Vulnerability identifier: #VU67041
Vulnerability risk: Medium
CVSSv3.1: 5.9 [CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-190
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
APQ8009
Hardware solutions /
Firmware
APQ8017
Hardware solutions /
Firmware
APQ8053
Hardware solutions /
Firmware
APQ8096AU
Hardware solutions /
Firmware
MDM9150
Hardware solutions /
Firmware
MDM9607
Hardware solutions /
Firmware
MDM9640
Hardware solutions /
Firmware
MDM9650
Hardware solutions /
Firmware
QCA6174A
Hardware solutions /
Firmware
QCA6574AU
Hardware solutions /
Firmware
QCA9377
Hardware solutions /
Firmware
QCA9379
Hardware solutions /
Firmware
QCS405
Hardware solutions /
Firmware
SA6155P
Hardware solutions /
Firmware
SDX20
Hardware solutions /
Firmware
SDX55
Hardware solutions /
Firmware
AR8031
Mobile applications /
Mobile firmware & hardware
CSRA6620
Mobile applications /
Mobile firmware & hardware
CSRA6640
Mobile applications /
Mobile firmware & hardware
CSRB31024
Mobile applications /
Mobile firmware & hardware
MDM9250
Mobile applications /
Mobile firmware & hardware
MDM9626
Mobile applications /
Mobile firmware & hardware
MDM9628
Mobile applications /
Mobile firmware & hardware
QCA4020
Mobile applications /
Mobile firmware & hardware
QCA6564A
Mobile applications /
Mobile firmware & hardware
QCA6564AU
Mobile applications /
Mobile firmware & hardware
QCA6574
Mobile applications /
Mobile firmware & hardware
QCA6574A
Mobile applications /
Mobile firmware & hardware
QCA6584
Mobile applications /
Mobile firmware & hardware
QCA6595
Mobile applications /
Mobile firmware & hardware
QCA6595AU
Mobile applications /
Mobile firmware & hardware
QCA6696
Mobile applications /
Mobile firmware & hardware
QCA9367
Mobile applications /
Mobile firmware & hardware
SA415M
Mobile applications /
Mobile firmware & hardware
SA515M
Mobile applications /
Mobile firmware & hardware
SA6155
Mobile applications /
Mobile firmware & hardware
SA8155
Mobile applications /
Mobile firmware & hardware
SA8155P
Mobile applications /
Mobile firmware & hardware
SA8195P
Mobile applications /
Mobile firmware & hardware
WCD9326
Mobile applications /
Mobile firmware & hardware
WCD9335
Mobile applications /
Mobile firmware & hardware
WCD9360
Mobile applications /
Mobile firmware & hardware
WCN3610
Mobile applications /
Mobile firmware & hardware
WCN3615
Mobile applications /
Mobile firmware & hardware
WCN3660B
Mobile applications /
Mobile firmware & hardware
WCN3680B
Mobile applications /
Mobile firmware & hardware
WCN3980
Mobile applications /
Mobile firmware & hardware
WCN3998
Mobile applications /
Mobile firmware & hardware
WCN3999
Mobile applications /
Mobile firmware & hardware
WSA8810
Mobile applications /
Mobile firmware & hardware
WSA8815
Mobile applications /
Mobile firmware & hardware
Vendor: Qualcomm
Description
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to integer overflow in Automotive Connectivity component when processing HFP-UNIT profile. A attacker with physical proximity to device can send specially crafted data to the system, trigger an integer overflow and execute arbitrary code.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
APQ8009: All versions
APQ8017: All versions
APQ8053: All versions
APQ8096AU: All versions
AR8031: All versions
CSRA6620: All versions
CSRA6640: All versions
CSRB31024: All versions
MDM9150: All versions
MDM9250: All versions
MDM9607: All versions
MDM9626: All versions
MDM9628: All versions
MDM9640: All versions
MDM9650: All versions
QCA4020: All versions
QCA6174A: All versions
QCA6564A: All versions
QCA6564AU: All versions
QCA6574: All versions
QCA6574A: All versions
QCA6574AU: All versions
QCA6584: All versions
QCA6595: All versions
QCA6595AU: All versions
QCA6696: All versions
QCA9367: All versions
QCA9377: All versions
QCA9379: All versions
QCS405: All versions
SA415M: All versions
SA515M: All versions
SA6155: All versions
SA6155P: All versions
SA8155: All versions
SA8155P: All versions
SA8195P: All versions
SDX20: All versions
SDX55: All versions
WCD9326: All versions
WCD9335: All versions
WCD9360: All versions
WCN3610: All versions
WCN3615: All versions
WCN3660B: All versions
WCN3680B: All versions
WCN3980: All versions
WCN3998: All versions
WCN3999: All versions
WSA8810: All versions
WSA8815: All versions
External links
http://docs.qualcomm.com/product/publicresources/securitybulletin/september-2022-bulletin.html
Can this vulnerability be exploited remotely?
No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.