CVE-2022-33295 – This vulnerability allows attackers to read sen... (How to Fix)

Q: What is the severity of CVE-2022-33295?

CVE-2022-33295 has a CVSS score of 8.2 (HIGH). This vulnerability allows attackers to read sensitive information from memory in Qualcomm modems due to a buffer over-read while parsing WMS messages. It affects devices with vulnerable Qualcomm modem chipsets, potentially exposing device data to malicious actors.

📋 TL;DR

This vulnerability allows attackers to read sensitive information from memory in Qualcomm modems due to a buffer over-read while parsing WMS messages. It affects devices with vulnerable Qualcomm modem chipsets, potentially exposing device data to malicious actors.

💻 Affected Systems

Products:

Qualcomm modem chipsets

Versions: Specific affected chipset versions not publicly detailed in bulletin

Operating Systems: Android and other OS using Qualcomm modems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with vulnerable Qualcomm modem firmware; exact device models not specified in public bulletin.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete information disclosure including sensitive modem data, IMEI, location information, and potentially adjacent memory contents leading to further exploitation.

🟠

Likely Case

Limited information disclosure of modem-related data that could be used for reconnaissance or tracking purposes.

🟢

If Mitigated

No impact if patched; limited exposure if network segmentation prevents modem access.

🌐 Internet-Facing: MEDIUM - Requires sending specially crafted WMS messages to modem interface, which may be accessible via cellular network.

🏢 Internal Only: LOW - Typically requires local access or cellular network proximity to exploit.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending malformed WMS messages to modem interface; no public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm April 2023 security bulletin for specific patched versions

Vendor Advisory: https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin

Restart Required: Yes

Instructions:

1. Check with device manufacturer for firmware updates. 2. Apply Qualcomm-provided modem firmware patches. 3. Reboot device after update.

🔧 Temporary Workarounds

Network segmentation

all

Isolate modem interfaces from untrusted networks

Disable unnecessary services

all

Disable WMS message processing if not required

🧯 If You Can't Patch

Implement strict network access controls to modem interfaces
Monitor for unusual modem communication patterns

🔍 How to Verify

Check if Vulnerable:

Check modem firmware version against Qualcomm security bulletin; no simple command available.

Check Version:

Device-specific commands vary; typically in Android: Settings > About Phone > Baseband Version

Verify Fix Applied:

Verify modem firmware has been updated to April 2023 or later security patch level.

📡 Detection & Monitoring

Log Indicators:

Unusual WMS message parsing errors in modem logs
Memory access violations in modem subsystem

Network Indicators:

Malformed WMS messages to modem interfaces
Unexpected modem communication patterns

SIEM Query:

Search for modem subsystem errors or memory violation events in device logs

📊 Metadata

CVE ID: CVE-2022-33295

CVSS v3 Score: 8.2 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

CWE: CWE-126

Published: April 13, 2023

Last Updated: November 21, 2024

🔗 References

https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin Vendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-33295, you might also want to check these:

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Mdm8207 Firmware by Qualcomm

Mdm9205 Firmware by Qualcomm

Mdm9206 Firmware by Qualcomm

Mdm9207 Firmware by Qualcomm

Qca4004 Firmware by Qualcomm

Qts110 Firmware by Qualcomm

Snapdragon Wear 1100 Firmware by Qualcomm

Snapdragon Wear 1200 Firmware by Qualcomm

Snapdragon Wear 1300 Firmware by Qualcomm

Snapdragon X5 Lte Modem Firmware by Qualcomm

Wcd9306 Firmware by Qualcomm

Wcd9330 Firmware by Qualcomm