Memory corruption in camera due to buffer copy without checking size of input in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wearables
Conclusion & alert: CVE-2022-25712 is rated Low Risk (27.7/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.12%). Mandatory action: Monitor for updates and reassess as exploit intelligence or EPSS changes.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.04% | 0.12% | +0.08% |
| 2 | 2026-05-27 | 0.05% | 0.04% | -0.01% |
| 3 | 2025-12-14 | — | 0.05% | — |
Full EPSS history (5 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 6.7 | 3.1 | MEDIUM |
|
0.8 | 5.9 | [email protected] |
| 7.8 | 3.1 | HIGH |
|
1.8 | 5.9 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| qualcomm | aqt1000_firmware | — | cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9150_firmware | — | cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6310_firmware | — | cpe:2.3:o:qualcomm:qca6310_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6335_firmware | — | cpe:2.3:o:qualcomm:qca6335_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6390_firmware | — | cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6391_firmware | — | cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6420_firmware | — | cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6426_firmware | — | cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6430_firmware | — | cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6436_firmware | — | cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcc5100_firmware | — | cpe:2.3:o:qualcomm:qcc5100_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs410_firmware | — | cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qcs610_firmware | — | cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qualcomm215_firmware | — | cpe:2.3:o:qualcomm:qualcomm215_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd205_firmware | — | cpe:2.3:o:qualcomm:sd205_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd210_firmware | — | cpe:2.3:o:qualcomm:sd210_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd710_firmware | — | cpe:2.3:o:qualcomm:sd710_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd845_firmware | — | cpe:2.3:o:qualcomm:sd845_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd855_firmware | — | cpe:2.3:o:qualcomm:sd855_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd865_5g_firmware | — | cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sd870_firmware | — | cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sda429w_firmware | — | cpe:2.3:o:qualcomm:sda429w_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdx55m_firmware | — | cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdxr1_firmware | — | cpe:2.3:o:qualcomm:sdxr1_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sdxr2_5g_firmware | — | cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sw5100_firmware | — | cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sw5100p_firmware | — | cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9326_firmware | — | cpe:2.3:o:qualcomm:wcd9326_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9340_firmware | — | cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9341_firmware | — | cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9370_firmware | — | cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcd9380_firmware | — | cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3610_firmware | — | cpe:2.3:o:qualcomm:wcn3610_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3660b_firmware | — | cpe:2.3:o:qualcomm:wcn3660b_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3680b_firmware | — | cpe:2.3:o:qualcomm:wcn3680b_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3950_firmware | — | cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3980_firmware | — | cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3988_firmware | — | cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3990_firmware | — | cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn3998_firmware | — | cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn6850_firmware | — | cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wcn6851_firmware | — | cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8810_firmware | — | cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8815_firmware | — | cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8830_firmware | — | cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:* |
| qualcomm | wsa8835_firmware | — | cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin | Patch Vendor Advisory |