🛡️ CVE-2022-40525
🟠 CVSS 7.1 — High ✅ No Known Exploit CWE-200 NVD
7.1
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

Information disclosure in Linux Networking Firmware due to unauthorized information leak during side channel analysis.

Details

Severity HIGH
CVSS Score 7.1
CVSS Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
CWE CWE-200
Public Exploit ✅ No
Source NVD
Published 2023-06-06
Updated 2026-06-08
Modified 2024-11-21
Fix URL N/A

Affected Packages

Software From version Fixed in
csr8811-firmware
ipq6000-firmware
ipq6005-firmware
ipq6010-firmware
ipq6018-firmware
ipq6028-firmware
ipq9008-firmware
ipq9574-firmware
qca4024-firmware
qca8072-firmware
qca8075-firmware
qca8081-firmware
qca8082-firmware
qca8084-firmware
qca8085-firmware
qca8386-firmware
qcn5021-firmware
qcn5022-firmware
qcn5052-firmware
qcn5121-firmware
qcn5122-firmware
qcn5152-firmware
qcn6023-firmware
qcn6024-firmware
qcn9000-firmware
qcn9022-firmware
qcn9024-firmware
qcn9070-firmware
qcn9072-firmware
qcn9074-firmware
qcn9274-firmware

Similar Threats

Patch Gap Protection

Running software with known vulnerabilities?

BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.

Start Free →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.