Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
Conclusion & alert: CVE-2022-22091 is rated Moderate Risk (50.2/100): CVSS High severity, with medium exploitation likelihood (EPSS 0.36%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2025-11-21 | 0.26% | 0.36% | +0.10% |
| 2 | 2025-11-18 | 0.36% | 0.26% | -0.10% |
| 3 | 2025-10-31 | — | 0.36% | — |
Full EPSS history (10 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 7.5 | 3.1 | HIGH |
|
3.9 | 3.6 | [email protected] |
| 7.5 | 3.1 | HIGH |
|
3.9 | 3.6 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| qualcomm | apq8017_firmware | — | cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq8053_firmware | — | cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:* |
| qualcomm | aqt1000_firmware | — | cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:* |
| qualcomm | ar8035_firmware | — | cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:* |
| qualcomm | csrb31024_firmware | — | cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8917_firmware | — | cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8920_firmware | — | cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8940_firmware | — | cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8953_firmware | — | cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6174a_firmware | — | cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6310_firmware | — | cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6335_firmware | — | cpe:2.3:o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6390_firmware | — | cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6391_firmware | — | cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6420_firmware | — | cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6421_firmware | — | cpe:2.3:o:qualcomm:qca6421_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6426_firmware | — | cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6430_firmware | — | cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6431_firmware | — | cpe:2.3:o:qualcomm:qca6431_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6436_firmware | — | cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564au_firmware | — | cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574a_firmware | — | cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6574au_firmware | — | cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6595au_firmware | — | cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6696_firmware | — | cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca8081_firmware | — | cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca8337_firmware | — | cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca9377_firmware | — | cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm2290_firmware | — | cpe:2.3:o:qualcomm:qcm2290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm4290_firmware | — | cpe:2.3:o:qualcomm:qcm4290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm6125_firmware | — | cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs2290_firmware | — | cpe:2.3:o:qualcomm:qcs2290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs410_firmware | — | cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs4290_firmware | — | cpe:2.3:o:qualcomm:qcs4290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs603_firmware | — | cpe:2.3:o:qualcomm:qcs603_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs605_firmware | — | cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs610_firmware | — | cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs6125_firmware | — | cpe:2.3:o:qualcomm:qcs6125_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qualcomm215_firmware | — | cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa415m_firmware | — | cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sa515m_firmware | — | cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sc8180x\+sdx55_firmware | — | cpe:2.3:o:qualcomm:sc8180x\+sdx55_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd_636_firmware | — | cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd_675_firmware | — | cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd_8_gen1_5g_firmware | — | cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd_8cx_gen2_firmware | — | cpe:2.3:o:qualcomm:sd_8cx_gen2_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd429_firmware | — | cpe:2.3:o:qualcomm:sd429_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd439_firmware | — | cpe:2.3:o:qualcomm:sd439_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd450_firmware | — | cpe:2.3:o:qualcomm:sd450_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd460_firmware | — | cpe:2.3:o:qualcomm:sd460_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd480_firmware | — | cpe:2.3:o:qualcomm:sd480_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd632_firmware | — | cpe:2.3:o:qualcomm:sd632_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd660_firmware | — | cpe:2.3:o:qualcomm:sd660_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd662_firmware | — | cpe:2.3:o:qualcomm:sd662_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd665_firmware | — | cpe:2.3:o:qualcomm:sd665_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd670_firmware | — | cpe:2.3:o:qualcomm:sd670_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd675_firmware | — | cpe:2.3:o:qualcomm:sd675_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd678_firmware | — | cpe:2.3:o:qualcomm:sd678_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd680_firmware | — | cpe:2.3:o:qualcomm:sd680_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd690_5g_firmware | — | cpe:2.3:o:qualcomm:sd690_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd695_firmware | — | cpe:2.3:o:qualcomm:sd695_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd710_firmware | — | cpe:2.3:o:qualcomm:sd710_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd712_firmware | — | cpe:2.3:o:qualcomm:sd712_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd720g_firmware | — | cpe:2.3:o:qualcomm:sd720g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd730_firmware | — | cpe:2.3:o:qualcomm:sd730_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd750g_firmware | — | cpe:2.3:o:qualcomm:sd750g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd765_firmware | — | cpe:2.3:o:qualcomm:sd765_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd768_firmware | — | cpe:2.3:o:qualcomm:sd768_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd778_firmware | — | cpe:2.3:o:qualcomm:sd778_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd780_firmware | — | cpe:2.3:o:qualcomm:sd780_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd7c_firmware | — | cpe:2.3:o:qualcomm:sd7c_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd845_firmware | — | cpe:2.3:o:qualcomm:sd845_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd850_firmware | — | cpe:2.3:o:qualcomm:sd850_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd855_firmware | — | cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd865_5g_firmware | — | cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd870_firmware | — | cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd888_firmware | — | cpe:2.3:o:qualcomm:sd888_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd888_5g_firmware | — | cpe:2.3:o:qualcomm:sd888_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdm630_firmware | — | cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx20_firmware | — | cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin | Vendor Advisory |