm Sa8295P - Qualcomm Sd626 - Qualcomm Sdx20 - Qualcomm Sdx20M - Qualcomm Sdx55 - Qualcomm Wcd9326 - Qualcomm Wcd9335 - Qualcomm Wcd9360 - Qualcomm Wcn3660B - Qualcomm Wcn3680B - Qualcomm Wcn3980 - Qualcomm Wcn3998 - Qualcomm Wsa8815 -	46

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin