Denial of service while processing fastboot flash command on mmc due to buffer over read
Conclusion & alert: CVE-2022-22079 is rated Low Risk (31.8/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.16%). Mandatory action: Monitor for updates and reassess as exploit intelligence or EPSS changes.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-01-11 | 0.05% | 0.16% | +0.11% |
| 2 | 2024-07-29 | 0.04% | 0.05% | +0.01% |
| 3 | 2023-03-07 | — | 0.04% | — |
Full EPSS history (4 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 4.6 | 3.1 | MEDIUM |
|
0.9 | 3.6 | [email protected] |
| 4.6 | 3.1 | MEDIUM |
|
0.9 | 3.6 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| qualcomm | apq8009_firmware | — | cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq8009w_firmware | — | cpe:2.3:o:qualcomm:apq8009w_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq8064au_firmware | — | cpe:2.3:o:qualcomm:apq8064au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq8096au_firmware | — | cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9150_firmware | — | cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9250_firmware | — | cpe:2.3:o:qualcomm:mdm9250_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9628_firmware | — | cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9650_firmware | — | cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8108_firmware | — | cpe:2.3:o:qualcomm:msm8108_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8208_firmware | — | cpe:2.3:o:qualcomm:msm8208_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8209_firmware | — | cpe:2.3:o:qualcomm:msm8209_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8608_firmware | — | cpe:2.3:o:qualcomm:msm8608_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8909w_firmware | — | cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8996au_firmware | — | cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca4020_firmware | — | cpe:2.3:o:qualcomm:qca4020_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6174a_firmware | — | cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564a_firmware | — | cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564au_firmware | — | cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574_firmware | — | cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574a_firmware | — | cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574au_firmware | — | cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6584au_firmware | — | cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca9377_firmware | — | cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca9379_firmware | — | cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qualcomm215_firmware | — | cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd210_firmware | — | cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd429_firmware | — | cpe:2.3:o:qualcomm:sd429_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd625_firmware | — | cpe:2.3:o:qualcomm:sd625_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd626_firmware | — | cpe:2.3:o:qualcomm:sd626_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd835_firmware | — | cpe:2.3:o:qualcomm:sd835_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sda429w_firmware | — | cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm429w_firmware | — | cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdw2500_firmware | — | cpe:2.3:o:qualcomm:sdw2500_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx20_firmware | — | cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx20m_firmware | — | cpe:2.3:o:qualcomm:sdx20m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9326_firmware | — | cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9335_firmware | — | cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3610_firmware | — | cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3615_firmware | — | cpe:2.3:o:qualcomm:wcn3615_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3620_firmware | — | cpe:2.3:o:qualcomm:wcn3620_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3660b_firmware | — | cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3680_firmware | — | cpe:2.3:o:qualcomm:wcn3680_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3680b_firmware | — | cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3980_firmware | — | cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3990_firmware | — | cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8815_firmware | — | cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin | Patch Vendor Advisory |