BDU:2025-09987
Уязвимость микропрограммного обеспечения встраиваемых плат Qualcomm, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю раскрыть защищаемую информацию
📄 Описание
Уязвимость микропрограммного обеспечения встраиваемых плат Qualcomm связана с выходом операции за границы буфера в памяти. Эксплуатация уязвимости может позволить нарушителю раскрыть защищаемую информацию
🖥️ Уязвимое ПО
Qualcomm Technologies Inc.
Наименование ПО: SD 8 Gen1 5G, WCD9380, WSA8830, WSA8835, AQT1000, SD730, SD660, SD 670, SD835, SD855, Snapdragon 429 Mobile Platform, Snapdragon 835 Mobile PC Platform, Snapdragon 855 Mobile Platform, Snapdragon 855+/860 Mobile Platform (SM8150-AC), Snapdragon 865 5G Mobile Platform, Snapdragon 865+ 5G Mobile Platform (SM8250-AB), Snapdragon 870 5G Mobile Platform (SM8250-AC), Snapdragon W5+ Gen 1 Wearable Platform, Snapdragon X55 5G Modem-RF System, Snapdragon XR2 5G Platform, Snapdragon X50 5G Modem-RF System, Snapdragon 8 Gen 1 Mobile Platform, Snapdragon 888 5G Mobile Platform, Snapdragon 888+ 5G Mobile Platform (SM8350-AC), Snapdragon 4 Gen 1 Mobile Platform, Snapdragon 460 Mobile Platform, Snapdragon 480 5G Mobile Platform, Snapdragon 480+ 5G Mobile Platform (SM4350-AC), Snapdragon 662 Mobile Platform, Snapdragon 670 Mobile Platform, Snapdragon 675 Mobile Platform, Snapdragon 678 Mobile Platform (SM6150-AC), Snapdragon 680 4G Mobile Platform, Snapdragon 685 4G Mobile Platform (SM6225-AD), Snapdragon 695 5G Mobile Platform, Snapdragon 720G Mobile Platform, Snapdragon 730 Mobile Platform (SM7150-AA), Snapdragon 730G Mobile Platform (SM7150-AB), Snapdragon 732G Mobile Platform (SM7150-AC), Snapdragon 778G 5G Mobile Platform, Snapdragon 778G+ 5G Mobile Platform (SM7325-AE), Snapdragon 780G 5G Mobile Platform, Snapdragon 782G Mobile Platform (SM7325-AF), Snapdragon 8+ Gen 1 Mobile Platform, Snapdragon 845 Mobile Platform, Snapdragon XR2+ Gen 1 Platform, 205 Mobile Platform, 215 Mobile Platform, Qualcomm® Video Collaboration VC1 Platform, Qualcomm® Video Collaboration VC3 Platform, Snapdragon 8 Gen 2 Mobile Platform, Snapdragon 8+ Gen 2 Mobile Platform, SA4155P, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6678AQ, SD626, Snapdragon 710 Mobile Platform, Snapdragon 8 Gen 3 Mobile Platform, Snapdragon XR1 Platform, SXR1120, Vision Intelligence 100 Platform (APQ8053-AA), Vision Intelligence 200 Platform (APQ8053-AC), SA4150P, SA8775P, SA7775P, SA8620P, SA8650P, SM6370, TalynPlus, QCA6688AQ, QCS9100, FastConnect 6700, FastConnect 6900, FastConnect 7800, QCS4490, WCD9370, WCD9390, WCD9395, WCN3950, WCN6740, WSA8810, WSA8815, WSA8832, WSA8840, WSA8845, WSA8845H, QAM8255P, QAM8295P, QAM8650P, QAM8775P, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA6797AQ, QCM5430, QCM6490, QCM8550, QCN9274, QCS410, QCS5430, QCS610, QCS6490, QCS8550, SA6155P, SA7255P, SA8155P, SA8195P, SA8255P, SA8295P, SA9000P, SDX55, SM8550P, WCD9340, WCD9341, WCD9375, WCD9385, WCN3980, WCN3988, FastConnect 6200, FastConnect 6800, QCA6391, QCA6420, QCA6426, QCA6430, QCA6436, QCM6125, QCS6125, QCS615, QCS8300, SA6145P, SA6150P, SA6155, SA8145P, SA8150P, SA8155, SD865 5G, SD888, SDM429W, SG4150P, SM4125, SM6250, SM7315, SM7325P, Smart Display 200 Platform (APQ5053-AA), Snapdragon 4 Gen 2 Mobile Platform, Snapdragon 625 Mobile Platform, Snapdragon 626 Mobile Platform, Snapdragon 7c+ Gen 3 Compute, SW5100, SW5100P, SXR2130, WCD9326, WCD9335, WCN3610, WCN3615, WCN3620, WCN3660B, WCN3680B, WCN3910, WCN3990, APQ8064AU, Robotics RB3 Platform, Snapdragon 660 Mobile Platform, Snapdragon 820 Automotive Platform, Vision Intelligence 300 Platform, Vision Intelligence 400 Platform, QCA6310, QCA6335, QCA6564A, MSM8996AU, QCA6320, QCA6564, Snapdragon 210 Processor, Snapdragon 212 Mobile Platform
Версия ПО: - (SD 8 Gen1 5G), - (WCD9380), - (WSA8830), - (WSA8835), - (AQT1000), - (SD730), - (SD660), - (SD 670), - (SD835), - (SD855), - (Snapdragon 429 Mobile Platform), - (Snapdragon 835 Mobile PC Platform), - (Snapdragon 855 Mobile Platform), - (Snapdragon 855+/860 Mobile Platform (SM8150-AC)), - (Snapdragon 865 5G Mobile Platform), - (Snapdragon 865+ 5G Mobile Platform (SM8250-AB)), - (Snapdragon 870 5G Mobile Platform (SM8250-AC)), - (Snapdragon W5+ Gen 1 Wearable Platform), - (Snapdragon X55 5G Modem-RF System), - (Snapdragon XR2 5G Platform), - (Snapdragon X50 5G Modem-RF System), - (Snapdragon 8 Gen 1 Mobile Platform), - (Snapdragon 888 5G Mobile Platform), - (Snapdragon 888+ 5G Mobile Platform (SM8350-AC)), - (Snapdragon 4 Gen 1 Mobile Platform), - (Snapdragon 460 Mobile Platform), - (Snapdragon 480 5G Mobile Platform), - (Snapdragon 480+ 5G Mobile Platform (SM4350-AC)), - (Snapdragon 662 Mobile Platform), - (Snapdragon 670 Mobile Platform), - (Snapdragon 675 Mobile Platform), - (Snapdragon 678 Mobile Platform (SM6150-AC)), - (Snapdragon 680 4G Mobile Platform), - (Snapdragon 685 4G Mobile Platform (SM6225-AD)), - (Snapdragon 695 5G Mobile Platform), - (Snapdragon 720G Mobile Platform), - (Snapdragon 730 Mobile Platform (SM7150-AA)), - (Snapdragon 730G Mobile Platform (SM7150-AB)), - (Snapdragon 732G Mobile Platform (SM7150-AC)), - (Snapdragon 778G 5G Mobile Platform), - (Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)), - (Snapdragon 780G 5G Mobile Platform), - (Snapdragon 782G Mobile Platform (SM7325-AF)), - (Snapdragon 8+ Gen 1 Mobile Platform), - (Snapdragon 845 Mobile Platform), - (Snapdragon XR2+ Gen 1 Platform), - (205 Mobile Platform), - (215 Mobile Platform), - (Qualcomm® Video Collaboration VC1 Platform), - (Qualcomm® Video Collaboration VC3 Platform), - (Snapdragon 8 Gen 2 Mobile Platform), - (Snapdragon 8+ Gen 2 Mobile Platform), - (SA4155P), - (QCA6564AU), - (QCA6574), - (QCA6574A), - (QCA6574AU), - (QCA6678AQ), - (SD626), - (Snapdragon 710 Mobile Platform), - (Snapdragon 8 Gen 3 Mobile Platform), - (Snapdragon XR1 Platform), - (SXR1120), - (Vision Intelligence 100 Platform (APQ8053-AA)), - (Vision Intelligence 200 Platform (APQ8053-AC)), - (SA4150P), - (SA8775P), - (SA7775P), - (SA8620P), - (SA8650P), - (SM6370), - (TalynPlus), - (QCA6688AQ), - (QCS9100), - (FastConnect 6700), - (FastConnect 6900), - (FastConnect 7800), - (QCS4490), - (WCD9370), - (WCD9390), - (WCD9395), - (WCN3950), - (WCN6740), - (WSA8810), - (WSA8815), - (WSA8832), - (WSA8840), - (WSA8845), - (WSA8845H), - (QAM8255P), - (QAM8295P), - (QAM8650P), - (QAM8775P), - (QCA6595), - (QCA6595AU), - (QCA6696), - (QCA6698AQ), - (QCA6797AQ), - (QCM5430), - (QCM6490), - (QCM8550), - (QCN9274), - (QCS410), - (QCS5430), - (QCS610), - (QCS6490), - (QCS8550), - (SA6155P), - (SA7255P), - (SA8155P), - (SA8195P), - (SA8255P), - (SA8295P), - (SA9000P), - (SDX55), - (SM8550P), - (WCD9340), - (WCD9341), - (WCD9375), - (WCD9385), - (WCN3980), - (WCN3988), - (FastConnect 6200), - (FastConnect 6800), - (QCA6391), - (QCA6420), - (QCA6426), - (QCA6430), - (QCA6436), - (QCM6125), - (QCS6125), - (QCS615), - (QCS8300), - (SA6145P), - (SA6150P), - (SA6155), - (SA8145P), - (SA8150P), - (SA8155), - (SD865 5G), - (SD888), - (SDM429W), - (SG4150P), - (SM4125), - (SM6250), - (SM7315), - (SM7325P), - (Smart Display 200 Platform (APQ5053-AA)), - (Snapdragon 4 Gen 2 Mobile Platform), - (Snapdragon 625 Mobile Platform), - (Snapdragon 626 Mobile Platform), - (Snapdragon 7c+ Gen 3 Compute), - (SW5100), - (SW5100P), - (SXR2130), - (WCD9326), - (WCD9335), - (WCN3610), - (WCN3615), - (WCN3620), - (WCN3660B), - (WCN3680B), - (WCN3910), - (WCN3990), - (APQ8064AU), - (Robotics RB3 Platform), - (Snapdragon 660 Mobile Platform), - (Snapdragon 820 Automotive Platform), - (Vision Intelligence 300 Platform), - (Vision Intelligence 400 Platform), - (QCA6310), - (QCA6335), - (QCA6564A), - (MSM8996AU), - (QCA6320), - (QCA6564), - (Snapdragon 210 Processor), - (Snapdragon 212 Mobile Platform)
Тип ПО: Микропрограммный код, Сетевое средство, Сетевое программное средство, Микропрограммный код аппаратных компонентов компьютера
ОС / платформа: —
⚙️ Технические сведения
📊 CVSS
CVSS 2.0
AV:N/AC:L/Au:N/C:C/I:N/A:P
CVSS 3.0
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
⚠️ Уровень опасности
Высокий уровень опасности (базовая оценка CVSS 2.0 составляет 8,5)
Высокий уровень опасности (базовая оценка CVSS 3.1 составляет 8,2)
Высокий уровень опасности (базовая оценка CVSS 3.1 составляет 8,2)
🔗 Источники и меры
🏷️ Идентификаторы
📅 Даты