Memory corruption in BTHOST due to double free while music playback and calls over bluetooth headset in Snapdragon Mobile

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00049.

Exploitation none

Automatable no

Technical Impact total

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Qualcomm, Inc. Snapdragon Mobile affected
Version Status Constraints
Kailua, SG8275, SG8275P, SM8550, WCD9380, WCD9385, WCD9390, WCD9395, WCN6855, WCN6856, WCN7850, WCN7851, WSA8840, WSA8845, WSA8845H affected

Configuration 1 [-]

AND
cpe:2.3:o:qualcomm:kailua_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:kailua:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:qualcomm:sg8275_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sg8275:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:qualcomm:sg8275p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sg8275p:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:qualcomm:sm8550_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sm8550:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9390:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:qualcomm:wcn6855_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn6855:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:qualcomm:wcn6856_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn6856:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn7850:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:qualcomm:wcn7851_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn7851:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Qualcomm Subscribe
Kailua Subscribe
Kailua Firmware Subscribe
Sg8275 Subscribe
Sg8275 Firmware Subscribe
Sg8275p Subscribe
Sg8275p Firmware Subscribe
Sm8550 Subscribe
Sm8550 Firmware Subscribe
Wcd9380 Subscribe
Wcd9380 Firmware Subscribe
Wcd9385 Subscribe
Wcd9385 Firmware Subscribe
Wcd9390 Subscribe
Wcd9390 Firmware Subscribe
Wcd9395 Subscribe
Wcd9395 Firmware Subscribe
Wcn6855 Subscribe
Wcn6855 Firmware Subscribe
Wcn6856 Subscribe
Wcn6856 Firmware Subscribe
Wcn7850 Subscribe
Wcn7850 Firmware Subscribe
Wcn7851 Subscribe
Wcn7851 Firmware Subscribe
Wsa8840 Subscribe
Wsa8840 Firmware Subscribe
Wsa8845 Subscribe
Wsa8845 Firmware Subscribe
Wsa8845h Subscribe
Wsa8845h Firmware Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2022-30405 Memory corruption in BTHOST due to double free while music playback and calls over bluetooth headset in Snapdragon Mobile
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.qualcomm.com/company/product-security/bulletins/october-2022-bulletin cve-icon cve-icon
History

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00076}

 epss

{'score': 0.00084}

Tue, 13 May 2025 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published:

Updated: 2025-05-13T20:05:06.328Z

Reserved: 2022-02-22T00:00:00.000Z

Link: CVE-2022-25750

cve-icon Vulnrichment

Updated: 2024-08-03T04:49:43.167Z

cve-icon NVD

Status : Modified

Published: 2022-10-19T11:15:10.953

Modified: 2025-05-13T20:15:20.920

Link: CVE-2022-25750

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses