CVE-2025-47374

EPSS 0.02%
Veröffentlicht 06.04.2026 15:33:39
Zuletzt bearbeitet 08.04.2026 21:09:54
Quelle product-security@qualcomm.com
CVE-Watchlists
Login
Unerledigt
Login

Use After Free in Camera Driver

Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 29 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Fastconnect 6900 Firmware Version-

Qualcomm ≫ Fastconnect 6900 Version-

Qualcomm ≫ Fastconnect 7800 Firmware Version-

Qualcomm ≫ Fastconnect 7800 Version-

Qualcomm ≫ Pandeiro Firmware Version-

Qualcomm ≫ Pandeiro Version-

Qualcomm ≫ Qln1083bd Firmware Version-

Qualcomm ≫ Qln1083bd Version-

Qualcomm ≫ Qln1086bd Firmware Version-

Qualcomm ≫ Qln1086bd Version-

Qualcomm ≫ Qpa1083bd Firmware Version-

Qualcomm ≫ Qpa1083bd Version-

Qualcomm ≫ Qpa1086bd Firmware Version-

Qualcomm ≫ Qpa1086bd Version-

Qualcomm ≫ Qxm1083 Firmware Version-

Qualcomm ≫ Qxm1083 Version-

Qualcomm ≫ Qxm1086 Firmware Version-

Qualcomm ≫ Qxm1086 Version-

Qualcomm ≫ Qxm1093 Firmware Version-

Qualcomm ≫ Qxm1093 Version-

Qualcomm ≫ Qxm1094 Firmware Version-

Qualcomm ≫ Qxm1094 Version-

Qualcomm ≫ Qxm1095 Firmware Version-

Qualcomm ≫ Qxm1095 Version-

Qualcomm ≫ Qxm1096 Firmware Version-

Qualcomm ≫ Qxm1096 Version-

Qualcomm ≫ Sar1165p Firmware Version-

Qualcomm ≫ Sar1165p Version-

Qualcomm ≫ Sar2130p Firmware Version-

Qualcomm ≫ Sar2130p Version-

Qualcomm ≫ Snapdragon Ar1 Gen 1 Platform Firmware Version-

Qualcomm ≫ Snapdragon Ar1 Gen 1 Platform Version-

Qualcomm ≫ Sxr2230p Firmware Version-

Qualcomm ≫ Sxr2230p Version-

Qualcomm ≫ Sxr2250p Firmware Version-

Qualcomm ≫ Sxr2250p Version-

Qualcomm ≫ Sxr2330p Firmware Version-

Qualcomm ≫ Sxr2330p Version-

Qualcomm ≫ Sxr2350p Firmware Version-

Qualcomm ≫ Sxr2350p Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcn7860 Firmware Version-

Qualcomm ≫ Wcn7860 Version-

Qualcomm ≫ Wcn7861 Firmware Version-

Qualcomm ≫ Wcn7861 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8832 Firmware Version-

Qualcomm ≫ Wsa8832 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Qualcomm ≫ Xrv7209 Firmware Version-

Qualcomm ≫ Xrv7209 Version-

Qualcomm ≫ Xrv9209 Firmware Version-

Qualcomm ≫ Xrv9209 Version-

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.038

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
product-security@qualcomm.com	6.5	1	5.5	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-47374

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-47374

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-47374

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-47374