7.8
CVE-2025-47358
- EPSS 0.01%
- Veröffentlicht 02.02.2026 16:16:18
- Zuletzt bearbeitet 11.02.2026 19:33:58
- Quelle product-security@qualcomm.com
- CVE-Watchlists
- Unerledigt
LoginMemory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Qualcomm ≫ Fastconnect 6900 Firmware Version-
Qualcomm ≫ Fastconnect 7800 Firmware Version-
Qualcomm ≫ Qcc2072 Firmware Version-
Qualcomm ≫ Sc8380xp Firmware Version-
Qualcomm ≫ Wcd9378c Firmware Version-
Qualcomm ≫ Wcd9380 Firmware Version-
Qualcomm ≫ Wcd9385 Firmware Version-
Qualcomm ≫ Wsa8830 Firmware Version-
Qualcomm ≫ Wsa8835 Firmware Version-
Qualcomm ≫ Wsa8840 Firmware Version-
Qualcomm ≫ Wsa8845 Firmware Version-
Qualcomm ≫ Wsa8845h Firmware Version-
Qualcomm ≫ X2000077 Firmware Version-
Qualcomm ≫ X2000086 Firmware Version-
Qualcomm ≫ X2000090 Firmware Version-
Qualcomm ≫ X2000092 Firmware Version-
Qualcomm ≫ X2000094 Firmware Version-
Qualcomm ≫ Xg101002 Firmware Version-
Qualcomm ≫ Xg101032 Firmware Version-
Qualcomm ≫ Xg101039 Firmware Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.003 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| product-security@qualcomm.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.