CVE-2022-45163

CVSS 5.3 · Medium EPSS 0.14% · P34 Updated Apr 30, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-45163

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An information-disclosure vulnerability exists on select NXP devices when configured in Serial Download Protocol (SDP) mode: i.MX RT 1010, i.MX RT 1015, i.MX RT 1020, i.MX RT 1050, i.MX RT 1060, i.MX 6 Family, i.MX 7Dual/Solo, i.MX 7ULP, i.MX 8M Quad, i.MX 8M Mini, and Vybrid. In a device security-enabled configuration, memory contents could potentially leak to physically proximate attackers via the respective SDP port in cold and warm boot attacks. (The recommended mitigation is to completely disable the SDP mode by programming a one-time programmable eFUSE. Customers can contact NXP for additional information.)

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

NXP Semiconductors i.MX SoC 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

NXP Semiconductors i.MX SoC是荷兰恩智浦半导体（NXP Semiconductors）公司的适用于多媒体和显示应用的多核解决方案，具有可扩展、安全可靠的高性能和低功耗功能。 NXP Semiconductors i.MX SoC 存在安全漏洞，该漏洞源于其在配置为Serial Download Protocol（SDP）模式时，允许攻击者通过SDP端口获取敏感信息。以下版本受到影响： i.MX RT 1010、i.MX RT 1015、i.MX RT 1020、i.MX RT 1

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2022-45163

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-45163

请登录查看更多情报信息。

Same Patch Batch · n/a · 2022-11-18 · 23 CVEs total

CVE-2022-44204		D-Link DIR-3060 安全漏洞
CVE-2022-45474		drachtio-server 资源管理错误漏洞
CVE-2022-45473		drachtio-server 安全漏洞
CVE-2022-45132		LAVA 代码注入漏洞
CVE-2022-44820		Automotive Shop Management System SQL注入漏洞
CVE-2022-44641		LAVA 安全漏洞
CVE-2022-44415		Automotive Shop Management System SQL注入漏洞
CVE-2022-44414		Automotive Shop Management System SQL注入漏洞
CVE-2022-44413		Automotive Shop Management System SQL注入漏洞
CVE-2022-44379		Automotive Shop Management System SQL注入漏洞
CVE-2022-44378		Automotive Shop Management System SQL注入漏洞
CVE-2021-31739		SEPPmail 跨站脚本漏洞
CVE-2022-43673		Wire 日志信息泄露漏洞
CVE-2022-43308		Intelbras SG 2404 MR 安全漏洞
CVE-2022-42904		ZOHO ManageEngine ADManager Plus 安全漏洞
CVE-2022-4055		xdg-utils 安全漏洞
CVE-2022-38871		free5GC 资源管理错误漏洞
CVE-2022-37197		IOBit IOTransfer 代码问题漏洞
CVE-2022-34827		Carel Boss Mini 安全漏洞
CVE-2022-31694		Qt 代码问题漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2022-45163

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-45163

I. Basic Information for CVE-2022-45163

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-45163

III. Intelligence Information for CVE-2022-45163

Same Patch Batch · n/a · 2022-11-18 · 23 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-45163

Leave a comment