Login Sign Up

CVE-2022-22090

8.4 HIGH

📋 TL;DR

This is a use-after-free vulnerability in Qualcomm Snapdragon audio components that allows memory corruption. Attackers could potentially execute arbitrary code or cause denial of service on affected devices. It affects Snapdragon-based mobile, compute, and connectivity platforms.

💻 Affected Systems

Products:
  • Snapdragon Compute platforms
  • Snapdragon Connectivity platforms
  • Snapdragon Mobile platforms
Versions: Specific Snapdragon chipset versions (check Qualcomm advisory for exact models)
Operating Systems: Android, Linux-based systems using affected Snapdragon chips
Default Config Vulnerable: ⚠️ Yes
Notes: Affects devices with specific Qualcomm audio components. Exact chipset models listed in Qualcomm's June 2022 bulletin.

📦 What is this software?

Sd 8 Gen1 5g Firmware by Qualcomm

View all CVEs affecting Sd 8 Gen1 5g Firmware →

Sd865 5g Firmware by Qualcomm

View all CVEs affecting Sd865 5g Firmware →

Sd888 5g Firmware by Qualcomm

View all CVEs affecting Sd888 5g Firmware →

Sdx65 Firmware by Qualcomm

View all CVEs affecting Sdx65 Firmware →

Sm7450 Firmware by Qualcomm

View all CVEs affecting Sm7450 Firmware →

Sm8475 Firmware by Qualcomm

View all CVEs affecting Sm8475 Firmware →

Sm8475p Firmware by Qualcomm

View all CVEs affecting Sm8475p Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcn6750 Firmware by Qualcomm

View all CVEs affecting Wcn6750 Firmware →

Wcn6850 Firmware by Qualcomm

View all CVEs affecting Wcn6850 Firmware →

Wcn6851 Firmware by Qualcomm

View all CVEs affecting Wcn6851 Firmware →

Wcn6855 Firmware by Qualcomm

View all CVEs affecting Wcn6855 Firmware →

Wcn6856 Firmware by Qualcomm

View all CVEs affecting Wcn6856 Firmware →

Wcn7850 Firmware by Qualcomm

View all CVEs affecting Wcn7850 Firmware →

Wcn7851 Firmware by Qualcomm

View all CVEs affecting Wcn7851 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wsa8830 Firmware by Qualcomm

View all CVEs affecting Wsa8830 Firmware →

Wsa8832 Firmware by Qualcomm

View all CVEs affecting Wsa8832 Firmware →

Wsa8835 Firmware by Qualcomm

View all CVEs affecting Wsa8835 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with kernel privileges leading to complete device compromise

🟠

Likely Case

Application crash or denial of service affecting audio functionality

🟢

If Mitigated

Limited impact with proper memory protections and exploit mitigations

🌐 Internet-Facing: MEDIUM - Requires specific audio processing scenarios but could be triggered remotely
🏢 Internal Only: HIGH - Local applications could exploit this to escalate privileges

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: HIGH

Exploitation requires triggering specific audio buffer management scenarios. No public exploits known as of analysis.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Vendor-specific firmware updates (check device manufacturer)

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/june-2022-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for firmware updates 2. Apply Qualcomm-provided patches through OEM updates 3. Reboot device after update

🔧 Temporary Workarounds

Disable vulnerable audio components

all

Disable or restrict access to affected audio subsystems if not required

Device-specific configuration required

🧯 If You Can't Patch

  • Implement strict application sandboxing to limit impact
  • Deploy runtime memory protection solutions if available

🔍 How to Verify

Check if Vulnerable:

Check device chipset model and firmware version against Qualcomm advisory

Check Version:

Device-specific commands (e.g., Android: getprop ro.bootloader or check Settings > About)

Verify Fix Applied:

Verify firmware version has been updated to patched version from manufacturer

📡 Detection & Monitoring

Log Indicators:

  • Audio service crashes
  • Kernel panic logs related to audio drivers
  • Memory corruption warnings

Network Indicators:

  • Unusual audio-related network traffic if exploited

SIEM Query:

Search for: (event_category="kernel" AND message="audio" AND ("crash" OR "panic" OR "corruption"))

📊 Metadata

CVE ID: CVE-2022-22090
CVSS v3 Score: 8.4 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-416
Published: June 14, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-22090, you might also want to check these:

CVE-2025-24085 10.0

This CVE describes a use-after-free vulnerability (CWE-416) in Apple operating systems that allows m...

Same vulnerability type (CWE-416)
CVE-2024-43102 10.0

This CVE describes a use-after-free vulnerability in FreeBSD's umtx (user mutex) subsystem where con...

Same vulnerability type (CWE-416)
CVE-2021-33796 10.0

CVE-2021-33796 is a use-after-free vulnerability in MuJS's regexp source property access that can le...

Same vulnerability type (CWE-416)