CVE-2025-47381

EPSS 0.01%
Veröffentlicht 02.03.2026 16:53:51
Zuletzt bearbeitet 04.03.2026 15:44:13
Quelle product-security@qualcomm.com
CVE-Watchlists
Login
Unerledigt
Login

Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Lemans Au Lgit Firmware Version-

Qualcomm ≫ Lemans Au Lgit Version-

Qualcomm ≫ Lemansau Firmware Version-

Qualcomm ≫ Lemansau Version-

Qualcomm ≫ Qam8255p Firmware Version-

Qualcomm ≫ Qam8255p Version-

Qualcomm ≫ Qamsrv1h Firmware Version-

Qualcomm ≫ Qamsrv1h Version-

Qualcomm ≫ Qamsrv1m Firmware Version-

Qualcomm ≫ Qamsrv1m Version-

Qualcomm ≫ Qca6574 Firmware Version-

Qualcomm ≫ Qca6574 Version-

Qualcomm ≫ Qca6574a Firmware Version-

Qualcomm ≫ Qca6574a Version-

Qualcomm ≫ Qca6574au Firmware Version-

Qualcomm ≫ Qca6574au Version-

Qualcomm ≫ Qca6595 Firmware Version-

Qualcomm ≫ Qca6595 Version-

Qualcomm ≫ Qca6595au Firmware Version-

Qualcomm ≫ Qca6595au Version-

Qualcomm ≫ Qca6688aq Firmware Version-

Qualcomm ≫ Qca6688aq Version-

Qualcomm ≫ Qca6696 Firmware Version-

Qualcomm ≫ Qca6696 Version-

Qualcomm ≫ Qca9367 Firmware Version-

Qualcomm ≫ Qca9367 Version-

Qualcomm ≫ Qca9377 Firmware Version-

Qualcomm ≫ Qca9377 Version-

Qualcomm ≫ Sa6155p Firmware Version-

Qualcomm ≫ Sa6155p Version-

Qualcomm ≫ Sa7255p Firmware Version-

Qualcomm ≫ Sa7255p Version-

Qualcomm ≫ Sa7775p Firmware Version-

Qualcomm ≫ Sa7775p Version-

Qualcomm ≫ Sa8155p Firmware Version-

Qualcomm ≫ Sa8155p Version-

Qualcomm ≫ Sa8195p Firmware Version-

Qualcomm ≫ Sa8195p Version-

Qualcomm ≫ Sa8255p Firmware Version-

Qualcomm ≫ Sa8255p Version-

Qualcomm ≫ Sa8620p Firmware Version-

Qualcomm ≫ Sa8620p Version-

Qualcomm ≫ Sa8770p Firmware Version-

Qualcomm ≫ Sa8770p Version-

Qualcomm ≫ Sa9000p Firmware Version-

Qualcomm ≫ Sa9000p Version-

Qualcomm ≫ Srv1h Firmware Version-

Qualcomm ≫ Srv1h Version-

Qualcomm ≫ Srv1m Firmware Version-

Qualcomm ≫ Srv1m Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.019

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
product-security@qualcomm.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-47381

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-47381

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-47381

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-47381