CVE-2022-22078

MEDIUM Year: 2022
CVSS v3 Score
4.6
Medium
Weakness Type
CWE-190
View all →

Vulnerability Description

Denial of service in BOOT when partition size for a particular partition is requested due to integer overflow when blocks are calculated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

Related Vulnerabilities

CVE-2022-20423

MEDIUM
CVSS:4.6(Medium)

In rndis_set_response of rndis.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious USB device is attached with no add...

CWE-1902022

CVE-2024-40635

MEDIUM
CVSS:4.6(Medium)

containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maxim...

CWE-1902024

CVE-2025-48174

MEDIUM
CVSS:4.5(Medium)

In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.

CWE-1902025

CVE-2025-48175

MEDIUM
CVSS:4.5(Medium)

In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes.

CWE-1902025

CVE-2017-0603

MEDIUM
CVSS:4.7(Medium)

A denial of service vulnerability in libstagefright in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as Moderate because it...

CWE-1902017

CVE-2016-6888

MEDIUM
CVSS:4.4(Medium)

Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the maxi...

CWE-1902016