CVE-2022-33287

Q: What is the severity of CVE-2022-33287?

CVE-2022-33287 has a CVSS score of 8.2 (HIGH). This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read in IPv6 packet processing. It affects devices with Qualcomm modems that handle IPv6 traffic. Successful exploitation could leak modem memory contents including potentially sensitive data.

8.2 HIGH

📋 TL;DR

This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read in IPv6 packet processing. It affects devices with Qualcomm modems that handle IPv6 traffic. Successful exploitation could leak modem memory contents including potentially sensitive data.

💻 Affected Systems

Products:

Qualcomm modem chipsets

Versions: Specific affected versions not publicly detailed in advisory

Operating Systems: Any OS using affected Qualcomm modem chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with Qualcomm modems that process IPv6 packets. Exact chipset models not specified in public advisory.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete modem memory disclosure including sensitive data like encryption keys, IMSI numbers, or device identifiers, potentially enabling further attacks.

🟠

Likely Case

Information disclosure of modem memory contents, potentially exposing device identifiers, network configuration data, or other sensitive information.

🟢

If Mitigated

Limited impact if proper network segmentation and monitoring are in place, though information disclosure still occurs.

🌐 Internet-Facing: HIGH - IPv6 packets can be sent from the internet to vulnerable modems, potentially exposing them to remote attackers.

🏢 Internal Only: MEDIUM - Internal attackers could exploit this if they can send specially crafted IPv6 packets to vulnerable devices.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending specially crafted IPv6 packets to vulnerable modem. No public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm security bulletin for specific patched versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

Restart Required: Yes

Instructions:

1. Check Qualcomm security bulletin for affected chipset details. 2. Contact device manufacturer for firmware updates. 3. Apply modem firmware update. 4. Reboot device.

🔧 Temporary Workarounds

Disable IPv6

all

Disable IPv6 support on affected devices to prevent exploitation

Platform-specific IPv6 disable commands vary by OS

Network filtering

all

Filter IPv6 packets at network perimeter

iptables -A INPUT -p ipv6 -j DROP (Linux)
netsh advfirewall firewall add rule name="Block IPv6" dir=in action=block protocol=41 (Windows)

🧯 If You Can't Patch

Implement strict network segmentation to isolate vulnerable devices
Deploy network monitoring for anomalous IPv6 traffic patterns

🔍 How to Verify

Check if Vulnerable:

Check modem firmware version against Qualcomm security bulletin. No direct vulnerability check available.

Check Version:

Device-specific modem firmware check commands vary by manufacturer

Verify Fix Applied:

Verify modem firmware has been updated to version listed in Qualcomm security bulletin

📡 Detection & Monitoring

Log Indicators:

Unusual modem error logs
Memory access violation logs in modem subsystem

Network Indicators:

Malformed IPv6 packets targeting modem interfaces
Unusual IPv6 traffic patterns

SIEM Query:

source="modem_logs" AND (error OR violation) AND ipv6

📊 Metadata

CVE ID: CVE-2022-33287

CVSS v3 Score: 8.2 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

CWE: CWE-126

Published: April 13, 2023

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

9205 Lte Modem Firmware by Qualcomm

9206 Lte Modem Firmware by Qualcomm

9207 Lte Modem Firmware by Qualcomm

Ar8031 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Home Hub 100 Platform Firmware by Qualcomm

Mdm8207 Firmware by Qualcomm

Qca4004 Firmware by Qualcomm

Qca4010 Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qcs400 Firmware by Qualcomm

Qts110 Firmware by Qualcomm

Snapdragon 1100 Wearable Platform Firmware by Qualcomm

Snapdragon 1200 Wearable Platform Firmware by Qualcomm

Snapdragon Ar2 Gen 1 Platform Firmware by Qualcomm

Snapdragon Wear 1300 Platform Firmware by Qualcomm

Snapdragon X5 Lte Modem Firmware by Qualcomm

Ssg2115p Firmware by Qualcomm

Ssg2125p Firmware by Qualcomm

Sxr1230p Firmware by Qualcomm

Sxr2230p Firmware by Qualcomm

Wcd9306 Firmware by Qualcomm

Wcd9330 Firmware by Qualcomm

Wcd9335 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3980 Firmware by Qualcomm

Wcn3998 Firmware by Qualcomm

Wcn3999 Firmware by Qualcomm

Wcn685x 1 Firmware by Qualcomm

Wcn685x 5 Firmware by Qualcomm

Wcn785x 1 Firmware by Qualcomm

Wcn785x 5 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8832 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm