Memory corruption in synx driver due to use-after-free condition in the synx driver due to accessing object handles without acquiring lock in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
Conclusion & alert: CVE-2022-22095 is rated Moderate Risk (40.7/100): CVSS High severity, with low exploitation likelihood (EPSS 0.07%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2025-03-17 | 0.04% | 0.07% | +0.03% |
| 2 | 2023-03-07 | 0.89% | 0.04% | -0.84% |
| 3 | 2022-09-16 | — | 0.89% | — |
Full EPSS history (3 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 8.4 | 3.1 | HIGH |
|
2.5 | 5.9 | [email protected] |
| 7.8 | 3.1 | HIGH |
|
1.8 | 5.9 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| qualcomm | apq8053_firmware | — | cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:* |
| qualcomm | msm8953_firmware | — | cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6390_firmware | — | cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6391_firmware | — | cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6426_firmware | — | cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6436_firmware | — | cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm2290_firmware | — | cpe:2.3:o:qualcomm:qcm2290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcm4290_firmware | — | cpe:2.3:o:qualcomm:qcm4290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs2290_firmware | — | cpe:2.3:o:qualcomm:qcs2290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs4290_firmware | — | cpe:2.3:o:qualcomm:qcs4290_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qrb5165_firmware | — | cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qrb5165m_firmware | — | cpe:2.3:o:qualcomm:qrb5165m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qrb5165n_firmware | — | cpe:2.3:o:qualcomm:qrb5165n_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd439_firmware | — | cpe:2.3:o:qualcomm:sd439_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd460_firmware | — | cpe:2.3:o:qualcomm:sd460_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd662_firmware | — | cpe:2.3:o:qualcomm:sd662_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd680_firmware | — | cpe:2.3:o:qualcomm:sd680_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd690_5g_firmware | — | cpe:2.3:o:qualcomm:sd690_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd750g_firmware | — | cpe:2.3:o:qualcomm:sd750g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd765_firmware | — | cpe:2.3:o:qualcomm:sd765_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd765g_firmware | — | cpe:2.3:o:qualcomm:sd765g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd768g_firmware | — | cpe:2.3:o:qualcomm:sd768g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd855_firmware | — | cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd865_5g_firmware | — | cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd870_firmware | — | cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx55_firmware | — | cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx55m_firmware | — | cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdxr2_5g_firmware | — | cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm4125_firmware | — | cpe:2.3:o:qualcomm:sm4125_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm7250p_firmware | — | cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9326_firmware | — | cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9341_firmware | — | cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9370_firmware | — | cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9375_firmware | — | cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9380_firmware | — | cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9385_firmware | — | cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3615_firmware | — | cpe:2.3:o:qualcomm:wcn3615_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3680b_firmware | — | cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3910_firmware | — | cpe:2.3:o:qualcomm:wcn3910_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3950_firmware | — | cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3988_firmware | — | cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3991_firmware | — | cpe:2.3:o:qualcomm:wcn3991_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3998_firmware | — | cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn6850_firmware | — | cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn6851_firmware | — | cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8810_firmware | — | cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8815_firmware | — | cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8830_firmware | — | cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8835_firmware | — | cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/september-2022-bulletin | Patch Vendor Advisory |