CVE-2025-47388

EPSS 0.01%
Veröffentlicht 06.01.2026 22:48:45
Zuletzt bearbeitet 27.01.2026 19:22:51
Quelle product-security@qualcomm.com
CVE-Watchlists
Login
Unerledigt
Login

Memory corruption while passing pages to DSP with an unaligned starting address.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Fastconnect 6200 Firmware Version-

Qualcomm ≫ Fastconnect 6200 Version-

Qualcomm ≫ Fastconnect 6700 Firmware Version-

Qualcomm ≫ Fastconnect 6700 Version-

Qualcomm ≫ Fastconnect 6900 Firmware Version-

Qualcomm ≫ Fastconnect 6900 Version-

Qualcomm ≫ Fastconnect 7800 Firmware Version-

Qualcomm ≫ Fastconnect 7800 Version-

Qualcomm ≫ Qcs610 Firmware Version-

Qualcomm ≫ Qcs610 Version-

Qualcomm ≫ Qmp1000 Firmware Version-

Qualcomm ≫ Qmp1000 Version-

Qualcomm ≫ Video Collaboration Vc1 Platform Firmware Version-

Qualcomm ≫ Video Collaboration Vc1 Platform Version-

Qualcomm ≫ Video Collaboration Vc3 Platform Firmware Version-

Qualcomm ≫ Video Collaboration Vc3 Platform Version-

Qualcomm ≫ Sg6150 Firmware Version-

Qualcomm ≫ Sg6150 Version-

Qualcomm ≫ Sg6150p Firmware Version-

Qualcomm ≫ Sg6150p Version-

Qualcomm ≫ Sm6475 Firmware Version-

Qualcomm ≫ Sm6475 Version-

Qualcomm ≫ Sm7435 Firmware Version-

Qualcomm ≫ Sm7435 Version-

Qualcomm ≫ Sm8735 Firmware Version-

Qualcomm ≫ Sm8735 Version-

Qualcomm ≫ Sm8750 Firmware Version-

Qualcomm ≫ Sm8750 Version-

Qualcomm ≫ Sm8750p Firmware Version-

Qualcomm ≫ Sm8750p Version-

Qualcomm ≫ Snapdragon 4 Gen 2 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 4 Gen 2 Mobile Platform Version-

Qualcomm ≫ Snapdragon 6 Gen 1 Mobile Platform Firmware Version-

Qualcomm ≫ Snapdragon 6 Gen 1 Mobile Platform Version-

Qualcomm ≫ Sw5100 Firmware Version-

Qualcomm ≫ Sw5100 Version-

Qualcomm ≫ Sw5100p Firmware Version-

Qualcomm ≫ Sw5100p Version-

Qualcomm ≫ Sxr2330p Firmware Version-

Qualcomm ≫ Sxr2330p Version-

Qualcomm ≫ Sxr2350p Firmware Version-

Qualcomm ≫ Sxr2350p Version-

Qualcomm ≫ Wcd9370 Firmware Version-

Qualcomm ≫ Wcd9370 Version-

Qualcomm ≫ Wcd9375 Firmware Version-

Qualcomm ≫ Wcd9375 Version-

Qualcomm ≫ Wcd9378 Firmware Version-

Qualcomm ≫ Wcd9378 Version-

Qualcomm ≫ Wcd9380 Firmware Version-

Qualcomm ≫ Wcd9380 Version-

Qualcomm ≫ Wcd9385 Firmware Version-

Qualcomm ≫ Wcd9385 Version-

Qualcomm ≫ Wcd9395 Firmware Version-

Qualcomm ≫ Wcd9395 Version-

Qualcomm ≫ Wcn3950 Firmware Version-

Qualcomm ≫ Wcn3950 Version-

Qualcomm ≫ Wcn3980 Firmware Version-

Qualcomm ≫ Wcn3980 Version-

Qualcomm ≫ Wcn3988 Firmware Version-

Qualcomm ≫ Wcn3988 Version-

Qualcomm ≫ Wcn6755 Firmware Version-

Qualcomm ≫ Wcn6755 Version-

Qualcomm ≫ Wcn7750 Firmware Version-

Qualcomm ≫ Wcn7750 Version-

Qualcomm ≫ Wcn7860 Firmware Version-

Qualcomm ≫ Wcn7860 Version-

Qualcomm ≫ Wcn7861 Firmware Version-

Qualcomm ≫ Wcn7861 Version-

Qualcomm ≫ Wcn7880 Firmware Version-

Qualcomm ≫ Wcn7880 Version-

Qualcomm ≫ Wcn7881 Firmware Version-

Qualcomm ≫ Wcn7881 Version-

Qualcomm ≫ Wsa8810 Firmware Version-

Qualcomm ≫ Wsa8810 Version-

Qualcomm ≫ Wsa8815 Firmware Version-

Qualcomm ≫ Wsa8815 Version-

Qualcomm ≫ Wsa8830 Firmware Version-

Qualcomm ≫ Wsa8830 Version-

Qualcomm ≫ Wsa8832 Firmware Version-

Qualcomm ≫ Wsa8832 Version-

Qualcomm ≫ Wsa8835 Firmware Version-

Qualcomm ≫ Wsa8835 Version-

Qualcomm ≫ Wsa8840 Firmware Version-

Qualcomm ≫ Wsa8840 Version-

Qualcomm ≫ Wsa8845 Firmware Version-

Qualcomm ≫ Wsa8845 Version-

Qualcomm ≫ Wsa8845h Firmware Version-

Qualcomm ≫ Wsa8845h Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.015

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
product-security@qualcomm.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-47388

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-47388

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-47388

EUVD