Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2022-22102

Summary
Assigner-qualcomm
Assigner Org ID-2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
Published At-02 Sep, 2022 | 11:31
Updated At-03 Aug, 2024 | 03:00
Rejected At-
Credits

Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:qualcomm
Assigner Org ID:2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
Published At:02 Sep, 2022 | 11:31
Updated At:03 Aug, 2024 | 03:00
Rejected At:
▼CVE Numbering Authority (CNA)

Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto

Affected Products
Vendor
Qualcomm Technologies, Inc.Qualcomm, Inc.
Product
Snapdragon Auto
Versions
Affected
  • QCA6574AU, QCA6696, SA6145P, SA6150P, SA6155P, SA8145P, SA8150P, SA8155P, SA8195P
Problem Types
TypeCWE IDDescription
textN/AIncorrect Type Conversion or Cast in Automotive Multimedia
Type: text
CWE ID: N/A
Description: Incorrect Type Conversion or Cast in Automotive Multimedia
Metrics
VersionBase scoreBase severityVector
3.18.4HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 8.4
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin
x_refsource_CONFIRM
Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin
Resource:
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin
x_refsource_CONFIRM
x_transferred
Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin
Resource:
x_refsource_CONFIRM
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:product-security@qualcomm.com
Published At:02 Sep, 2022 | 12:15
Updated At:07 Sep, 2022 | 21:04

Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary3.18.4HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 8.4
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Qualcomm Technologies, Inc.
qualcomm
>>qca6574au_firmware>>-
cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6574au>>-
cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6696_firmware>>-
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>qca6696>>-
cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6145p_firmware>>-
cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6145p>>-
cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6150p_firmware>>-
cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6150p>>-
cpe:2.3:h:qualcomm:sa6150p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6155p_firmware>>-
cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa6155p>>-
cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8145p_firmware>>-
cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8145p>>-
cpe:2.3:h:qualcomm:sa8145p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8150p_firmware>>-
cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8150p>>-
cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8155p_firmware>>-
cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8155p>>-
cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8195p_firmware>>-
cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*
Qualcomm Technologies, Inc.
qualcomm
>>sa8195p>>-
cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-704Primarynvd@nist.gov
CWE ID: CWE-704
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletinproduct-security@qualcomm.com
Vendor Advisory
Hyperlink: https://www.qualcomm.com/company/product-security/bulletins/july-2022-bulletin
Source: product-security@qualcomm.com
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

880Records found
CVE-2025-47366
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.1||HIGH
EPSS-0.01% / 0.19%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Exposed Dangerous Method or Function in HLOS

Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm5430sxr2350p_firmwaresm7675sxr2230psnapdragon_x72_5g_modem-rf_firmwareqcs6490snapdragon_8_gen_3_mobilewsa8845sm4635qcm6490_firmwaresm8750pqdx1011_firmwareqcn9011_firmwaresa8650psm6650p_firmwaresa4155p_firmwareqca6797aqqam8775p_firmwarewcd9375fastconnect_7800qca8337_firmwaressg2115psxr1230pssg2115p_firmwaresa6145p_firmwaresnapdragon_ar2_gen_1_firmwareqca6698aqqca6584au_firmwaresa8145p_firmwarewsa8815_firmwarewcd9390srv1lqcs4490qca6595ausnapdragon_7\+_gen_2_mobile_firmwareqam8295p_firmwarewcn7880qcm6490qcs5430sm8750qcn9011wsa8810_firmwarewcn3988_firmwareqcn9012_firmwaresxr2350pqca6574aqca8081qep8111_firmwareqcs6490_firmwareqcs9100_firmwareqcm4490sm8475p_firmwarefastconnect_6900_firmwarewcd9340_firmwaresnapdragon_x72_5g_modem-rfqrb5165mvideo_collaboration_vc3_firmwarefastconnect_6900sa7255pqca6584ausm7435_firmwaresa8150psa8775psg4150psa8155psnapdragon_680_4g_mobile_firmwareqru1032sm7675p_firmwaresm8750p_firmwareqcm5430_firmwareqfw7124qru1052qrb5165m_firmwaresnapdragon_6_gen_1_mobile_firmwareqamsrv1h_firmwareqmp1000_firmwaresrv1l_firmwareqca6688aqsnapdragon_x75_5g_modem-rf_firmwaresrv1msnapdragon_662_mobilesnapdragon_8_gen_1_mobile_firmwarewcn7861ar8035qru1052_firmwaresm8735_firmwarewcn3988qca6797aq_firmwareqdu1010_firmwaresnapdragon_4_gen_2_mobile_firmwaresa7775p_firmwaresnapdragon_685_4g_mobilewsa8840_firmwareqamsrv1mqca6678aq_firmwareqca6391_firmwareqca6696_firmwaresm6475_firmwareqcc710qcs7230_firmwaresw5100p_firmwaresxr2330pwcd9385qca6574snapdragon_w5\+_gen_1_wearablewcn3910_firmwarewcn6755sm8750_firmwaresnapdragon_680_4g_mobilevideo_collaboration_vc5snapdragon_685_4g_mobile_firmwareqru1062snapdragon_8_gen_1_mobilewcn6650_firmwareqfw7114_firmwarewcn6740sd_8_gen1_5gqca6574a_firmwareqam8620psnapdragon_7_gen_1_mobile_firmwareqca6595_firmwareqdx1010_firmwareqam8650psa8775p_firmwarewcd9370wcn7881sm7435snapdragon_8_gen_3_mobile_firmwaresa6150psnapdragon_662_mobile_firmwareqdx1011sw5100_firmwaresm6650qcs5430_firmwaresc8380xpsw5100psnapdragon_460_mobilesg4150p_firmwareqca6678aqqca6688aq_firmwaresm8650qwsa8835wcd9375_firmwarewsa8840wcd9378qcn6274_firmwarefastconnect_6700_firmwaresa8770psa8195pqfw7124_firmwarerobotics_rb5sm7635snapdragon_x32_5g_modem-rfsa8155p_firmwaresa8540p_firmwareqep8111snapdragon_8\+_gen_1_mobile_firmwaresnapdragon_4_gen_1_mobileqcn6224sxr2230p_firmwaresa6155pqcs615qcm4490_firmwaresm7675_firmwaresa8620psm8635_firmwaresa8255psnapdragon_480\+_5g_mobile_firmwareqca8695au_firmwareqcs615_firmwaresnapdragon_4_gen_1_mobile_firmwaresa8540psnapdragon_ar1_gen_1sa6145psa8145psnapdragon_auto_5g_modem-rf_gen_2_firmwarewsa8832wcn6740_firmwareqca6174asa7775psa8295psnapdragon_480_5g_mobile_firmwareqru1032_firmwaresnapdragon_x32_5g_modem-rf_firmwareqrb5165n_firmwaresa8150p_firmwaresxr2250psm7635p_firmwaresm7635pwsa8830sa8195p_firmwareqca6595wsa8835_firmwarewcd9385_firmwareqamsrv1hsm6225p_firmwaresnapdragon_695_5g_mobilevideo_collaboration_vc5_firmwarewcn6650snapdragon_8\+_gen_1_mobilesnapdragon_7_gen_1_mobilesm8635snapdragon_x35_5g_modem-rf_firmwarewsa8845h_firmwarewcn3950_firmwaresrv1hsnapdragon_ar2_gen_1ar8035_firmwaresm7675pwsa8845hsa6155p_firmwareqam8295pqca6698aq_firmwarewcd9340wcn3910wcd9370_firmwaresw5100sa7255p_firmwaresxr2330p_firmwarewcn7750_firmwaresa6150p_firmwaresnapdragon_auto_5g_modem-rf_gen_2wsa8832_firmwareqca6595au_firmwareflight_rb5_5g_firmwaresd_8_gen1_5g_firmwareqamsrv1m_firmwarewcd9390_firmwaresm8650q_firmwareqam8255p_firmwaresm8735wsa8815wcn7860_firmwarewcn7860fastconnect_6200_firmwareqrb5165nsxr1230p_firmwarewcn3950qmp1000sa4150pflight_rb5_5gsm8475pwcd9395fastconnect_6200wcn7750video_collaboration_vc3qcn9012sa4150p_firmwaresnapdragon_ar1_gen_1_firmwaresm6225pwsa8845_firmwaresa8770p_firmwareqfw7114sm8635psa4155psnapdragon_4_gen_2_mobileqcn6224_firmwareqam8775psm8635p_firmwarewcd9378_firmwaresa9000pwcn7861_firmwaresnapdragon_x75_5g_modem-rfsa8255p_firmwaressg2125pwcn7881_firmwaresrv1m_firmwareqcs4490_firmwaresnapdragon_x35_5g_modem-rfsm4635_firmwaresa8650p_firmwaresnapdragon_695_5g_mobile_firmwaresnapdragon_480\+_5g_mobilesm6475qdu1010wcn6755_firmwareqca8337wcn7880_firmwaresm6650_firmwareqca6574auqam8650p_firmwareqca8081_firmwaresxr2250p_firmwaresa9000p_firmwareqam8620p_firmwareqcc710_firmwareqam8255pfastconnect_6700qca6391srv1h_firmwaresm6650psa8620p_firmwareqca6574au_firmwaresnapdragon_460_mobile_firmwarewcd9380qcs7230snapdragon_w5\+_gen_1_wearable_firmwarewcd9380_firmwareqdx1010sc8380xp_firmwaresa8295p_firmwareqru1062_firmwareqca6174a_firmwarewsa8830_firmwareqcn6274qcs9100qca8695ausnapdragon_480_5g_mobilewcd9395_firmwarefastconnect_7800_firmwareqca6696sm7635_firmwaresnapdragon_6_gen_1_mobilesnapdragon_7\+_gen_2_mobilewsa8810ssg2125p_firmwareqca6574_firmwarerobotics_rb5_firmwareSnapdragon
CWE ID-CWE-749
Exposed Dangerous Method or Function
CVE-2025-47398
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.29%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Graphics

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm5430sxr2350p_firmwaresm7675sxr2230psnapdragon_8_gen_3_mobilewsa8845qcm6490_firmwaresm8750pqcn9011_firmwarewcn3980sm6650p_firmwareqcm6125qca6797aqwcd9375fastconnect_7800ssg2115psxr1230pssg2115p_firmwarecsra6620_firmwareqcm2290lemansau_firmwareqca6698aqqcm4325sd662wsa8815_firmwarewcd9390ar8031_firmwareqcs4490qca6595ausnapdragon_7\+_gen_2_mobile_firmwareqam8295p_firmwarewcn7880qcm6490qcn9011wsa8810_firmwareqcn9012_firmwarewcn3988_firmwareiq-8300qca6574asxr2350pqcm4325_firmwareqcm4490sm8475p_firmwarefastconnect_6900_firmwaresa7255pvideo_collaboration_vc3_firmwarefastconnect_6900qca6698au_firmwaresm7435_firmwaresnapdragon_6_gen_3_mobile_firmwaresa8155psnapdragon_680_4g_mobile_firmwaresm7675p_firmwaresm8750p_firmwarenetrani_firmwareqcm5430_firmwaresar2130p_firmwaresnapdragon_6_gen_1_mobile_firmwaresm7550p_firmwarecsra6640qamsrv1h_firmwaresm7550_firmwareiq-615_firmwareqmp1000_firmwaresnapdragon_8_eliteorneqcm2290_firmwareqca6688aqnetranisrv1mqcs2290_firmwaresnapdragon_662_mobilesnapdragon_8_gen_1_mobile_firmwarewcn7861g2_gen_1iq-9100wcn3988qca6797aq_firmwaresnapdragon_4_gen_2_mobile_firmwaresda660sa7775p_firmwaresnapdragon_685_4g_mobilewsa8840_firmwareqamsrv1mwcn3990_firmwareqca6678aq_firmwareqca6391_firmwaresnapdragon_8_gen1_5gqca6696_firmwareg1_gen_1_firmwaresw5100p_firmwaresxr2330pwcd9385iq-9075_firmwarelemans_au_lgitqca6574snapdragon_w5\+_gen_1_wearablewcn3910_firmwarewcn6755snapdragon_680_4g_mobilevideo_collaboration_vc5snapdragon_685_4g_mobile_firmwaresnapdragon_8_gen_1_mobilewcn6650_firmwaresm7550qcs410_firmwaresnapdragon_7s_gen_3_mobileqca6574a_firmwaresnapdragon_7_gen_1_mobile_firmwareqca6595_firmwareg1_gen_1wcd9370smart_audio_400_firmwarewcn7881qcs8550_firmwaresm7435snapdragon_8_gen_3_mobile_firmwareqcs4290_firmwaresar2130pwcn3990sd662_firmwaresm8550p_firmwaresnapdragon_662_mobile_firmwarepalawan25_firmwaresw5100_firmwaresw5100psnapdragon_460_mobileqca6678aqsnapdragon_8_elite_firmwareqca6688aq_firmwaresm8650qwsa8835wcd9375_firmwarewsa8840wcd9378sa8770pfastconnect_6700_firmwaresa8195probotics_rb5sa8155p_firmwaresnapdragon_8\+_gen_1_mobile_firmwaresnapdragon_4_gen_1_mobilesxr2230p_firmwarewcd9371sa6155psmart_audio_400qcm4490_firmwaresm7675_firmwarewcd9335_firmwaresa8620psm8635_firmwaremonaco_iot_firmwaresa8255psnapdragon_480\+_5g_mobile_firmwareqca8695au_firmwaresnapdragon_4_gen_1_mobile_firmwareiq-8275_firmwaresnapdragon_8_gen1_5g_firmwarecsra6640_firmwaresnapdragon_ar1_gen_1qcs8550wsa8832sa7775psa8295psnapdragon_480_5g_mobile_firmwarewcn3980_firmwareqrb5165n_firmwaresxr2250pwcd9371_firmwaresm7635p_firmwaremilossm7635pqcs4290sa8195p_firmwareqca6595wsa8830robotics_rb2_firmwarewcd9385_firmwarewsa8835_firmwareqamsrv1hsm6225p_firmwaresnapdragon_695_5g_mobilevideo_collaboration_vc5_firmwarewcn6650snapdragon_8\+_gen_1_mobilemonaco_iotsm8635snapdragon_7_gen_1_mobilewsa8845h_firmwarewcn3950_firmwaresrv1hvideo_collaboration_vc1_firmwaresm7675pwsa8845hlemansausa6155p_firmwareqam8295pqca6698aq_firmwarewcn3910sw5100sa7255p_firmwarewcd9370_firmwaresxr2330p_firmwaresm7550pqcm6125_firmwarewsa8832_firmwareqca6595au_firmwaresnapdragon_8\+_gen_2_mobile_firmwareflight_rb5_5g_firmwareqamsrv1m_firmwarewcd9390_firmwaresnapdragon_8_gen_2_mobile_firmwareqcs2290g2_gen_1_firmwaresm8650q_firmwaresnapdragon_660_mobile_firmwareqam8255p_firmwareorne_firmwarewcn7860_firmwarewsa8815wcn7860fastconnect_6200_firmwaresm8550pqrb5165nsxr1230p_firmwarecsra6620wcd9335wcn3950qmp1000lemans_au_lgit_firmwareflight_rb5_5gsm8475pwcd9395iq-9075fastconnect_6200snapdragon_8_gen_2_mobileqcn9012video_collaboration_vc3snapdragon_ar1_gen_1_firmwarewsa8845_firmwaresm6225psa8770p_firmwareqca2066sm8635psnapdragon_4_gen_2_mobilesm8635p_firmwarewcd9378_firmwaresa9000pwcn7861_firmwaresnapdragon_7s_gen_3_mobile_firmwaresa8255p_firmwaresnapdragon_6_gen_3_mobilerobotics_rb2qcs410snapdragon_8\+_gen_2_mobilessg2125pwcn7881_firmwaresrv1m_firmwareqcs4490_firmwarepalawan25qca6698ausnapdragon_480\+_5g_mobilesnapdragon_695_5g_mobile_firmwarewcn6755_firmwarewcn7880_firmwareiq-8275qca6574ausxr2250p_firmwaresa9000p_firmwareqam8255pwcd9341_firmwarefastconnect_6700iq-8300_firmwareqca6391srv1h_firmwareqca2066_firmwaresm6650psa8620p_firmwareqca6574au_firmwaresnapdragon_6_gen_4_mobile_firmwarewcd9341snapdragon_460_mobile_firmwaremilos_firmwarewcd9380iq-9100_firmwaresnapdragon_w5\+_gen_1_wearable_firmwarewcd9380_firmwarevideo_collaboration_vc1sa8295p_firmwaresnapdragon_660_mobilesda660_firmwarewsa8830_firmwareqca8695ausnapdragon_480_5g_mobilewcd9395_firmwarefastconnect_7800_firmwareqca6696snapdragon_6_gen_1_mobilesnapdragon_6_gen_4_mobilesnapdragon_7\+_gen_2_mobilewsa8810ar8031ssg2125p_firmwareqca6574_firmwarerobotics_rb5_firmwareiq-615Snapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-47315
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.27%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Automotive Software platform based on QNX

Memory corruption while handling repeated memory unmap requests from guest VM.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6698aqsrv1h_firmwaresa8540p_firmwaresa8650p_firmwaresa8255pqamsrv1m_firmwareqca6574ausa8775p_firmwaresrv1m_firmwareqam8620p_firmwaresa8770p_firmwareqamsrv1h_firmwareqam8255p_firmwaresa8295pqca6696_firmwareqca6797aq_firmwareqam8775p_firmwaresa8255p_firmwareqam8255pqam8775pqam8295p_firmwaresa7255p_firmwaresa7775psrv1msa8540psa8770pqca6688aq_firmwareqca6595_firmwareqam8295pqca6595ausa9000psa8620p_firmwaresa8650pqca6797aqqamsrv1mqca6696qam8620psa8295p_firmwaresrv1l_firmwaresrv1hqca6688aqqca6595au_firmwareqca6574au_firmwareqam8650p_firmwaresa9000p_firmwaresa7775p_firmwaresrv1lqca6595qam8650psa7255psa8620pqca6698aq_firmwaresa8775pqamsrv1hSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-47397
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.29%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Release of Memory Before Removing Last Reference in Graphics

Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm5430sxr2350p_firmwaresm7675sxr2230psnapdragon_8_gen_3_mobilewsa8845qcm6490_firmwaresm8750pqcn9011_firmwarewcn3980sm6650p_firmwareqcm6125qca6797aqwcd9375fastconnect_7800ssg2115psxr1230pssg2115p_firmwarecsra6620_firmwareqcm2290lemansau_firmwareqca6698aqqcm4325sd662wsa8815_firmwarewcd9390ar8031_firmwareqcs4490qca6595ausnapdragon_7\+_gen_2_mobile_firmwareqam8295p_firmwarewcn7880qcm6490wsa8810_firmwareqcn9011wcn3988_firmwareqcn9012_firmwaresxr2350pqca6574aiq-8300qcm4325_firmwareqcm4490sm8475p_firmwarefastconnect_6900_firmwaresa7255pvideo_collaboration_vc3_firmwarefastconnect_6900qca6698au_firmwaresm7435_firmwaresnapdragon_6_gen_3_mobile_firmwaresa8155psnapdragon_680_4g_mobile_firmwaresm7675p_firmwaresm8750p_firmwarenetrani_firmwareqcm5430_firmwaresar2130p_firmwaresnapdragon_6_gen_1_mobile_firmwaresm7550p_firmwarecsra6640qamsrv1h_firmwareiq-615_firmwaresm7550_firmwaresnapdragon_8_eliteqmp1000_firmwareorneqcm2290_firmwareqca6688aqnetranisrv1mqcs2290_firmwaresnapdragon_662_mobilesnapdragon_8_gen_1_mobile_firmwarewcn7861g2_gen_1iq-9100wcn3988qca6797aq_firmwaresnapdragon_4_gen_2_mobile_firmwaresa7775p_firmwaresnapdragon_685_4g_mobilewsa8840_firmwareqamsrv1mqca6678aq_firmwareqca6391_firmwareqca6696_firmwareg1_gen_1_firmwaresw5100p_firmwaresxr2330pwcd9385lemans_au_lgitiq-9075_firmwareqca6574snapdragon_w5\+_gen_1_wearablewcn3910_firmwarewcn6755snapdragon_680_4g_mobilevideo_collaboration_vc5snapdragon_685_4g_mobile_firmwarewcn6650_firmwaresnapdragon_8_gen_1_mobilesm7550snapdragon_7s_gen_3_mobilesd_8_gen1_5gqca6574a_firmwaresnapdragon_7_gen_1_mobile_firmwareqca6595_firmwareg1_gen_1wcd9370smart_audio_400_firmwarewcn7881qcs8550_firmwaresm7435snapdragon_8_gen_3_mobile_firmwareqcs4290_firmwaresar2130psd662_firmwaresm8550p_firmwaresnapdragon_662_mobile_firmwarepalawan25_firmwaresw5100_firmwaresw5100psnapdragon_460_mobileqca6678aqsnapdragon_8_elite_firmwareqca6688aq_firmwaresm8650qwsa8835wcd9375_firmwarewsa8840wcd9378fastconnect_6700_firmwaresa8770psa8195probotics_rb5sa8155p_firmwaresnapdragon_8\+_gen_1_mobile_firmwaresnapdragon_4_gen_1_mobilesxr2230p_firmwarewcd9371sa6155psmart_audio_400qcm4490_firmwaresm7675_firmwarewcd9335_firmwaresa8620pmonaco_iot_firmwaresm8635_firmwaresa8255psnapdragon_480\+_5g_mobile_firmwareqca8695au_firmwaresnapdragon_4_gen_1_mobile_firmwareiq-8275_firmwarecsra6640_firmwaresnapdragon_ar1_gen_1qcs8550wsa8832sa7775psa8295psnapdragon_480_5g_mobile_firmwarewcn3980_firmwareqrb5165n_firmwaresxr2250pwcd9371_firmwaresm7635p_firmwaremilossm7635pwsa8830qcs4290wsa8835_firmwareqca6595sa8195p_firmwarewcd9385_firmwaresnapdragon_6_gen_4_mobile_firmwareqamsrv1hsm6225p_firmwaresnapdragon_695_5g_mobilewcn6650video_collaboration_vc5_firmwaresnapdragon_8\+_gen_1_mobilemonaco_iotsm8635snapdragon_7_gen_1_mobilewsa8845h_firmwarewcn3950_firmwaresrv1hvideo_collaboration_vc1_firmwaresm7675pwsa8845hlemansauqam8295psa6155p_firmwareqca6698aq_firmwarewcn3910sw5100sa7255p_firmwarewcd9370_firmwaresxr2330p_firmwaresm7550pwsa8832_firmwareqcm6125_firmwareqca6595au_firmwaresnapdragon_8\+_gen_2_mobile_firmwareflight_rb5_5g_firmwaresd_8_gen1_5g_firmwareqamsrv1m_firmwarewcd9390_firmwaresnapdragon_8_gen_2_mobile_firmwareg2_gen_1_firmwareqcs2290sm8650q_firmwareqam8255p_firmwarewcn7860_firmwarewsa8815orne_firmwarewcn7860fastconnect_6200_firmwaresm8550pqrb5165nsxr1230p_firmwarecsra6620wcd9335wcn3950qmp1000lemans_au_lgit_firmwareflight_rb5_5gsm8475pwcd9395iq-9075fastconnect_6200snapdragon_8_gen_2_mobileqcn9012video_collaboration_vc3snapdragon_ar1_gen_1_firmwarewsa8845_firmwaresm6225psa8770p_firmwareqca2066sm8635psnapdragon_4_gen_2_mobilewcn7861_firmwaresm8635p_firmwaresa9000pwcd9378_firmwaresnapdragon_7s_gen_3_mobile_firmwaresa8255p_firmwaresnapdragon_6_gen_3_mobilesnapdragon_8\+_gen_2_mobilessg2125pwcn7881_firmwaresrv1m_firmwareqcs4490_firmwarepalawan25qca6698ausnapdragon_480\+_5g_mobilesnapdragon_695_5g_mobile_firmwarewcn6755_firmwarewcn7880_firmwareqca6574auiq-8275sxr2250p_firmwaresa9000p_firmwareqam8255pfastconnect_6700iq-8300_firmwareqca6391srv1h_firmwareqca2066_firmwaresm6650pqca6574au_firmwaresa8620p_firmwaresnapdragon_460_mobile_firmwaremilos_firmwarewcd9380iq-9100_firmwaresnapdragon_w5\+_gen_1_wearable_firmwarewcd9380_firmwarevideo_collaboration_vc1sa8295p_firmwarewsa8830_firmwareqca8695ausnapdragon_480_5g_mobilewcd9395_firmwarefastconnect_7800_firmwareqca6696snapdragon_6_gen_1_mobilesnapdragon_6_gen_4_mobilesnapdragon_7\+_gen_2_mobilewsa8810ar8031ssg2125p_firmwareqca6574_firmwarerobotics_rb5_firmwareiq-615Snapdragon
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2025-47382
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.19%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-28 Jan, 2026 | 15:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Incorrect Authorization in Boot

Memory corruption while loading an invalid firmware in boot loader.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6696_firmwaresm6650pqca6797aq_firmwaresa8775pwsa8832srv1lsa6155pwcd9390snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmwaresm4635wcn6450_firmwarefastconnect_6900_firmwareqam8650p_firmwareqmp1000wcn7860_firmwarewcn3950snapdragon_480_5g_mobile_platform_firmwarewcd9385sa8620pwsa8835_firmwarewcn7750_firmwarewcn3980_firmwarewcd9378_firmwarewsa8845qcs6690_firmwareqca8695au_firmwareqca9367_firmwaresa9000p_firmwarewcd9378sa8295p_firmwaresm8735_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100p_firmwaresrv1msa7775psxr2350psm6650wsa8845h_firmwareqca6574_firmwareqamsrv1msm8635p_firmwareqca6595au_firmwaresm8850psnapdragon_ar1_gen_1_platform_\"luna1\"qca6688aq_firmwareqcs610_firmwaresa8650p_firmwaresxr2330psnapdragon_695_5g_mobile_platform_firmwarewcd9380_firmwaresnapdragon_ar1_gen_1_platform_firmwareqca9377sm7675p_firmwaresm7675_firmwarewcn6450sa8650pqca6696wcd9395snapdragon_480_5g_mobile_platformsa7775p_firmwarewsa8832_firmwaresnapdragon_4_gen_1_mobile_platform_firmwarewcd9375_firmwareqam8295pqcm6690srv1m_firmwaresm8750p_firmwarewcd9390_firmwarefastconnect_6200_firmwarefastconnect_7800sm7675sa8770p_firmwareqca9377_firmwarewsa8810_firmwareqam8255p_firmwarewcd9370_firmwarewcn7861sm8850sa8770psm7675psm8750pqmp1000_firmwarefastconnect_7800_firmwaresnapdragon_695_5g_mobile_platformqca6574a_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresm6650_firmwareqam8775pqca9367wcn7860video_collaboration_vc1_platform_firmwareqam8775p_firmwarevideo_collaboration_vc3_platformqca6698aqwcd9380qcm6690_firmwaresm7635snapdragon_8_gen_3_mobile_platformwcd9395_firmwarefastconnect_6200sa8295pqamsrv1hsa6155p_firmwareqam8620pwcn7880sa8255p_firmwaresg6150pqcs6690wcd9370qamsrv1m_firmwareqca6698aq_firmwarewsa8830_firmwarewcn3988wsa8815_firmwaresm7635_firmwarewcn7750qam8295p_firmwarewsa8830snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)sm8850p_firmwaresg6150_firmwareqam8650psxr2330p_firmwaresnapdragon_ar1_gen_1_platformwsa8845hqam8620p_firmwarewcn6650_firmwaresa8155p_firmwareqamsrv1h_firmwaresa8255psm7635p_firmwareqca6595wcn7881qca6574au_firmwareqcs610sw5100_firmwarewcd9385_firmwarewcn6650wcn7881_firmwareqca6595_firmwareqca6574auwcn6755_firmwarewcn6755sa9000pqca6595aufastconnect_6700wsa8815qca6797aqsrv1hfastconnect_6700_firmwareqca8695ausm8635_firmwaresa8195p_firmwaresrv1h_firmwaresnapdragon_8_gen_3_mobile_platform_firmwaresm8635pwcn7861_firmwaresm8850_firmwarevideo_collaboration_vc1_platformsw5100sm6650p_firmwareqca6574asg6150sa8195psxr2350p_firmwaresg6150p_firmwarewsa8835sa8775p_firmwarewcn3980video_collaboration_vc3_platform_firmwarewcd9375sm8635sm7635psnapdragon_w5\+_gen_1_wearable_platform_firmwaresa7255p_firmwarewcn3950_firmwaresa7255pqca6574wsa8840wsa8840_firmwaresnapdragon_4_gen_1_mobile_platformqam8255psm8750_firmwarewsa8845_firmwarefastconnect_6900sa8155psa8620p_firmwaresm8750srv1l_firmwarewcn7880_firmwarewcn3988_firmwaresm4635_firmwaresm8650qqca6688aqsm8735wsa8810sm8650q_firmwaresw5100pSnapdragon
CWE ID-CWE-863
Incorrect Authorization
CVE-2025-47341
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.52%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in Camera

memory corruption while processing an image encoding completion event.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwareqcs6490wcd9375video_collaboration_vc3_platformwcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwareqcs5430x2000090_firmwarewsa8845snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwarewcd9385x2000077_firmwarewsa8835_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarewsa8835wcd9370xg101039fastconnect_6900qcc2072_firmwareqcm6490_firmwaresnapdragon_7c\+_gen_3_computex2000086wsa8845hx2000092snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarexg101039_firmwarexg101002fastconnect_6700snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)snapdragon_7c\+_gen_3_compute_firmwareqcs5430_firmwareqcm6490wsa8830wsa8840wsa8845_firmwarewcd9370_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)video_collaboration_vc3_platform_firmwarex2000077wsa8830_firmwarex2000094fastconnect_6900_firmwarexg101032_firmwarefastconnect_6700_firmwareqcm5430_firmwareqcm5430wcd9375_firmwarex2000092_firmwarexg101002_firmwareqcs6490_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-47347
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.52%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack-based Buffer Overflow in Automotive Software platform based on QNX

Memory corruption while processing control commands in the virtual memory management interface.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8150pqam8650psa8620psa8770p_firmwaresrv1l_firmwareqamsrv1m_firmwaresa7255p_firmwaresa8150p_firmwareqca6595_firmwareqamsrv1hqca6574au_firmwareqca6698aq_firmwaresa8255p_firmwareqam8775p_firmwareqca6595sa6145psa8145p_firmwaresa8155_firmwaresa9000pqam8295p_firmwaresrv1m_firmwaresa8770psa9000p_firmwaresrv1h_firmwaresa7775pqam8295psa8775psa6155sa8650psa8195psrv1mqam8775psa6155_firmwareqca6688aqsa8540p_firmwaresa8195p_firmwaresa8295psa6150pqam8255p_firmwaresa8155psa8650p_firmwaresa7775p_firmwareqamsrv1h_firmwareqca6574ausa8775p_firmwareqam8620p_firmwareqca6797aq_firmwareqca6696_firmwaresa6145p_firmwaresa7255psa6155p_firmwareqca6688aq_firmwaresa8620p_firmwareqam8255psa8155p_firmwareqca6797aqsrv1lqca6595au_firmwareqca6595ausa6155pqca6696sa8255pqca6574asa8145pqam8620psrv1hsa6150p_firmwareqca6574a_firmwareqca6698aqqamsrv1msa8540psa8155sa8295p_firmwareqam8650p_firmwareSnapdragon
CWE ID-CWE-121
Stack-based Buffer Overflow
CVE-2025-47355
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.52%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in DSP Service

Memory corruption while invoking remote procedure IOCTL calls.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcn3980_firmwarewcd9380_firmwarewcn3680b_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwarewcd9385x2000077_firmwarewsa8835_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarewsa8835wcn3660bwcn3680bxg101039fastconnect_6900qcc2072_firmwaresnapdragon_7c\+_gen_3_computex2000086wsa8845hx2000092snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarexg101039_firmwarexg101002fastconnect_6700snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)snapdragon_7c\+_gen_3_compute_firmwarewsa8830wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcn3980wcd9378c_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)x2000077wsa8830_firmwarex2000094fastconnect_6900_firmwarexg101032_firmwarefastconnect_6700_firmwarexg101002_firmwarex2000092_firmwarewcn3660b_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47388
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.69%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy without Checking Size of Input in DSP Service

Memory corruption while passing pages to DSP with an unaligned starting address.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwaresm8735_firmwarewcn3988_firmwaresm7435_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100fastconnect_6200sw5100_firmwaresm8735sxr2350pwcd9375sw5100pwcn7860_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn7861wcn3980_firmwaresnapdragon_4_gen_2_mobile_platformfastconnect_6900sm8750pwcn7880wsa8832video_collaboration_vc1_platform_firmwarewcd9370sg6150wcn6755fastconnect_7800wsa8832_firmwarewcn3980wsa8845_firmwarevideo_collaboration_vc1_platformvideo_collaboration_vc3_platform_firmwarewsa8840sm8750_firmwarewcn7750sg6150_firmwaresm7435snapdragon_6_gen_1_mobile_platform_firmwarewsa8830wcd9395_firmwarewcn7881_firmwareqmp1000wcd9385sm8750qcs610_firmwarewsa8810_firmwaresm6475fastconnect_7800_firmwarewsa8830_firmwareqcs610qmp1000_firmwaresm8750p_firmwarewsa8840_firmwarewsa8815_firmwarewsa8835wcn7860wcn7880_firmwaresxr2330psg6150p_firmwarewcd9385_firmwaresw5100p_firmwarewsa8835_firmwaresnapdragon_6_gen_1_mobile_platformwcn7881wcd9380_firmwarewcn3988sxr2330p_firmwarevideo_collaboration_vc3_platformsg6150pfastconnect_6200_firmwarewsa8815wcd9378_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcd9370_firmwarewsa8810wcn6755_firmwarewsa8845sm6475_firmwarewsa8845hwsa8845h_firmwarewcd9395wcd9378sxr2350p_firmwarewcn3950_firmwarewcn7750_firmwarewcd9380wcn3950fastconnect_6700_firmwarefastconnect_6700wcn7861_firmwarefastconnect_6900_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-47360
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack-based Buffer Overflow in Automotive Software platform based on QNX

Memory corruption while processing client message during device management.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8150pqam8650psa8620psa8770p_firmwaresrv1l_firmwareqamsrv1m_firmwaresa7255p_firmwaresa8150p_firmwareqca8695au_firmwareqca6595_firmwareqamsrv1hqca6574au_firmwareqca6698aq_firmwaresa8255p_firmwareqam8775p_firmwareqca6595sa6145psa8145p_firmwaresa9000pqam8295p_firmwaresrv1m_firmwaresa8770psa9000p_firmwaresrv1h_firmwaresa7775pqam8295psa8775psa8650psa8195psrv1mqam8775pqca6688aqsa8540p_firmwaresa8195p_firmwaresa8295psa6150pqam8255p_firmwaresa8155psa8650p_firmwaresa7775p_firmwareqamsrv1h_firmwareqca6574ausa8775p_firmwareqam8620p_firmwareqca6797aq_firmwareqca6696_firmwaresa6145p_firmwaresa7255psa6155p_firmwareqca6688aq_firmwaresa8620p_firmwareqam8255psa8155p_firmwareqca6797aqsrv1lqca6595au_firmwareqca6595ausa6155pqca6696sa8255pqca8695ausa8145pqam8620psrv1hsa6150p_firmwareqca6698aqqamsrv1msa8540psa8295p_firmwareqam8650p_firmwareSnapdragon
CWE ID-CWE-121
Stack-based Buffer Overflow
CVE-2025-47350
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-23 Dec, 2025 | 21:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in DSP Service

Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9378c_firmwarewcd9378cwsa8840_firmwarex2000090_firmwarewsa8840x2000077_firmwarex2000094_firmwarex2000092_firmwarex2000092wcd9385_firmwarewsa8845h_firmwarex2000090x2000086_firmwarexg101002_firmwarefastconnect_6900_firmwarexg101039qca0000qca0000_firmwarefastconnect_7800x2000086fastconnect_6900wsa8845_firmwaresc8380xpwsa8845sc8380xp_firmwarewcd9385wcd9380xg101039_firmwarewcd9380_firmwarex2000094xg101032x2000077fastconnect_7800_firmwarexg101032_firmwarewsa8845hxg101002Snapdragon
CWE ID-CWE-416
Use After Free
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47322
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-28 Jan, 2026 | 17:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Automotive Linux OS

Memory corruption while handling IOCTL calls to set mode.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qrb5165n_firmwareqca6696_firmwareqca8081_firmwareqca6797aq_firmwaresa8775pwsa8832wcn3910wcd9340sa6155psnapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmwaresmart_audio_400_platform_firmwarewcd9390robotics_rb5_platform_firmwarefastconnect_6900_firmwareqca6174a_firmwarewcn3950qcc710_firmwarewcd9385qcn9011snapdragon_x32_5g_modem-rf_system_firmwareqcn6224_firmwaresa8620psm8550p_firmwarewcn3980_firmwarear8031_firmwarewcd9378_firmwarewsa8835_firmwarewsa8845sa9000p_firmwareqfw7124csra6620qca6678aqsa8295p_firmwaresg4150p_firmwarewcd9378snapdragon_auto_5g_modem-rf_gen_2flight_rb5_5g_platform_firmwareqfw7114snapdragon_680_4g_mobile_platform_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100p_firmwaresa7775psrv1mqdx1011snapdragon_662_mobile_platform_firmwaresnapdragon_auto_5g_modem-rf_gen_2_firmwarewsa8845h_firmwareqca6574_firmwareqcm6125_firmwareqamsrv1mqca6584au_firmwareqca6595au_firmwareqca6688aq_firmwaresa8650p_firmwarewcd9335_firmwaresmart_audio_400_platformcsra6620_firmwarewcd9380_firmwareqdx1010sg8275_firmwareflight_rb5_5g_platformqca2066_firmwaresnapdragon_680_4g_mobile_platformsa8650pqca6696wcd9395csra6640sa7775p_firmwaresnapdragon_x75_5g_modem-rf_systemqcs8250wsa8832_firmwaresnapdragon_8\+_gen_2_mobile_platformsnapdragon_685_4g_mobile_platform_\(sm6225-ad\)snapdragon_x72_5g_modem-rf_system_firmwarerobotics_rb5_platformwcd9375_firmwareqam8295psrv1m_firmwarewcd9390_firmwaresnapdragon_x35_5g_modem-rf_systemqca2066snapdragon_8_gen_2_mobile_platformvideo_collaboration_vc5_platform_firmwarefastconnect_7800qca8337snapdragon_x72_5g_modem-rf_systemsa8770p_firmwareqcs8250_firmwarewsa8810_firmwareqam8255p_firmwarear8035_firmwarewcd9340_firmwareqcn9011_firmwaresg8275p_firmwarewcd9370_firmwaresa8770pvideo_collaboration_vc5_platformcsra6640_firmwarefastconnect_7800_firmwareqca6574a_firmwareqcm2290_firmwareqam8775pwcd9335qcs2290qam8775p_firmwarevideo_collaboration_vc1_platform_firmwareqcn9012qca6174aqrb5165nsnapdragon_x75_5g_modem-rf_system_firmwareqca6698aqqdx1011_firmwareqcs7230qfw7114_firmwarewcd9380qca6391_firmwaresnapdragon_460_mobile_platform_firmwarewcd9395_firmwaresm8550pqdu1010sa8295pqamsrv1hsa6155p_firmwaresm7550p_firmwaresa8255p_firmwaresnapdragon_460_mobile_platformsnapdragon_8_gen_2_mobile_platform_firmwareqcs6125_firmwareqcn9012_firmwareqcs6125sg8275pqca6698aq_firmwareqamsrv1m_firmwarewcd9370wsa8830_firmwarewcn3988sm7550pwsa8815_firmwarewsa8830qam8295p_firmwareqfw7124_firmwareqcs2290_firmwareqcs8550_firmwareqam8650pwcd9371_firmwarewsa8845hqcs7230_firmwarewcn6650_firmwaresa8155p_firmwareqamsrv1h_firmwaresm7550sa8255pqca6595qca6574au_firmwareqep8111_firmwareqdu1010_firmwaresw5100_firmwarewcd9385_firmwarewcn6650qcn6224qca6595_firmwareqep8111qca6574auwcn6755_firmwarewcn6755sa9000pqdx1010_firmwareqca6595auqcm8550snapdragon_x35_5g_modem-rf_system_firmwarewsa8815qca8081qca6797aqqcm2290srv1hsa8195p_firmwaresg8275srv1h_firmwaresm7550_firmwareqcm8550_firmwareqcn6274video_collaboration_vc1_platformsw5100qca6574aqcc710snapdragon_8\+_gen_2_mobile_platform_firmwaresa8195psnapdragon_x32_5g_modem-rf_systemsg4150pqcn6274_firmwareqcm6125wsa8835qcs8550sa8775p_firmwarewcn3980qca6678aq_firmwarewcd9375ar8035sa7255p_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcn3910_firmwarewcn3950_firmwaresa7255pqca6574wsa8840wsa8840_firmwareqam8255psnapdragon_662_mobile_platformwsa8845_firmwarefastconnect_6900sa8155psa8620p_firmwarear8031qca8337_firmwarewcn3988_firmwareqca6688aqqca6584auqca6391wsa8810wcd9371qam8650p_firmwaresw5100pSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-47317
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.27%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in BT Controller

Memory corruption due to global buffer overflow when a test command uses an invalid payload type.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc710_firmwares5_sound_platformwcn3988_firmwaresm8735_firmwaresm7635p_firmwaresm8750p_firmwarewcn7880_firmwarewcd9390s3_gen_2_sound_platformsm7635_firmwarewcn6650s5_gen_2_sound_platform_firmwarewcd9370_firmwarewsa8832_firmwarewcn7880sm7675_firmwareqcc7225_firmwaresm6475wsa8830_firmwaresm8635_firmwaresm7635pfastconnect_7800wcd9371_firmwarewcn6755wsa8845hwsa8830wcd9390_firmwareqcc7225sm7550p_firmwarewcd9375_firmwares3_gen_2_sound_platform_firmwarewsa8840_firmwarefastconnect_6700wcn7860_firmwarewcd9378_firmwarewsa8840s5_sound_platform_firmwaresm8750_firmwarewcd9370snapdragon_6_gen_1_mobile_platformwsa8845h_firmwaresm6475_firmwarefastconnect_6200wcn7881_firmwaresm6650p_firmwarewcd9395sm7675ps3_sound_platformsm7635sm6650wsa8810_firmwarewcn7860fastconnect_6700_firmwaresm8635p_firmwareqcc710qcc711_firmwaresm7550psm8635psm7550qmp1000sm7675wcd9371wsa8815sm7550_firmwares5_gen_2_sound_platformwcn7861qcc5161_firmwarewcd9385_firmwareqmp1000_firmwarewcn7750_firmwarewsa8835s3_sound_platform_firmwarewcd9385sm7435wcn7881wcd9375wcd9378wcn6755_firmwarewsa8845_firmwaresm7435_firmwareqcc5161wsa8835_firmwarefastconnect_6200_firmwaresm8735wsa8815_firmwarewcn7861_firmwareqcc7226_firmwaresm6650pwcn3988sm8635wsa8832sm8750wcd9395_firmwaresm8750pwsa8810qcc7226qcc7228sm6650_firmwarewcn7750wcn6650_firmwareqcc7228_firmwarefastconnect_7800_firmwareqcc711snapdragon_6_gen_1_mobile_platform_firmwaresm7675p_firmwarewsa8845Snapdragon
CWE ID-CWE-126
Buffer Over-read
CVE-2025-47329
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.27%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Release of Invalid Pointer or Reference in Android Core

Memory corruption while handling invalid inputs in application info setup.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6574_firmwareqcs6690sw5100wcd9390sa8255psa8775p_firmwareqca6696_firmwarewsa8832_firmwareqcs6690_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwareqam8255pwsa8830_firmwarefastconnect_7800wcn6755wcd9380_firmwaresnapdragon_w5\+_gen_1_wearable_platformsa8770psa8155pqca6595_firmwarewsa8845hwsa8830wcd9390_firmwaresa8195p_firmwaresnapdragon_ar1_gen_1_platformwsa8840_firmwareqca6696qca6574asa8195pwsa8840qca6595au_firmwareqca6574au_firmwaresa9000p_firmwaresa6155p_firmwareqcm6690sw5100pwsa8845h_firmwarewcn7881_firmwarewcd9395wcn6450sa8775pqam8255p_firmwarewcd9380qca6574ausa8770p_firmwareqca6574wcn7861qam8775p_firmwaresnapdragon_8_gen_3_mobile_platform_firmwaresa8255p_firmwarewcd9385_firmwareqam8775pwsa8835sw5100p_firmwarewcn6450_firmwaresa6155pwcd9385qcm6690_firmwarewcn7881qca6595ausa9000pwcn6755_firmwarewsa8845_firmwarewsa8835_firmwarewcn7861_firmwarewsa8832wcd9395_firmwareqca6595snapdragon_ar1_gen_1_platform_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"sw5100_firmwarefastconnect_7800_firmwaresnapdragon_8_gen_3_mobile_platformsa8155p_firmwareqca6574a_firmwarewsa8845Snapdragon
CWE ID-CWE-763
Release of Invalid Pointer or Reference
CVE-2025-47339
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.69%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 21:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in HLOS

Memory corruption while deinitializing a HDCP session.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwareqam8295p_firmwarewcn3988_firmwareqcm5430ipq8070_firmwareqca9889sa7255p_firmwareimmersive_home_214_platformqca6595au_firmwareqam8255pwcn7860_firmwarewcn7861qca6574au_firmwaresm7635pqcn6132_firmwaresc8380xpsa8650p_firmwaresrv1lipq4018_firmwareqam8775p_firmwareqca9980snapdragon_auto_5g_modem-rf_gen_2_firmwareqca6174aipq8068_firmwareqca6428ipq6010_firmwaresa6155p_firmwarewsa8845_firmwarevideo_collaboration_vc3_platform_firmwaresnapdragon_x72_5g_modem-rf_system_firmwareqamsrv1mqca9994_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresm8635pimmersive_home_318_platform_firmwaresm8635_firmwareipq8074ipq8071_firmwareqca6574awcn7881_firmwareqca9990sa9000psa8195p_firmwareqca9984_firmwareqca9898qca6174a_firmwareqca6595ausa8155p_firmwaresm6650psnapdragon_x35_5g_modem-rf_systemsm8750p_firmwaresa6145p_firmwarewcn7860qcs5430sxr2330pipq6000_firmwareqcn9100_firmwareqca8075_firmwaresa8295p_firmwareqcs9100snapdragon_6_gen_1_mobile_platformwcn7881qcn9070qca6584auqcs9100_firmwaresm6650p_firmwareqfw7124_firmwareqcn5052qca9984qfw7114_firmwareqca9980_firmwaresa6150p_firmwarewsa8810qca6574auqca6574a_firmwarewsa8845hqcn5152_firmwareipq4028qca8337_firmwareqcn5122_firmwareqcn9000_firmwarewcn3950immersive_home_316_platformipq8078asm7635p_firmwareimmersive_home_316_platform_firmwarefastconnect_6700_firmwarefastconnect_6900_firmwareqca9985qcm6490_firmwaresdx55_firmwareqca6678aq_firmwaresm7435_firmwarewcd9340_firmwaresrv1hwcn6650_firmwareqcn9274srv1l_firmwareqca9886_firmwaresa8155psm8750pipq8076aqep8111_firmwaresm7675_firmwarewcd9370qcc710_firmwareqca9888_firmwareqcn6224qcn5024csr8811_firmwaresa8145p_firmwareqca9985_firmwareqcn5052_firmwarecsr8811ipq4029_firmwaresa8540p_firmwareipq8078_firmwaresa8150pqca7500qca9986qcn6112_firmwarewsa8840sa7255pipq8074_firmwaresm7435ipq8071a_firmwarear8035snapdragon_6_gen_1_mobile_platform_firmwarewsa8830qca9886qmp1000sa6145pqcn6023_firmwareipq8174_firmwareipq5028snapdragon_auto_5g_modem-rf_gen_2sa8770p_firmwaresm6475ipq5010qcs6490qcn9024_firmwareqca6678aqsnapdragon_x35_5g_modem-rf_system_firmwaresa9000p_firmwareqmp1000_firmwareqca6438wsa8815_firmwarewsa8835qca9888ipq4019_firmwaresa8620pqca9986_firmwareqca6696qcn6122qca9898_firmwarewcd9380_firmwarewcn3988qca6428_firmwareqcn9022qcn9100video_collaboration_vc3_platformwsa8815qcs6490_firmwarear9380_firmwaresa8145pqcn5154_firmwaresa8195pipq8074aipq8078sa8620p_firmwaresm6475_firmwareqca9990_firmwaresnapdragon_x32_5g_modem-rf_systemqam8620p_firmwaresm4635wcd9378qcn5024_firmwareqcn5124_firmwaresxr2350p_firmwaresa8770pqcn9072qcn6023qcn6274_firmwarewcn7861_firmwareqca8075qcn9072_firmwareqca9889_firmwaresm8735_firmwaresm8650q_firmwareipq8064qam8620pqcn5152snapdragon_8_gen_3_mobile_platformwcd9375ipq6028qca6574snapdragon_4_gen_2_mobile_platform_firmwareipq4029qca9880_firmwaresm8635p_firmwareqca8081sm6650_firmwarewcn7880ipq8072aipq8071ipq8173qcn9274_firmwareqcn9074_firmwareimmersive_home_216_platformqca9994ipq4028_firmwareipq8070a_firmwareipq8078a_firmwareqamsrv1h_firmwaresnapdragon_8_gen_3_mobile_platform_firmwarewcn7750ipq8074a_firmwarewcd9395_firmwareipq8072_firmwaresm8750sm4635_firmwareqcn9022_firmwareqam8255p_firmwareqca9992wsa8810_firmwaresa8150p_firmwareqca8081_firmwaresrv1h_firmwareqca4024ipq5010_firmwareqca6696_firmwareqca6584au_firmwaresdx55qfw7114ipq8076_firmwaresnapdragon_ar1_gen_1_platform_firmwaresa7775pqca6698aq_firmwarewsa8835_firmwareqca9880qcm5430_firmwareipq8072ipq8065_firmwareqcn5022_firmwareqca6797aq_firmwareqcn6122_firmwaresa8775pipq5028_firmwareqcn6024ipq8076a_firmwaresxr2330p_firmwareipq6010qcn9070_firmwaresrv1mfastconnect_6200_firmwareqam8650pqca6574_firmwareqam8650p_firmwarewcn6755_firmwareqcn5164_firmwareipq8071asnapdragon_x75_5g_modem-rf_systemqcn5122qca6438_firmwareipq8070aqam8775pipq8064_firmwareipq8068sm7635_firmwarewcn3950_firmwarewcn7750_firmwaresm6650ipq6018qcn5164sa8650pqcn6024_firmwareimmersive_home_216_platform_firmwaresrv1m_firmwarewcn6650qca6797aqfastconnect_6200sm8735sxr2350psm7635snapdragon_x75_5g_modem-rf_system_firmwareipq8070sm8635ipq4018qcn9000snapdragon_4_gen_2_mobile_platformfastconnect_6900qep8111qcn6274qca4024_firmwarewsa8832qcn5154sa8775p_firmwarewcn6755qcn6112ipq6018_firmwarewcd9390fastconnect_7800qcn5124wsa8832_firmwareqamsrv1hqca6698aqsa8255pipq8173_firmwaresm8750_firmwareipq6000sa6155psnapdragon_x32_5g_modem-rf_system_firmwareimmersive_home_214_platform_firmwareipq8072a_firmwareqcn9024qca6688aq_firmwaresa8540psm7675pwcd9385qcs5430_firmwareipq4019qca6688aqwcd9340fastconnect_7800_firmwaresnapdragon_ar1_gen_1_platformwsa8830_firmwareqamsrv1m_firmwarewsa8840_firmwarewcn7880_firmwarewcd9385_firmwareipq8076qca8337qfw7124qca9992_firmwareqam8295pqca6595qcn6224_firmwarear9380ipq8174qca6595_firmwaresnapdragon_x72_5g_modem-rf_systemsm7675qcm6490sm7675p_firmwarewcd9378_firmwareqcs615_firmwarewcd9370_firmwarear8035_firmwareipq8065wsa8845qcn6132qca7500_firmwareqcc710wsa8845h_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"sa6150pwcd9395qcs615qcn5022ipq6028_firmwareqcn9074sc8380xp_firmwarewcd9380sa7775p_firmwaresa8255p_firmwaresa8295pimmersive_home_318_platformfastconnect_6700wcd9390_firmwaresm8650qSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-47393
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.69%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Automotive Linux OS

Memory corruption when accessing resources in kernel driver.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-srv1m_firmwareqamsrv1m_firmwaresa9000p_firmwareqca6797aqsa7255p_firmwaresrv1hsa7775pqam8255pqca6698aq_firmwaresa8620pqca6595qca6797aq_firmwaresa8650p_firmwaresa8775pqam8775p_firmwareqca6595_firmwaresa8775p_firmwaresrv1mqam8650pqam8650p_firmwareqamsrv1hqca6698aqsa8255pqamsrv1msa8620p_firmwaresa7255pqamsrv1h_firmwareqam8775psa8770psa7775p_firmwaresa8255p_firmwaresa9000pqam8255p_firmwaresa8650psa8770p_firmwaresrv1h_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2025-47314
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.20%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Input Validation in Automotive Software platform based on QNX

Memory corruption while processing data sent by FE driver.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6698aqsrv1h_firmwaresa8540p_firmwaresa8650p_firmwaresa8255pqamsrv1m_firmwareqca6574ausa8775p_firmwaresrv1m_firmwareqam8620p_firmwaresa8770p_firmwareqamsrv1h_firmwareqam8255p_firmwaresa8295pqca6696_firmwareqca6797aq_firmwareqam8775p_firmwaresa8255p_firmwareqam8255pqam8775pqam8295p_firmwaresa7255p_firmwaresa6155psa7775psrv1msa8540psa8770pqca6688aq_firmwareqca6595_firmwareqam8295pqca6595ausa8155psa9000psa8620p_firmwaresa8195p_firmwaresa8650pqca6797aqqamsrv1mqca6696qam8620psa8195psa8295p_firmwaresrv1hsrv1l_firmwareqca6688aqqca6595au_firmwareqca6574au_firmwareqam8650p_firmwaresa9000p_firmwaresa7775p_firmwaresa6155p_firmwaresrv1lqca6595qam8650psa7255psa8620psa8155p_firmwareqca6698aq_firmwaresa8775pqamsrv1hSnapdragon
CWE ID-CWE-20
Improper Input Validation
CVE-2025-47358
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.29%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Secure Processor

Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-x2000077wcd9378cqcc2072wsa8845wsa8845hx2000077_firmwarefastconnect_6900_firmwarewsa8845_firmwarex2000094x2000090_firmwarewsa8840_firmwarefastconnect_6900sc8380xpwcd9378c_firmwarewcd9385xg101032wcd9380fastconnect_7800wsa8835x2000090wcd9380_firmwaresc8380xp_firmwarewsa8840x2000086_firmwarewsa8830wsa8835_firmwarewcd9385_firmwarexg101032_firmwarewsa8830_firmwaresnapdragon_8cx_gen_3_compute_platform_firmwarex2000092xg101002qcc2072_firmwarex2000092_firmwaresnapdragon_8cx_gen_3_compute_platformx2000086fastconnect_7800_firmwarex2000094_firmwarexg101039xg101002_firmwarewsa8845h_firmwarexg101039_firmwareSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-47349
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.52%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use of Out-of-range Pointer Offset in DSP Service

Memory corruption while processing an escape call.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845wcd9385x2000077_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarexg101039fastconnect_6900qcc2072_firmwarex2000086wsa8845hx2000092xg101039_firmwarexg101002wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwarex2000077x2000094fastconnect_6900_firmwarexg101032_firmwarexg101002_firmwarex2000092_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-823
Use of Out-of-range Pointer Offset
CVE-2025-47387
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-28 Jan, 2026 | 15:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in Camera

Memory Corruption when processing IOCTLs for JPEG data without verification.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-snapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwareqca6391_firmwaresm6250_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-aa\)wcd9340fastconnect_6200snapdragon_8c_compute_platform_\(sc8180x-ad\)aqt1000_firmwaresc8380xpfastconnect_6900_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)_firmwareqcs6490_firmwarewcd9385wcd9370wsa8830_firmwarewsa8835_firmwaresnapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_firmwarewsa8845wsa8815_firmwarewsa8830snapdragon_7c\+_gen_3_computesc8380xp_firmwareqcm5430snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)wsa8845hsnapdragon_7c_compute_platform_\(sc7180-ac\)_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmwarewsa8845h_firmwarewcd9341qca6420_firmwareqcm6490wcd9385_firmwaresc8180x\+sdx55wcd9380_firmwareqcm5430_firmwarefastconnect_6700wsa8815snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)fastconnect_6700_firmwarefastconnect_6800_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-af\)fastconnect_6800snapdragon_7c\+_gen_3_compute_firmwareqcm6490_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmwarewcd9341_firmwaresnapdragon_8c_compute_platform_\(sc8180x-ad\)_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)qcs6490wcd9375_firmwaresnapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)fastconnect_6200_firmwareaqt1000snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwarewsa8835snapdragon_8cx_compute_platform_\(sc8180xp-ac\)_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)fastconnect_7800snapdragon_8cx_compute_platform_\(sc8180x-ab\)qca6430_firmwarevideo_collaboration_vc3_platform_firmwarewcd9375wsa8810_firmwaresnapdragon_8c_compute_platform_\(sc8180xp-ad\)wcd9380qca6420wcd9340_firmwarewsa8840wsa8840_firmwaresm6250qca6430wcd9370_firmwaresc8180x\+sdx55_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-af\)_firmwarewsa8845_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarefastconnect_7800_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)fastconnect_6900qcs5430snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)_firmwareqcs5430_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmwarevideo_collaboration_vc3_platformqca6391snapdragon_7c_compute_platform_\(sc7180-ac\)wsa8810snapdragon_8cx_compute_platform_\(sc8180xp-ac\)Snapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CVE-2025-47352
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Audio

Memory corruption while processing audio streaming operations.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072_firmwareqcc2072x2000086wsa8845hx2000092x2000094_firmwarexg101039_firmwarexg101002wsa8840wsa8845_firmwarex2000090x2000086_firmwarex2000090_firmwarewsa8840_firmwarewcd9378cwsa8845xg101032wcd9378c_firmwarex2000077x2000077_firmwarex2000094fastconnect_7800xg101032_firmwarefastconnect_7800_firmwarexg101002_firmwarex2000092_firmwarexg101039wsa8845h_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2022-40516
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-3.85% / 87.97%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 05:02
Updated-09 Apr, 2025 | 14:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack-based buffer overflow in Core

Memory corruption in Core due to stack-based buffer overflow.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresd_8cx_gen3_firmwaresa6150p_firmwaresm6250p_firmwareqcs610qca8337qca6431_firmwarewcd9360_firmwaresdx65qca4024_firmwarewcn3950_firmwaresa8150p_firmwareqcs2290qca6595au_firmwaresa6155qca6335csra6620_firmwareqcs605_firmwaresd_675_firmwarecsra6640_firmwaresa415mwcn3998wcd9371_firmwareqam8295pwcn3950qcn6024_firmwaresd720gsm4125sd_8cx_gen2_firmwareqca8386_firmwaresd_8_gen1_5g_firmwareqca8084_firmwareqsm8350_firmwaresd710_firmwareqsm8350sd460_firmwaresm7315_firmwarewcn7850qca6574au_firmwarewcd9375_firmwareqca8081_firmwarewcn3998_firmwaresa6155_firmwareqca6420wcd9360sd680_firmwarewcn3999sd_8cx_gen2qrb5165_firmwareqrb5165m_firmwaresa4155p_firmwaresa8155_firmwareqca4004_firmwareipq6010sd662_firmwareqcs405qca6430wcd9306_firmwarewcd9340sd765gsw5100fsm10056_firmwaresd680qca6436wcn6851sa6155pqcs603_firmwarewcn7851_firmwarewcd9341qca6431qca6696_firmwarewcd9371sd870_firmwaresd750gipq9008_firmwarewcn3910_firmwaresxr2150p_firmwaresd_8cxsa8150pqca4004wsa8830_firmwaresd855_firmwaresd660sd865_5g_firmwaresd712wcn3988sd660_firmwarewcn7850_firmwaresa8195p_firmwareqcn5121sm8475qcn5022_firmwareqcn7606_firmwarewcn6750_firmwaresa8295p_firmwarewcn3991qca8337_firmwarewcd9380_firmwaresw5100pqca8084qca6564ausdx55m_firmwarewcn6856_firmwareipq9008sd670_firmwareqca6574csr8811_firmwarewcd9380qcs410sd690_5g_firmwaresdx50m_firmwaresdx24_firmwareqca8072_firmwareqcn9012_firmwareqca6430_firmwareqcn9274_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980qca6335_firmwareipq6018_firmwareqcs605wcd9340_firmwarewsa8815wcn6850sd7cwcn3910qca6320qca6426_firmwareqca9984ipq6028sd835qcn9024ipq9574_firmwarewcn3980_firmwaresd730sdx55mqcc5100_firmwaresa8295pqca6421_firmwarewcn6740_firmwaresd678_firmwarear8031_firmwareqrb5165wcn6851_firmwareqcs603sd670qcn9024_firmwareqca6564a_firmwareqcm4290_firmwaresd870wcn6855qcn5121_firmwaresw5100p_firmwaresa8540pqcs610_firmwareqsm8250sa6145pipq6018sdxr1ar8031qca6595_firmwareqcs405_firmwaresa8145pmdm9205_firmwareqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwaresd780g_firmwaresdx55sd888_firmwareqcn5021_firmwaresa8155pcsra6640sd675qcs8155_firmwaresa4155psxr2150par8035_firmwareqsm8250_firmwareqcn7606qcm2290wcn3991_firmwaremdm9150_firmwarewsa8830sd678qcn9070sa8145p_firmwareqcs2290_firmwarefsm10056sd7c_firmwarecsrb31024csra6620qca8082qcn9072qca8386qcs4290sd765g_firmwareqca6420_firmwareqca6390_firmwaresd690_5gipq6000sd730_firmwarewcd9370sd675_firmwareqcn5152_firmwareqca6564qca6426wcn3990_firmwareqrb5165n_firmwareqcn9000_firmwareqca9984_firmwareqca9377sd_8cx_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcd9326_firmwaresd662qam8295p_firmwareqcn9011_firmwaresa8155qca8082_firmwareqca6320_firmwaresa9000p_firmwareqcn5122_firmwaresdx55_firmwareqca6595auqcn6023_firmwarewcn3999_firmwaresm7250p_firmwareqca6436_firmwareqrb5165nwcd9306sd778gqca6564au_firmwaresa6155p_firmwareqca6310qcn9274qcs8155wcn7851sa515m_firmwareqcs6490sdxr2_5gqcn5052sa415m_firmwarewcn3988_firmwareqcn9074sa6145p_firmwareqca6421qca8085sd778g_firmwaresm6250sa8195psd712_firmwarewsa8810_firmwaresd765_firmwarewcd9326wcd9335qca8081qcn6023qca6174a_firmwareqcs4290_firmwarewcd9385qca8085_firmwareqcs6490_firmwaresd_8cx_gen3qca6390wcd9375sd750g_firmwareaqt1000ar8035csr8811sm6250_firmwarewsa8815_firmwaresd888_5g_firmwareqcm6490wcn6850_firmwarewsa8835_firmwareqcx315qca6564asa4150pqca8072qcm2290_firmwarewcn3990qcn9000sd_675sd780gsd865_5gqca6595qcc5100sdx24qcn9012sd888wsa8835qcx315_firmwaresa8540p_firmwaresd888_5gsm6250pqca8075_firmwaresc8180xqca6574aipq6005_firmwarewcn6855_firmwareqca6174asm7325pqca6310_firmwarewcn6750mdm9205sa9000pqca6574_firmwaresa515msd855sm4125_firmwaresm7325p_firmwaresd765qca6574a_firmwareqcn5021qcn5152sd768g_firmwareqrb5165msd850_firmwaresm7315sd460qca6391sdxr1_firmwareipq6005aqt1000_firmwaresdx65_firmwareqcm4290csrb31024_firmwareqcm6490_firmwaresdx50mqcn9070_firmwareipq6028_firmwareqcn9011sc8180x_firmwareqca6574ausd710sa8155p_firmwareqcn5122ipq9574wcd9341_firmwarewsa8810mdm9150wcn6856qcn5022sd835_firmwareqca6564_firmwaresd768gipq6010_firmwarewcn6740qca6696sd845_firmwaresa6150pqca8075qcn9022_firmwareqcn6024qcn9022sd845qcn9072_firmwaresm7250pipq6000_firmwaresd720g_firmwaresw5100_firmwareqcn9074_firmwareqcs410_firmwaresd850Snapdragon
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-40532
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.06% / 18.80%
||
7 Day CHG~0.00%
Published-04 Apr, 2023 | 04:46
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer overflow or wraparound in WLAN

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresm7325-ae_firmwaremdm9640_firmwaresm6250p_firmware8994_firmwareipq4028_firmwaresm4250-aam_firmwareqca8337ar9380ipq8173_firmwareqcn5124mdm9645wcn3950_firmwaresc8180x\+sdx55qca6595au_firmwaresa6155mdm8215home_hub_100_platformsd_455_firmwareapq8076qcs6125_firmwaremsm8108sm4375wcn3998wcd9371_firmwaremsm8108_firmwarewcn3950qcn6024_firmwaresm4125immersive_home_316_platform_firmwareqsw8573_firmwaresm6375_firmwarewcn3660bqsm8350_firmwareqsm8350sd460_firmwaresm7315_firmwaresnapdragon_636_mobile_platformwcn3998_firmwareqca8081_firmwareqca6420qcn9002qca9986snapdragon_auto_5g_modem-rf_firmwareipq8070_firmwareqca9367_firmwareipq8065ipq8078a_firmwaresdm450sd_8cx_gen2sa8155_firmwareqca4004_firmwareipq8068qca6430snapdragon_630_mobile_platformqts110wcd9306_firmware8905_firmwarewcd9340qca6698aq_firmwaremsm8209_firmwarewcn685x-1_firmwaremdm9250_firmwareqca9888_firmwareqcn6122sm8150_firmwaresnapdragon_wear_2500_platformqca6696_firmwarewcd9371qca1062qcn5154_firmwaremdm8215_firmwaresm4350_firmwaresd_8cxsa8150pqca4004qca9992_firmwaresd660sd865_5g_firmwaresm7225_firmwaresdm850sd660_firmwareqcn5022_firmwarewcn6750_firmwareqcn7606_firmwaresm6125_firmwareimmersive_home_216_platform_firmwareqca6428_firmwaresm6375qca9985_firmwaresm6115_firmwareipq4018_firmwaressg2125pqca9980_firmwaresdm429wipq8078qca8084qcn9001_firmwareipq81739205_lte_modemsd670_firmwareqca6574apq8053-accsr8811_firmwarewcd9380qcs410qcn5024qca9379_firmwaresxr1230pqca9985qcn9012_firmwaresd626qcn9274_firmwareipq6018_firmwareqcm4325_firmwarewcd9340_firmwarewsa8815sm6150-ac_firmwarepmp8074_firmwareqcn6112qca6584_firmwaresdm429_firmwaresnapdragon_630_mobile_platform_firmwaresm4250-aammdm9215_firmwareipq6028ipq8064sd835pmp8074ipq9574_firmwareqca1990wcn3980_firmwaresd730sa8295p9205_lte_modem_firmwareqca2062_firmwaresm6350wcn6740_firmwareqca6678aqsnapdragon_x65_5g_modem-rf_systemapq8064au_firmwareipq8078_firmwareqcn5054qcs603qca9994sm6350_firmwarewcn785x-1_firmwareqca9980sd670qcn9024_firmwareipq8174_firmwareqcm4290_firmwareqcn7605_firmwaresw5100p_firmwareqcs610_firmwaresa6145pqca9886_firmwarear8031immersive_home_214_platformsd820_firmwareqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwaresdx55qcn5021_firmwaresm8250csra6640ssg2115p_firmwaresnapdragon_x20_lte_modemwcn3660qca9379qcn7606qsm8250_firmwaresdm845_firmwarewsa8830sxr2230p_firmwareqca1062_firmwaresdm712_firmwaresnapdragon_x24_lte_modem_firmwarecsrb31024mdm9628_firmwareflight_rb5_5g_platformmdm9650flight_rb5_5g_platform_firmwareqca8082qca9992qcs4290snapdragon_x20_lte_modem_firmwaremdm9250apq8053-liteqca6420_firmwareqca2064_firmwaresnapdragon_auto_4g_modem_firmwaremdm9310_firmware8994sd675_firmwareqca6564sm6115qca6426wcn3990_firmwareqrb5165n_firmwareqca9984_firmwareqca9377wcd9385_firmwarewcd9326_firmwarewcn3615_firmwareipq8074asm7325-afqcn6102_firmwareapq8094qcn9011_firmwaresa8155snapdragon_x55_5g_modem-rf_systemqca6584qcn5122_firmwaresda\/sdm845_firmwaresdx55_firmwaresnapdragon_208_processor_firmwareqcn6023_firmwarewcn3615sm7250p_firmware8953wcn3610_firmwareqrb5165nwcd9306qca6584ausd778gsnapdragon_x65_5g_modem-rf_system_firmwareapq8053-aa_firmwaresm6225snapdragon_208_processoripq8174qcn5052qca9367apq8092snapdragon_wear_3100_platformsm8250_firmware8976qcn6112_firmwaresm8250-acwcn3988_firmware315_5g_iot_modemqcn9074qm215qca6421qca8085sd778g_firmwaresm7250-aasa8195psxr1120sdm710_firmwaresm4375_firmwarewcd9326wcd9335qcn60238917apq8053-aaqcs4290_firmwareqca8085_firmwaresxr2130_firmwareqcs6490_firmwaresm7150-abqca6390qca9898_firmwarewcd9375aqt1000sc8180x\+sdx55_firmwaresm6250_firmwaresm6150_firmwareapq8092_firmwareipq5010_firmwareipq8074a_firmwaresm8150wsa8815_firmwaresnapdragon_636_mobile_platform_firmwareapq8017sxr1120_firmwareqcm6125_firmwaresnapdragon_x5_lte_modem8937sdm845sd865_5g8953proqca65958937_firmwareipq8065_firmwaresxr1230p_firmwaresnapdragon_835_mobile_platformqcn5154qca8075_firmwaresxr2130snapdragon_wear_4100\+_platformsnapdragon_820__automotive_platform_firmwarewcn685x-5_firmwareqcn6132_firmwareqcn9003_firmwaresdm670_firmwareqca9888qca6310_firmwaresm7325apq8094_firmwareipq8070a_firmwaremdm9615qcs400qca6574_firmwareqca9886sm7325p_firmwaresxr2230psnapdragon_xr2_5g_platform_firmwareqca6175aqca6574a_firmware8953pro_firmwareqrb5165msm7315snapdragon_x55_5g_modem-rf_system_firmwaremdm9310qcn6102snapdragon_auto_4g_modemsnapdragon_632_mobile_platform_firmwarecsrb31024_firmwareqcm6490_firmwarewsa8832_firmwaresnapdragon_xr1_platformqcn9070_firmwarewcn685x-5ipq6028_firmwareipq8072a_firmwareqca9889_firmwareqcn5122mdm9645_firmwaresdx20m_firmwaresm7250-aa_firmwaresm8150-ac_firmwareqcn5022sm8350-acqca6564_firmwareqca1064_firmwarewcn6740sm6150-acsnapdragon_x50_5g_modem-rf_systemqca8075qcn6024qcn9022mdm9615_firmwareqcn9002_firmwareipq6000_firmwareqcs410_firmwaresnapdragon_wear_1300_platformqca6175a_firmwaresdm660_firmwareqts110_firmwaresm7325_firmwaresd_8cx_gen3_firmwareqca2066sa6150p_firmwareqcs610315_5g_iot_modem_firmwareqca6431_firmwarewcd9360_firmwareqca4024_firmwaresnapdragon_wear_2100_platform_firmwareimmersive_home_318_platform_firmwareipq8078aipq5028_firmwaresa8150p_firmwareqcs2290qca6335qca2062sdm670sdm712sm8350csra6620_firmwareqcs605_firmwaresd_675_firmwarecsra6640_firmwareapq5053-aa_firmwarewcn685x-1qcs400_firmwaresm7350-ab_firmwareqca6554a_firmwareqam8295psd_8cx_gen2_firmwareipq8076amdm9628qca8386_firmwaresd_8_gen1_5g_firmwareqca8084_firmwaresm7150-acqca6428sm7325-aeqca6574au_firmwareqcn5164_firmware8976_firmwaresa6155_firmwaresm6225-adwcd9375_firmwaremsm8909wwcd9360snapdragon_xr2\+_gen_1_platformsdx20mqca6438_firmware8909qca6678aq_firmwarewcn3999sm6225-ad_firmwareqrb5165m_firmwareipq5028qrb5165_firmwareipq4029_firmwareqca6698aqqcs6125apq8016_firmwareipq6010sd662_firmwaresm7250-ab_firmwareqcn6132sd626_firmwareqca1990_firmwaresw5100home_hub_100_platform_firmwareqca64368953_firmwaresa6155pqcs603_firmwarewcn3660_firmwarewcd9341ipq8068_firmwareqca2066_firmwarepm8937_firmwareqca6431ipq9008_firmwaresnapdragon_x12_lte_modemwcn3910_firmwaresm8250-ac_firmwarewsa8830_firmwaresd855_firmware8940wcn3988qca6438sa8195p_firmwareqca9898sa8295p_firmwareipq4028wcn3610mdm9640msm8608qca8337_firmwarewcd9380_firmwareipq8072asw5100pmsm8996au_firmwarewcd9330snapdragon_820__automotive_platformipq8076a_firmwaresnapdragon_w5\+_gen_1_wearable_platformqca6564auipq9008qcn5164sdm429qet4101_firmware8920_firmwaresnapdragon_wear_4100\+_platform_firmwareqcn5054_firmwareapq8053-ac_firmwaresm7150-aa_firmwareqca8072_firmwareqca6174qca6430_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980qca6335_firmwaresm7225qsw85738996qcs605sd7cwcn3910qca6320mdm9650_firmwareqca9986_firmwareqca6426_firmwarewcn3660b_firmwarewcn3680qca9984qcn9024snapdragon_xr2\+_gen_1_platform_firmwarewcd9330_firmwareipq8064_firmwaresm7150-aasnapdragon_x50_5g_modem-rf_system_firmwareqca6421_firmwaresm7125snapdragon_xr2_5g_platformar8031_firmwarewcn3680_firmwaresm7150-ab_firmwareqrb5165sm8350_firmwareipq8070sdm660sdm710qca6564a_firmwareapq8053-lite_firmwaresnapdragon_x24_lte_modemwsa8832qsm8250ipq6018sdm439_firmwareqca6595_firmwaresa8145pimmersive_home_214_platform_firmwareqca2064qm215_firmwaresm4350-ac_firmwaresd888_firmwaresa8155psd675qet4101ar8035_firmwareqcm2290snapdragon_632_mobile_platformqcn5024_firmwaresnapdragon_wear_2100_platformqcn9070sa8145p_firmwaresm6125qcs2290_firmwaresdm450_firmwarewcn785x-5sd7c_firmwarecsra6620qcn9072sm7250-ac_firmwareqca83868996_firmwareqca6390_firmwareipq8069_firmwareipq6000qca6174_firmwaresd730_firmware8920wcd9370snapdragon_835_mobile_platform_firmwaressg2115pqcn5152_firmwareqca6584au_firmwareapq8076_firmwareqcn9000_firmwaresm8450sm8250-absd_8cx_firmwareqcn7605immersive_home_216_platformimmersive_home_316_platformimmersive_home_318_platformqca2065sd662qcn5124_firmwareqam8295p_firmwareapq8037qca1064qcn6100_firmwareqca8082_firmwareqca6320_firmwarewcn3680b_firmware8917_firmwareqca6595ausm7325-af_firmwarewcn3999_firmwareqca6436_firmwaresm4350-acsnapdragon_w5\+_gen_1_wearable_platform_firmwareipq5010qca6564au_firmwaresa6155p_firmwareqca6310qcn9274pm8937qcn9001qca9990qcs6490snapdragon_x5_lte_modem_firmwaresa6145p_firmwaresm6250apq8017_firmwarewsa8810_firmwaresm8450_firmwaresnapdragon_ar2_gen_1_platform_firmwaresg4150pqca8081ipq8071aqca6174a_firmwareipq8071a_firmwaresnapdragon_wear_1300_platform_firmwarewcd9385qca2065_firmwaresnapdragon_x12_lte_modem_firmwaresd_8cx_gen3ar8035csr8811sda\/sdm845apq8064au8909_firmwareqcn9100_firmwarewcn3620_firmwaresd820qcm6490wsa8835_firmwarewcn3620sm7350-abqca6564asa4150psg4150p_firmwarewcn785x-1qcm4325qca8072qcm2290_firmwareapq5053-aa8992_firmwarewcn3990qcn9000sd_675qca6554aar9380_firmwaresm8350-ac_firmwaresdm439sm8150-acqcn9012sd888sm6150msm8909w_firmwareqcn6122_firmwaremsm8996ausdm429w_firmwarewsa8835snapdragon_auto_5g_modem-rfsd_8_gen1_5gsm6250pssg2125p_firmwareipq4018qca6574aqca9889qca6174asm7325pipq8074wcn6750qca9994_firmwareqcn9003ipq8076_firmwaresm7150-ac_firmwaresm7250-ab8992sd855sm4125_firmwareipq80768940_firmwareqcn5021ipq8069qcn5152msm8209wcn785x-5_firmwaresd460qca6391sm8250-ab_firmwareaqt1000_firmwaresdm850_firmwareqcn9100qcm4290mdm9215qcn9011sd_455sm6225_firmwareipq8074_firmwareqca6574ausa8155p_firmwareipq9574wcd9341_firmwareqcm6125wsa88108905sm7250-acsnapdragon_ar2_gen_1_platformwcn3680bsd835_firmwareipq6010_firmwaresnapdragon_wear_2500_platform_firmwareqca6696sm4350apq8016msm8608_firmwaresm7125_firmwaresa6150pqcn9022_firmwareqca9990_firmwareapq8037_firmwareipq8070aqcn6100qcn9072_firmwaresm7250psnapdragon_wear_3100_platform_firmwaresw5100_firmwareqcn9074_firmwareipq4029snapdragon_xr1_platform_firmwareSnapdragon
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2022-40517
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.11% / 28.96%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 05:02
Updated-09 Apr, 2025 | 14:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack based buffer overflow in Core

Memory corruption in core due to stack-based buffer overflow

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresd_8cx_gen3_firmwaresa6150p_firmwaresm6250p_firmwareqcs610qca8337qca6431_firmwarewcd9360_firmwaresdx65qca4024_firmwarewcn3950_firmwaresa8150p_firmwareqcs2290qca6595au_firmwaresa6155qca6335csra6620_firmwareqcs605_firmwaresd_675_firmwarecsra6640_firmwaresa415mwcn3998wcd9371_firmwareqam8295pwcn3950qcn6024_firmwaresd720gsm4125sd_8cx_gen2_firmwareqca8386_firmwareqca8084_firmwareqsm8350_firmwaresd710_firmwareqsm8350sd460_firmwaresm7315_firmwareqca6574au_firmwarewcd9375_firmwareqca8081_firmwarewcn3998_firmwaresa6155_firmwareqca6420wcd9360sd680_firmwarewcn3999sd_8cx_gen2qrb5165_firmwareqrb5165m_firmwaresa4155p_firmwaresa8155_firmwareqca4004_firmwareipq6010sd662_firmwareqcs405qca6430wcd9306_firmwarewcd9340sd765gsw5100fsm10056_firmwaresd680qca6436wcn6851sa6155pqcs603_firmwarewcd9341qca6431qca6696_firmwarewcd9371sd870_firmwaresd750gipq9008_firmwarewcn3910_firmwaresxr2150p_firmwaresd_8cxsa8150pqca4004wsa8830_firmwaresd855_firmwaresd660sd865_5g_firmwaresd712wcn3988sd660_firmwaresa8195p_firmwareqcn5121qcn5022_firmwareqcn7606_firmwarewcn6750_firmwaresa8295p_firmwarewcn3991qca8337_firmwarewcd9380_firmwaresw5100pqca8084qca6564ausdx55m_firmwarewcn6856_firmwareipq9008sd670_firmwareqca6574csr8811_firmwarewcd9380qcs410sd690_5g_firmwaresdx50m_firmwaresdx24_firmwareqca8072_firmwareqcn9012_firmwareqca6430_firmwareqcn9274_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980qca6335_firmwareipq6018_firmwareqcs605wcd9340_firmwarewsa8815wcn6850sd7cwcn3910qca6320qca6426_firmwareqca9984ipq6028sd835qcn9024ipq9574_firmwarewcn3980_firmwaresd730sdx55mqcc5100_firmwaresa8295pqca6421_firmwarewcn6740_firmwaresd678_firmwarear8031_firmwareqrb5165wcn6851_firmwareqcs603sd670qcn9024_firmwareqca6564a_firmwareqcm4290_firmwaresd870wcn6855qcn5121_firmwaresw5100p_firmwaresa8540pqcs610_firmwareqsm8250sa6145pipq6018sdxr1ar8031qca6595_firmwareqcs405_firmwaresa8145pmdm9205_firmwareqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwaresd780g_firmwaresdx55sd888_firmwareqcn5021_firmwaresa8155pcsra6640sd675qcs8155_firmwaresa4155psxr2150par8035_firmwareqsm8250_firmwareqcn7606qcm2290wcn3991_firmwaremdm9150_firmwarewsa8830sd678qcn9070sa8145p_firmwareqcs2290_firmwarefsm10056sd7c_firmwarecsrb31024csra6620qca8082qcn9072qca8386qcs4290sd765g_firmwareqca6420_firmwareqca6390_firmwaresd690_5gipq6000sd730_firmwarewcd9370sd675_firmwareqcn5152_firmwareqca6564qca6426wcn3990_firmwareqrb5165n_firmwareqcn9000_firmwareqca9984_firmwareqca9377sd_8cx_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcd9326_firmwaresd662qam8295p_firmwareqcn9011_firmwaresa8155qca8082_firmwareqca6320_firmwaresa9000p_firmwareqcn5122_firmwaresdx55_firmwareqca6595auqcn6023_firmwarewcn3999_firmwaresm7250p_firmwareqca6436_firmwareqrb5165nwcd9306sd778gqca6564au_firmwaresa6155p_firmwareqca6310qcn9274qcs8155sa515m_firmwareqcs6490sdxr2_5gqcn5052sa415m_firmwarewcn3988_firmwareqcn9074sa6145p_firmwareqca6421qca8085sd778g_firmwaresm6250sa8195psd712_firmwarewsa8810_firmwaresd765_firmwarewcd9326wcd9335qca8081qcn6023qca6174a_firmwareqcs4290_firmwarewcd9385qca8085_firmwareqcs6490_firmwaresd_8cx_gen3qca6390wcd9375sd750g_firmwareaqt1000ar8035csr8811sm6250_firmwarewsa8815_firmwaresd888_5g_firmwareqcm6490wcn6850_firmwarewsa8835_firmwareqcx315qca6564asa4150pqca8072qcm2290_firmwarewcn3990qcn9000sd_675sd780gsd865_5gqca6595qcc5100sdx24qcn9012sd888wsa8835qcx315_firmwaresa8540p_firmwaresd888_5gsm6250pqca8075_firmwaresc8180xqca6574aipq6005_firmwarewcn6855_firmwareqca6174asm7325pqca6310_firmwarewcn6750mdm9205sa9000pqca6574_firmwaresa515msd855sm4125_firmwaresm7325p_firmwaresd765qca6574a_firmwareqcn5021qcn5152sd768g_firmwareqrb5165msd850_firmwaresm7315sd460qca6391sdxr1_firmwareipq6005aqt1000_firmwaresdx65_firmwareqcm4290csrb31024_firmwareqcm6490_firmwaresdx50mqcn9070_firmwareipq6028_firmwareqcn9011sc8180x_firmwareqca6574ausd710sa8155p_firmwareqcn5122ipq9574wcd9341_firmwarewsa8810mdm9150wcn6856qcn5022sd835_firmwareqca6564_firmwaresd768gipq6010_firmwarewcn6740qca6696sd845_firmwaresa6150pqca8075qcn9022_firmwareqcn6024qcn9022sd845qcn9072_firmwaresm7250pipq6000_firmwaresd720g_firmwaresw5100_firmwareqcn9074_firmwareqcs410_firmwaresd850Snapdragon
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-40524
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 4.95%
||
7 Day CHG~0.00%
Published-05 Sep, 2023 | 06:23
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer over-read in Modem

Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwarewsa8830sa6150p_firmwaresa8145p_firmwaresw5100psd865_5gqcc5100sdx55m_firmwarewsa8835wcd9380sa8150p_firmwareqca6420_firmwareqca6595au_firmwareqca6390_firmwareqca6426qca6430_firmwarewcn3980wcn3998sdxr2_5g_firmwaresd855wcn3660bwcn6850wsa8815qca6426_firmwarewcn3660b_firmwareqca6574au_firmwarewcn3680b_firmwareqca6595auwcn3998_firmwarewcn3980_firmwareqca6391sdx55mqca6420qca6436_firmwareqcc5100_firmwareaqt1000_firmwaresa6155p_firmwaresdxr2_5gwcn6851_firmwarewcn3988_firmwareqca6430qca6574ausa6145p_firmwaresa8155p_firmwaresa8195pwsa8810_firmwarewcd9341_firmwaresw5100sd870wsa8810qca6436wcn6851sa6155psw5100p_firmwaresa6145pwcn3680bwcd9341qca6696_firmwaresa8145psd870_firmwareqca6696qca6391_firmwareqca6390aqt1000sa8150psa6150psa8155pwsa8830_firmwaresd855_firmwaresd865_5g_firmwarewcn3988wcn6850_firmwarewsa8815_firmwarewsa8835_firmwaresa8195p_firmwaresw5100_firmwareSnapdragon
CWE ID-CWE-126
Buffer Over-read
CWE ID-CWE-125
Out-of-bounds Read
CVE-2020-3611
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 13.00%
||
7 Day CHG~0.00%
Published-08 Sep, 2020 | 09:31
Updated-04 Aug, 2024 | 07:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm850_firmwarekamorta_firmwaresdm670_firmwareqcs404sdm636_firmwaresdm636sda845_firmwaresdm660_firmwareapq8098_firmwaresdm630_firmwaresdm845apq8098sda660_firmwaremsm8998_firmwaresdm660sdm630qcs404_firmwareqcs605sdm710msm8998sdm850sdm710_firmwaresda660kamortasxr1130_firmwaresxr1130sdm670qcs605_firmwaresda845sdm845_firmwareSnapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
CVE-2020-3646
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 16.86%
||
7 Day CHG~0.00%
Published-08 Sep, 2020 | 09:31
Updated-04 Aug, 2024 | 07:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

u'Buffer overflow seen as the destination buffer size is lesser than the source buffer size in video application' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Bitra, MSM8909W, QCM2150, QCS405, QCS605, Saipan, SC8180X, SDA845, SDM429W, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm2150_firmwaresdm429wqcm2150sdx24sm8250_firmwaresc8180x_firmwareqcs405sm7150_firmwaresm6150msm8909w_firmwaresdm429w_firmwaresm7150sxr2130sc8180xqcs605_firmwaresm8150_firmwaresdx24_firmwaresxr2130_firmwareqcs405_firmwaresda845_firmwarebitraqcs605sdx55saipan_firmwaresm6150_firmwaresm8250bitra_firmwaresm8150sdx55_firmwaresaipanmsm8909wsda845Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2022-25705
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.08% / 22.62%
||
7 Day CHG~0.00%
Published-07 Mar, 2023 | 04:43
Updated-03 Aug, 2024 | 04:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer Overflow to Buffer Overflow in Modem

Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaremdm9640_firmwaresm6250p_firmwareqcs610qca8337qca6431_firmwarewcd9360_firmwaresdx65wcn3950_firmwaresc8180x\+sdx55qcs2290qca6595au_firmwareqca6335msm8917sd_455_firmwarecsra6620_firmwareqcs605_firmwareapq8076sd_675_firmwarecsra6640_firmwareqcs6125_firmwaresd632msm8108sa415mwcn3998wcd9371_firmwaremsm8108_firmwarewcn3950qcn6024_firmwaresd720gsd_8cx_gen2_firmwaremdm9206_firmwareqsw8573_firmwaremdm9628sd_8_gen1_5g_firmwarewcn3660bsd450_firmwaresd710_firmwaresd460_firmwaremdm9230_firmwaresm7315_firmwarewcn7850qca6574au_firmwaremdm9630wcd9375_firmwareqca8081_firmwarewcn3998_firmwaresdx12_firmwaremsm8909wapq8009w_firmwareqca6420wcd9360sd680_firmwareqca9367_firmwaremdm8207sd_8cx_gen2qcs6125apq8056_firmwareqca4004_firmwaresd662_firmwareqcs405qca6430qts110wcd9306_firmwarewcd9340sd626_firmwaresd765gqualcomm215_firmwaresw5100sd680qca6436wcn6851qcs603_firmwarewcn7851_firmwaremsm8937apq8052msm8209_firmwaremdm9250_firmwarewcn3660_firmwarewcd9341mdm9655qca6696_firmwareqca6431wcd9371sd870_firmwaresd750gwcn3910_firmwaremdm9207_firmwareqca4004wsa8830_firmwaremdm9330_firmwaresd855_firmwaresd660sd865_5g_firmwaresnapdragon_4_gen_1sd712wcn3988sd660_firmwarewcn7850_firmwaresm8475msm8208_firmwarewcn6750_firmwaresd450wcn3610msm8608mdm9640wcn3991qca8337_firmwaresda429w_firmwarewcd9380_firmwaresdm429wsw5100pmsm8996au_firmwarewcd9330sd625_firmwareqca6564ausdx55m_firmwarewcn6856_firmwaremsm8940_firmwareqet4101_firmwaremsm8976_firmwareqca6574sd632_firmwaresd670_firmwarewcd9380qualcomm215mdm9230qcs410sd690_5g_firmwaresdx50m_firmwareqca9379_firmwaresdx24_firmwaresd626qca6174qca6430_firmwaresd439_firmwarewcd9335_firmwarewcn3980qca6335_firmwareqsw8573qcm4325_firmwareqcs605wcd9340_firmwarewsa8815wcn6850sd7cwcn3910msm8956_firmwareqca6584_firmwareqca6320msm8937_firmwaremdm9650_firmwareqca6426_firmwarewcn3660b_firmwarewcn3680sd695sd835qcn9024wcn3980_firmwaresd730wcd9330_firmwaresdx55mqcc5100_firmwareqca6421_firmwarewcn6740_firmwaresd821_firmwaresd678_firmwarewcn3680_firmwarewcn6851_firmwareqcs603sd670sd_636_firmwareqcn9024_firmwareqca6564a_firmwareapq8009wmsm8976sg_firmwaresdx57mqcm4290_firmwaresd480sd870wcn6855sw5100p_firmwaresd210_firmwareqcs610_firmwaresd695_firmwaresdxr1apq8096auqcs405_firmwaremdm8207_firmwaresdm630_firmwaremdm9205_firmwareqca6391_firmwaresd820_firmwarewcd9370_firmwaresd780g_firmwaresdx55sd888_firmwaresd675csra6640sdx70msd439qet4101wcn3660qca9379ar8035_firmwareqcm2290wcn3991_firmwaremdm9150_firmwarewsa8830sd678qcs2290_firmwaresd7c_firmwarecsrb31024mdm9628_firmwaresnapdragon_4_gen_1_firmwaremdm9650sd_636csra6620qcs4290mdm9250sd765g_firmwareqca6420_firmwareqca6390_firmwareapq8009_firmwaresd690_5gqca6174_firmwaresd730_firmwarewcd9370sd675_firmwaresd625qca6426qca6584au_firmwarewcn3990_firmwareapq8076_firmwareqca9377sdw2500_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcd9326_firmwarewcn3615_firmwaresd662apq8037qca6320_firmwareqca6584wcn3680b_firmwaresdx55_firmwarewcn3615qca6595ausm7250p_firmwarewcn3610_firmwareqca6436_firmwaremdm9207wcd9306qca6584ausd778gqca6564au_firmwaremsm8208qca6310wcn7851sd429sa515m_firmwareqcs6490sdxr2_5gqca9367sdm630mdm9607_firmwaresd821mdm9655_firmwaremsm8976sgsa415m_firmwarewcn3988_firmwaresd205sd429_firmwareqca6421sd778g_firmwaresm6250sd712_firmwareapq8017_firmwarewsa8810_firmwaresd765_firmwarewcd9326wcd9335sg4150pqca8081qca6174a_firmwareqcs4290_firmwarewcd9385qcs6490_firmwaresdx70m_firmwareqca6390wcd9375sd750g_firmwareaqt1000msm8956msm8976sc8180x\+sdx55_firmwaresm6250_firmwarear8035msm8952apq8056msm8917_firmwaresda429wsd210wcn3620_firmwaresdx20_firmwarewsa8815_firmwaresd888_5g_firmwaresd820qcm6490wcn6850_firmwarewsa8835_firmwarewcn3620apq8017qcx315qca6564amdm9630_firmwaresg4150p_firmwareqcm6125_firmwareqcm4325qcm2290_firmwarewcn3990sd_675sd780gsd865_5gqcc5100sdx24sd888msm8952_firmwaremsm8909w_firmwareqcx315_firmwarewsa8835msm8996ausdm429w_firmwaresd665_firmwaresd888_5gsm6250pqca6574amdm9206wcn6855_firmwareqca6174asm7325pqca6310_firmwarewcn6750apq8052_firmwaremdm9205sa515mqca6574_firmwaresd855sm7325p_firmwaresd665sdx57m_firmwaresd765qca6574a_firmwaresd768g_firmwaremsm8209sd850_firmwaresm7315apq8009sd460qca6391sdxr1_firmwareaqt1000_firmwaremsm8920sdx65_firmwareqcm4290csrb31024_firmwareqcm6490_firmwaresdx50msdx20sd480_firmwaremsm8920_firmwaresd_455qca6574ausd710mdm9607sd205_firmwarewcd9341_firmwareqcm6125wsa8810mdm9150wcn6856wcn3680bsd835_firmwaresd768gwcn6740qca6696sd845_firmwaremsm8608_firmwaresdw2500msm8940apq8096au_firmwareqcn6024sd845apq8037_firmwaresm7250psd720g_firmwaresdx12sw5100_firmwareqcs410_firmwaremdm9330sd850qts110_firmwareSnapdragon
CWE ID-CWE-680
Integer Overflow to Buffer Overflow
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2021-1905
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-1.06% / 77.33%
||
7 Day CHG~0.00%
Published-07 May, 2021 | 09:10
Updated-28 Oct, 2025 | 13:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2022-05-03||Apply updates per vendor instructions.

Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-pm8150msm8996auqbt2000_firmwarewcn3990_firmwareqca6426_firmwareqfe4373fc_firmwaresd710_firmwareqpm6621wsa8835_firmwarepm640l_firmwareqcs605pm7250_firmwarewcd9341_firmwarewcn3660bqat3550_firmwareqtc800t_firmwarepmi8937_firmwaresd8885g_firmwarewsa8830wcd9340apq8009w_firmwarepmi632_firmwareqat3514pm855_firmwareqet4100_firmwareqdm4650_firmwareqca6564aqpm6621_firmwarepm7150a_firmwareqsw8573wtr6955wcn6856_firmwareqca6420_firmwareqet4101sd632_firmwareqpm6670_firmwaresd888apq8064au_firmwareqpa4361_firmwarepm7150lsmb1396_firmwarepm7250b_firmwarewcd9326_firmwarewcd9380_firmwarepm660l_firmwareqdm2307smr526pm670l_firmwareqdm2310sdr660qca6595ausd662_firmwaresda429wqca6390pm8004smb231pmc1000h_firmwarepm6350sm6250qpa8801_firmwaresmr525sdr425qfe4303_firmwareqtm525qcm6125qat5515_firmwaremsm8996au_firmwareqdm5621qfe2101_firmwarepm8350qpa8802sa6150p_firmwareqat3519_firmwareqcs603wcd9370_firmwarepm8350_firmwarear8151_firmwarepm439qca9377apq8053_firmwareqca4020qtc800spm8009_firmwareqdm5671_firmwarepm8004_firmwarepmw3100_firmwarewcn3620pm8909wcn6850_firmwareqat5516_firmwareqfs2580qet6100_firmwarewcd9360smr525_firmwareqpm6585_firmwarepmi8937pm855a_firmwarewsa8810smr546_firmwareqdm5670_firmwareqpm5620sdr845qpm4641qpa6560_firmwarewtr4905pmm8920ausd8cx_firmwaresd665sdr865_firmwarecsra6620_firmwareqat3516qtc800s_firmwaresdr425_firmwarepmr735bqpm8820_firmwareqca6335qfs2530_firmwareqcm2290_firmwarepmm8920au_firmwareqpa5581_firmwareqca9367_firmwareqca9367qca9377_firmwaresa8195p_firmwareqdm2302sa6150pqpm4650_firmwarepm456sa8155ppm6150a_firmwareqpa5580pmi8952qpm5670pmm6155au_firmwareqca6696_firmwarepm8150lpm8150a_firmwarepm8005qfe4309wcn3950_firmwareqcs2290qpm8830apq8017_firmwarepmm8996auqdm2310_firmwarewcn3998_firmwareqfe3100_firmwaresdx20_firmwarewcn3610qdm2302_firmwaresdr660gsmb1358_firmwarewsa8815pmm6155auqpm5577_firmwareqpa5580_firmwareqet6100wsa8815_firmwareqpa8675sd765_firmwaresdw2500_firmwaresdxr2_5g_firmwarepme605qpa8821_firmwaresdxr2_5gwcd9335smb231_firmwaresm6250pqca6335_firmwarewcn3660pm640p_firmwarepm4125_firmwareqdm5670sd888_firmwaremsm8909w_firmwareqca6421_firmwarewcn3991pm660asd750g_firmwareqca6584auqln5040_firmwarepmx50_firmwaresmb1360_firmwareqsw6310mdm9650qpa8803_firmwareqfe3340_firmwarepm8909_firmwareqdm2301_firmwarepm8150b_firmwaresdr052_firmwarepmk8350_firmwarewcn3615qpm4640qca6420qca6430_firmwarepm6125pm3003a_firmwarepm215_firmwareqpm8830_firmwareqpa8801pm4125qca6391_firmwareqln1030sdr735sd439_firmwareqfs2608csra6640sd678_firmwaremsm8917_firmwarewcn6855_firmwaresd678qcs605_firmwaresd8cxsmb1381qet5100_firmwarewcn3615_firmwarepm855p_firmwaresdr735gapq8009_firmwaresa6155sa2150pwcd9385_firmwareqcm2290qat5516qtm527wtr2965_firmwareqfe4301_firmwarepm8916_firmwaresmb1354_firmwaresdr8150qpm5577sdw3100wtr5975_firmwarewgr7640qca9379qpm2630_firmwareqca6584au_firmwarepmi632sda429w_firmwarepmr525_firmwareqca6421sd210apq8009wsd835_firmwaresmb1395pm6150_firmwarepm8350bpmx20_firmwareqfs2630qca6390_firmwaresd765qca6310_firmwareqca6595au_firmwaresa6155pqcs410_firmwaresmb1350_firmwaresd710qat3518_firmwareqat3550qpa5460apq8053pmr735afsm10056_firmwarepm7250qbt1000qcs610smb1357_firmwareapq8064ausdr660g_firmwaresd636_firmwareqpm6375_firmwarepmm855ausd8655g_firmwarepm855l_firmwareqpm5677_firmwaresmb358spm4250_firmwaresmr546qdm2305_firmwareqet6105_firmwaresa515m_firmwareqbt1500qpa2625_firmwareqat3522_firmwareqfe3340wcn3620_firmwareqfe3100qfs2530sd6905gpmr735a_firmwarewtr2955_firmwarewcn3991_firmwaresdr675qpm5679_firmwaresd835wcn3680b_firmwareqcm4290_firmwareqpa8686qln4640_firmwarepm215sdr845_firmwareqca6564_firmwarepm855psd455_firmwareqet6110qfe2550sdxr1_firmwarepmk8003_firmwareqca6310rsw8577_firmwareqet6105qpa8686_firmwareqpm5621_firmwareqpm5620_firmwaresa6145pwcd9335_firmwareqpa8821qsw6310_firmwaresd8c_firmwarefsm10055_firmwarepm855qca6174aqfs2630_firmwaresmb1398_firmwareqdm2307_firmwaresdx24pm6350_firmwareqdm5677sdr735g_firmwarewcd9340_firmwaresd6905g_firmwareqat5533_firmwareqat5522sd8csa8195ppmk8002_firmwareqpm6375sd750gsdw3100_firmwarewcd9375_firmwarewcd9330qca6564a_firmwareqcs2290_firmwareqdm5620_firmwarepm670a_firmwaresd636wcd9380qbt2000qfe4373fcmdm9628qtm527_firmwarepmk8002qca6436pmm855au_firmwareqcs603_firmwareqpm5621wcn3660_firmwarepm6150sm7250psdx24_firmwarepm8008_firmwareqca8337_firmwarepm8150c_firmwareqpm5658_firmwarewtr3925sdx50mwcd9360_firmwareqpa5461qln5040qca6696qsw8574pm8916qbt1500_firmwareqet4101_firmwaresmb1350smb1380_firmwareqca6574asd460qpm4630qpm8895_firmwareqpm5579qpm6325apq8009sdm830smb1355pm670qdm5679mdm9206_firmwarepm8937_firmwarepm8937sd210_firmwarewcd9371_firmwaresdm630qat5568_firmwareqpm6670wcn3999qpa5373pm8350b_firmwarepm8150awcn3950sd845smb1395_firmwareaqt1000_firmwareqdm5650_firmwareqdm5652pmk8003qdm2308_firmwaremdm9626_firmwareqca6174qpm8870_firmwaresa8150p_firmwarepmx24sd720g_firmwarepm6250wcd9385rgr7640au_firmwaresd870pm8150bwgr7640_firmwaresdxr1wcn3680_firmwarepm6150aqfe4308ar8035_firmwareqca6391qln1030_firmwareqca4020_firmwareqdm2308pmm8195au_firmwaresd765gqca6574qca6431qfs2580_firmwareqpm5658qpm8820wtr5975qca6436_firmwarepm8350csdr675_firmwaresmb358s_firmwareqpm5677qpa6560qpm8895pm8998_firmwareqpa2625qfe2520_firmwaresmb2351wtr2955ar8151qcm6125_firmwareqpa4361sd730qca6430qdm4643_firmwareqpa4340_firmwarepm8250_firmwareqpm5657_firmwareqet5100qsm7250_firmwareqcs405qln4650sd660_firmwarewcn3999_firmwaresdr8150_firmwareqpm5579_firmwareqfs2608_firmwareqat3519qcs4290sd205_firmwareqdm5620qpa5460_firmwarepmd9655_firmwarepmc1000hpmm8195aupmd9607_firmwarewtr4905_firmwareqbt1000_firmwaresd8655gqfe4302_firmwareqtc800h_firmwarepmi8952_firmwareqln5020qpa8803sm7250p_firmwaresd855wtr6955_firmwareqat3555_firmwareqpm5870pm8350c_firmwarepm4250sdr8250_firmwarepm855b_firmwareqcm4290qln4650_firmwaresmb1381_firmwarepm670argr7640aupmx24_firmwareqcs6125_firmwareqpa4360sdm830_firmwaresdr051_firmwaresd460_firmwareqpm6325_firmwareqca9379_firmwarewsa8810_firmwareqfe4301qln4640qln4642sa8150ppm6250_firmwareqca6174a_firmwareqpm4621_firmwareqtc410spm855awcn3610_firmwareqtc800hpm8350bh_firmwaresdx55m_firmwareqtm525_firmwareapq8096au_firmwaremdm9206smr526_firmwarequalcomm215qsw8574_firmwaresm4125_firmwareqpm4640_firmwaresdm429w_firmwaresdw2500wcn3680bmsm8953pm8953_firmwarepmm8155au_firmwareqpa8842_firmwarewcn6851ar8031qdm2301smb1396sd439qat5568sd455qat3516_firmwarewcd9341qpm5541_firmwareqpm5657pmr735b_firmwarepm456_firmwareqsm7250pmk8350ar8035pm439_firmwarepm8150l_firmwarewcn3680qat3522qpm2630sdm429wqfe4320wcn3660b_firmwarewcn3988_firmwareqpa8675_firmwaresd429sd720gsd768g_firmwaresdx55_firmwareqpm4630_firmwarewcd9375qca6564qdm5650qpa4360_firmwarepmw3100sm4125wcn6856pm8998sd450_firmwaresd765g_firmwarepmm8996au_firmwarepm670_firmwareqcs4290_firmwareqpa8673aqt1000qsm8250pm8953sd665_firmwareqdm3301_firmwarewcd9370qpm8870qdm5652_firmwarepm640lwcn3988pmx50qfe4305smr545sd675qfe2520qat5533msm8953_firmwarepm855lsa515mqca6574_firmwareqat3555pmm8155ausa8155sm6250p_firmwareqfe4303qpa5461_firmwarepm8250qdm4643qfe4308_firmwareqca6320_firmwareqfe4320_firmwareqpm5641_firmwaresd670_firmwaresd662sd480wcd9330_firmwarewcd9371sd855_firmwarepm7150l_firmwarepm8350bhqcc1110sd768gqfe4309_firmwareqsm8250_firmwaresmb1398sd480_firmwareqln1020pm6150l_firmwarepm8150csd660smb1380ar8031_firmwaresdr8250sdx50m_firmwaresd205pme605_firmwareqdm4650qtc800tpmx55csra6640_firmwareqfe2550_firmwaresd845_firmwaresdx20mqpa8842wsa8830_firmwareqpa4340qcs6125qln5020_firmwareqet5100msmb1351_firmwareqet4100pm660qat5522_firmwareqcs410smb2351_firmwarepm640a_firmwaresd429_firmwareqpm6585qpm5875_firmwareqca6174_firmwarewcn3998pm855bmdm9607_firmwaresmb1355_firmwareqpm5641sm6250_firmwaresmb1358wcn6850pmd9607sa8155p_firmwareqdm5671wtr2965mdm9626pm640pwtr3925_firmwaresmb1360pm670lpmr525qpa5373_firmwarewcn3910_firmwaresd670qpa8673_firmwareqdm3301qln1020_firmwareqca6426qln4642_firmwarepm3003aapq8017mdm9650_firmwareqpm6582wcn3910apq8096ausd870_firmwareqca6574a_firmwareqat5515sd450pm660lqualcomm215_firmwarewcd9326qet5100m_firmwaresdx55mpm6150lpmi8998qfe4305_firmwaresd730_firmwareqpm5679sdr051sdr052wcn3980_firmwaresdr735_firmwarepm8009mdm9607qca8337pmx20qcs610_firmwareqpm4621qpm5870_firmwareqdm2305qca6574au_firmwareqtc410s_firmwarewsa8835sdx20m_firmwaresa8155_firmwaremsm8909wfsm10056qpm4641_firmwareqpm5541smb1357qtc801sqdm5679_firmwareqat3518qpm5670_firmwaresdr660_firmwarepm8150_firmwarepmd9655qpm5875qfe2101sd8885gsmb1390qfe4302wcn3980qdm5621_firmwaresa6155_firmwarepm7250bpm660a_firmwaresdx55qcs405_firmwareqet6110_firmwareqca6574ausdm630_firmwaresa6145p_firmwareqtc801s_firmwarepm6125_firmwareqat3514_firmwarepm660_firmwaresmb1351smb1390_firmwarecsra6620smb1354smr545_firmwarewcn3990sa6155p_firmwareqln5030_firmwareqca6431_firmwaresd675_firmwareqca6564au_firmwareqca6320pm640aqpa8802_firmwarepm8005_firmwarepmi8998_firmwareqsw8573_firmwaremdm9628_firmwareqpm4650qpm6582_firmwaresa2150p_firmwaresdr865qcc1110_firmwarepm8008wcn6855qca6564ausd632msm8917sdx20wcn6851_firmwarepm7150afsm10055qdm5677_firmwarepmx55_firmwareqpa5581rsw8577qln5030Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesMultiple Chipsets
CWE ID-CWE-416
Use After Free
CVE-2021-1984
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.10% / 27.00%
||
7 Day CHG~0.00%
Published-20 Oct, 2021 | 06:31
Updated-03 Aug, 2024 | 16:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possible buffer overflow due to improper validation of index value while processing the plugin block in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcn3991_firmwarewsa8830sd678sm7250sm6250p_firmwareqcs610qcs2290_firmwaresm7250_firmwaresd_636qcs4290wcn3950_firmwaresd765g_firmwareqca6420_firmwareqcs2290qca6390_firmwareqca6335msm8917sd690_5gsd730_firmwaresd_455_firmwarewcd9370qcs605_firmwaresd_675_firmwaresd675_firmwareqcs6125_firmwareqca6426sd632wcn3998wcd9371_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcn3950sm4125sd720gwcn3615_firmwarewcn3660bsd662sd460_firmwareqca6320_firmwareqca6574au_firmwaresdx55_firmwarewcn3680b_firmwarewcd9375_firmwarewcn3615wcn3998_firmwarewcn3610_firmwareqca6420qca6436_firmwareapq8053_firmwareqca6564au_firmwaresd778gqca6310qcs6490sd429sdxr2_5gqcs6125sd662_firmwaresdm630wcn3988_firmwareqca6430sd205sd429_firmwaresm6250sd778g_firmwareapq8017_firmwarequalcomm215_firmwaresd765gsd765_firmwareqca6436wcn6851qcs603_firmwareqcs4290_firmwarewcd9385qcs6490_firmwarewcd9371sd750gsd870_firmwareqca6390wcd9375sd750g_firmwareaqt1000apq8064auwcn3910_firmwaresm6250_firmwaremsm8953_firmwarewsa8830_firmwaremsm8917_firmwaresd210sd855_firmwaresd865_5g_firmwareqcm6490sd888_5g_firmwarewcn3988wcn6850_firmwarewsa8835_firmwareapq8017qca6564awcn6750_firmwarewcn3610qcm6125_firmwareqcm2290_firmwarewcn3991wcd9380_firmwaresd_675msm8996au_firmwaresd780gsd865_5gqca6564ausdx55m_firmwarewcn6856_firmwaresd888wsa8835sd632_firmwaremsm8996ausd665_firmwarewcd9380sd888_5gsm6250pqualcomm215qca6574asd690_5g_firmwaresdx50m_firmwarewcn6855_firmwareqca6310_firmwaresm7325qca6430_firmwarewcn6750sd439_firmwareqca6335_firmwareqcs605sd855sm4125_firmwarewcn6850sd665wcn3910qca6320sd765qca6426_firmwarewcn3660b_firmwarewcn3680qca6574a_firmwaresd768g_firmwaresd460qca6391sd730sdx55msdxr1_firmwareaqt1000_firmwarewcn6740_firmwaremsm8953sd678_firmwareapq8064au_firmwareqcm4290qcm6490_firmwaresdx50mwcn3680_firmwaresd480_firmwareqcs603wcn6851_firmwaresd_455qca6574ausd_636_firmwaresd205_firmwareqca6564a_firmwareqcm6125qcm4290_firmwaresd480sd870wcn6855sd210_firmwareqcs610_firmwarewcn6856wcn3680bsdxr1sd768gapq8096auwcn6740sdm630_firmwareqca6391_firmwaresd780g_firmwarewcd9370_firmwaresdx55sd888_firmwareapq8053apq8096au_firmwaresd675sd439sd720g_firmwareqcm2290sm7325_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2018-11980
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.12% / 31.16%
||
7 Day CHG~0.00%
Published-18 Dec, 2019 | 05:25
Updated-05 Aug, 2024 | 08:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

When a fake broadcast/multicast 11w rmf without mmie received, since no proper length check in wma_process_bip, buffer overflow will happen in both cds_is_mmie_valid and qdf_nbuf_trim_tail in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8937, MSM8996AU, MSM8998, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCN7605, QCS605, SDM630, SDM636, SDM660, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaremdm9640_firmwaresdm636_firmwareapq8064msm8996au_firmwaresdx20msm8998_firmwaresdm660sdx24sdm630mdm9607_firmwaremdm9650sm7150_firmwareqca6574ausm6150mdm9607msm8996auapq8017_firmwaresm7150apq8009_firmwareqcn7605_firmwaremsm8937mdm9207c_firmwareqcs605_firmwaremdm9206mdm9207cqca6174a_firmwareqca6174aqca9379_firmwaresm8150_firmwaresdx24_firmwareapq8096ausdm636qca9377sdm630_firmwareqcn7605mdm9206_firmwareqcs605sdx55apq8053apq8096au_firmwaresm6150_firmwaremsm8937_firmwaremdm9650_firmwaremsm8998sdx20_firmwaresm8150qca6574au_firmwaresdx55_firmwaresxr1130_firmwareapq8017apq8064_firmwaresxr1130apq8009qca9379apq8053_firmwaresdm660_firmwaremdm9640Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-27042
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-25 Sep, 2025 | 17:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Incorrect Calculation of Buffer Size in Video

Memory corruption while processing video packets received from video firmware.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm8550_firmwareqfw7124qca6564au_firmwareipq8071aipq8173_firmwareqfw7114snapdragon_x12_lte_modem_firmwarewcn3680bsnapdragon_680_4g_mobile_firmwareipq9554qru1032qca8081_firmwareqcf8000_firmwarewcd9335sa8650pqca8101qca6698ausa8195psrv1l_firmwareqca6574au_firmwareqcn9024_firmwaresnapdragon_778g\+_5g_mobile_firmwarewcd9370wsa8845h_firmwareipq8076aqcf8001_firmwareqcs6125sa8620pqcn5152sm6650qcn5024_firmwareqcs8300_firmwareflight_rb5_5gsxr2330psm7675qmp1000snapdragon_7c\+_gen_3_compute_firmwareqcn5022_firmwareimmersive_home_326_firmwaresa8155_firmwaresmart_audio_400_firmwarewcd9341_firmwareqca8072snapdragon_4_gen_2_mobile_firmwareqcn6024_firmwaresxr2230p_firmwarewsa8835qcn9274_firmwaresnapdragon_auto_5g_modem-rf_firmwaresa6155pqca9889_firmwaresnapdragon_8_gen_2_mobilesnapdragon_685_4g_mobileqsm8350_firmwaresnapdragon_x55_5g_modem-rf_firmwareflight_rb5_5g_firmwareqcn6412_firmwaresnapdragon_8\+_gen_2_mobile_firmwaresnapdragon_675_mobileqamsrv1mqcs8155_firmwaresnapdragon_8_gen_3_mobile_firmwareqdu1000wcn3988robotics_rb2qcn6402_firmwarewcd9395_firmwaresm6650_firmwarewcn7750qca6436_firmwareqcn9002_firmwaresnapdragon_750g_5g_mobilesa2150p_firmwaresnapdragon_xr2\+_gen_1qca6698aq_firmwaresm7675p_firmwaresnapdragon_480\+_5g_mobileqcn6100snapdragon_w5\+_gen_1_wearable_firmwarear8035qca8082_firmwaresm7325pwcd9340_firmwarewcn6740_firmwareqamsrv1h_firmwareqcn6274qcs2290_firmwarewsa8832_firmwaresd888snapdragon_xr2\+_gen_1_firmwaresm8635_firmwareqcn5054_firmwaretalynplusimmersive_home_326qcn9000qca0000_firmwaresnapdragon_865\+_5g_mobileqcn5052wsa8830ipq9048c-v2x_9150_firmwareqca8081fastconnect_6700qca6391snapdragon_4_gen_1_mobile_firmwarewcn3950smart_audio_400sa9000p_firmwaresnapdragon_690_5g_mobile_firmwaresnapdragon_x12_lte_modemqam8650psnapdragon_660_mobile_firmwareqcs410sm7675pc-v2x_9150sm4635snapdragon_685_4g_mobile_firmwareqcs610sm8635p_firmwareqamsrv1hqca6698aqwcn3680qcn5224video_collaboration_vc5_platformqfw7114_firmwarewcn6740snapdragon_x65_5g_modem-rf_firmwaresnapdragon_x62_5g_modem-rfsd_8_gen1_5g_firmwaresd855_firmwareqca6574robotics_rb2_firmwareipq5312wcd9335_firmwaresnapdragon_780g_5g_mobilecsr8811_firmwaresa8255p_firmwaresnapdragon_730_mobile_firmwareipq8174_firmwaresw5100p_firmwaresg4150p_firmwareqam8295p_firmwareqca6426_firmwarear8031_firmwaresd730_firmwaresdx65mqcn6132video_collaboration_vc1_platform_firmwarewcn6755_firmwarewsa8845_firmwarewcd9375wcd9378qcn5124robotics_rb5sdx55_firmwareipq6018_firmwareqcs6490_firmwareqca8385wcn3615_firmwaresm8750pimmersive_home_214_firmwareipq8072a_firmwareqcn9274wcn3615immersive_home_318sxr2250p_firmwarewsa8845sm7635p_firmwaresnapdragon_439_mobile_firmwarewcd9390sa8255psa8775p_firmwareqru1052sd_675_firmwarefastconnect_6900sa2150pipq8072aqca8072_firmwareqam8255pqca9888_firmwaresd_675qcm2290_firmwareqcn9074_firmwareqcs4490_firmwaressg2125pqcs4490sa7775psa7255p_firmwaresm6370_firmwaresnapdragon_678_mobilesa8155pwsa8845hsnapdragon_x75_5g_modem-rfqcn5024qcs8155wcn3680_firmwaresm8650q_firmwaresnapdragon_x72_5g_modem-rfwcd9340sd675_firmwarewsa8840sd675qcn5052_firmwaresa6155ipq9574_firmwaresa6150p_firmwareqcm4290_firmwareqca8080_firmwareqca6174a_firmwaresnapdragon_888\+_5g_mobile_firmwaresnapdragon_732g_mobileqcm6490fastconnect_6700_firmwareqca8085qca6174aqca8084_firmwaresnapdragon_480\+_5g_mobile_firmwareipq8070a_firmwaresa4150p_firmwaresa8650p_firmwareqcs9100sg8275pqcs8250_firmwaresnapdragon_8\+_gen_2_mobileqcn5164_firmwareipq5332qdx1010_firmwarewcd9385_firmwareqca6678aqqcn5122_firmwaresnapdragon_x35_5g_modem-rf_firmwarewcd9385wcn7881qca6595ausnapdragon_865_5g_mobileipq9570qcn6112_firmwaresxr2130_firmwarewsa8832sm7315snapdragon_480_5g_mobile_firmwarewsa8810qdu1110_firmwareqcn9000_firmwareqsm8350wcn3980sa7255psnapdragon_460_mobilesnapdragon_auto_5g_modem-rf_gen_2_firmwaresxr2230pqca8384_firmwareqcn6122snapdragon_690_5g_mobilesnapdragon_888_5g_mobilefsm20056_firmwareipq8173qrb5165n_firmwarefsm10055_firmwaresnapdragon_730g_mobilesnapdragon_4_gen_1_mobileqcs5430qcs8250srv1m_firmwarefsm20056snapdragon_8\+_gen_1_mobilecsr8811qca6696_firmwaresm7315_firmwaresm8550p_firmwaresnapdragon_7c\+_gen_3_computesm8550psnapdragon_765g_5g_mobile_firmwaresnapdragon_680_4g_mobilesnapdragon_auto_4g_modem_firmwareipq5312_firmwareqdx1010wsa8830_firmwareipq8078_firmwareqcf8000sfp_firmwareqcs5430_firmwareqca8075_firmwaresm7325p_firmwareqcn5164snapdragon_auto_4g_modemqca6688aq_firmwaresd888_firmwareqcn6112qfw7124_firmwareipq8078qcn5054sd660qcn6024snapdragon_782g_mobilewcd9375_firmwaresa8530p_firmwarewcn7860_firmwarewcn3990qcn6432_firmwaresnapdragon_x65_5g_modem-rfsnapdragon_auto_5g_modem-rf_gen_2sm8750_firmwareipq8076_firmwareqcn5124_firmwareqcs615qca8085_firmwaresa6155p_firmwaresw5100pqca8337_firmwareqca0000wcd9395qca6430sm7635qam8255p_firmwaresnapdragon_w5\+_gen_1_wearablewcd9341immersive_home_316snapdragon_782g_mobile_firmwaresnapdragon_778g_5g_mobile_firmwareqsm8250_firmwaresnapdragon_865\+_5g_mobile_firmwaresnapdragon_662_mobile_firmwarevideo_collaboration_vc3_platform_firmwareqcn5152_firmwarewcd9360sa8150psnapdragon_768g_5g_mobile_firmwareqcn5154wcn6450_firmwaresm4125sm6370qcs7230_firmwareimmersive_home_216qcn9070snapdragon_678_mobile_firmwareqdx1011_firmwareqcm5430qcn6102_firmwareipq8070asnapdragon_778g\+_5g_mobilesnapdragon_855\+_mobile_firmwareqca9888snapdragon_x62_5g_modem-rf_firmwareqcs410_firmwareipq5302_firmwareqca4024_firmwareqca9377_firmwaresrv1h_firmwareipq8071a_firmwaresm8735_firmwaresdx55wcn7880_firmwareqcs6125_firmwareqrb5165m_firmwaresnapdragon_8_gen_2_mobile_firmwaresg4150pipq8078a_firmwareqcn9003_firmwareqcf8000qcm6125_firmwaresa8145pmdm9628snapdragon_855\+_mobileqcn6023ssg2115psnapdragon_765_5g_mobile_firmwaresd865_5g_firmwarewsa8840_firmwareqca6797aqqca6696sxr1230p_firmwaresnapdragon_855_mobile_firmwareqcn6132_firmwareqca8337sa8145p_firmwaresrv1lsnapdragon_855_mobilesnapdragon_ar2_gen_1wcn7881_firmwaresm6650p_firmwaresa4155pwcn7860sd_8_gen1_5gimmersive_home_316_firmwarewcd9380sa8540p_firmwareqca4024qep8111qca8084qcs8550_firmwareqca6574auqcn9072ipq8076qcm2150_firmwaresa8770p_firmwareipq9570_firmwarewcn3680b_firmwareipq5010snapdragon_8\+_gen_1_mobile_firmwareqca6797aq_firmwaresnapdragon_730g_mobile_firmwaresnapdragon_660_mobileimmersive_home_318_firmwareqam8775pqca9377sa6145pvideo_collaboration_vc1_platformqcn6102qam8295pqcn6100_firmwareqcs8300qca6678aq_firmwaresnapdragon_ar2_gen_1_firmwaretalynplus_firmwaressg2115p_firmwarewsa8835_firmwareqcn9002sdx61qcs615_firmwareqdu1010_firmwarefsm20055_firmwareqam8620psnapdragon_ar1_gen_1_firmwarevision_intelligence_400_firmwarewcn3660b_firmwaresm8635sm8750qca6595sd855ipq5302qca8075qcf8001sa6155_firmwaresw5100_firmwarefastconnect_7800_firmwarewsa8815215_mobile_firmwareqru1062_firmwareqcm4325qcn6224sxr1230pqcn9001qca6584au_firmwareqca6430_firmwareqdu1210_firmwaresdx61_firmwarewcd9370_firmwaresm7675_firmwareqca6436wcd9326_firmwareqcn9012vision_intelligence_400mdm9628_firmwaresrv1mipq8078asa8540pimmersive_home_3210_firmwaresnapdragon_768g_5g_mobileqcs7230qcm8550qru1062qcs9100_firmwareqcn5154_firmwareqca6391_firmwareqca6688aqqrb5165nfsm10056wcn3990_firmwareqcn6422_firmwareqcn9012_firmwarewcn6450aqt1000_firmwareqdu1110sa8775pipq6018qrb5165m315_5g_iot_modemipq9048_firmwareqca8101_firmwaresnapdragon_720g_mobile_firmwaresnapdragon_732g_mobile_firmwareipq5424sm6250_firmwaresnapdragon_750g_5g_mobile_firmwareqcn6122_firmware315_5g_iot_modem_firmwareipq8174immersive_home_214qca8386qcm2150qru1052_firmwareqcn6412qca9889sa6145p_firmwaresm8650qqdx1011sa8620p_firmwaresnapdragon_x50_5g_modem-rf_firmwaresm8735wcn7861_firmwareqcs610_firmwaresd865_5gsrv1hqcs8550sg8275p_firmwarefastconnect_6900_firmwarefastconnect_6800_firmwareqam8650p_firmwarear8035_firmwareqcf8000sfpqcs6490snapdragon_x75_5g_modem-rf_firmwareqca8385_firmwareqcn9011snapdragon_8_gen_3_mobileqca6698au_firmwareqcn9001_firmwarefsm20055qca6420_firmwareqcn9011_firmwareqcc710_firmwarewcn3988_firmwaresm4125_firmwaresw5100snapdragon_860_mobile_firmwaresm8750p_firmwaresnapdragon_888_5g_mobile_firmwaresnapdragon_870_5g_mobileqca8080wcn6650sm4635_firmwaresa4155p_firmwarewcn7880qdu1010snapdragon_x32_5g_modem-rf_firmwarevideo_collaboration_vc3_platformqep8111_firmwareqcn6224_firmwaresm7635pfastconnect_7800wcn6755qcn9072_firmwaresnapdragon_720g_mobilewcd9371_firmwaresa8770pfsm10055wcd9390_firmware215_mobileipq9554_firmwaresa8195p_firmwareqsm8250sa8295p_firmwarewcd9378_firmwaresnapdragon_439_mobileipq8074a_firmwaresa8530pqdu1210fastconnect_6200snapdragon_8_gen_1_mobilesnapdragon_662_mobilecsra6620_firmwareqca6426ipq5010_firmwaresnapdragon_765g_5g_mobilewsa8810_firmwaresnapdragon_x55_5g_modem-rfqca6420sm8635probotics_rb5_firmwaresnapdragon_695_5g_mobile_firmwaresxr2250pwcd9371qcn9070_firmwareqcs4290_firmwareqcn9074csra6640wcn3980_firmwareqcm4290wcd9326ipq5424_firmwaresm6250qcn5022snapdragon_765_5g_mobilewcd9360_firmwareqmp1000_firmwarewcn7750_firmwareqcm4490_firmwaresnapdragon_865_5g_mobile_firmwareimmersive_home_216_firmwaresnapdragon_730_mobilesnapdragon_xr2_5g_firmwaresa9000psdx65m_firmwarewcn3910_firmwareqcn6402qcm6490_firmwarewsa8815_firmwaresnapdragon_xr2_5gqcm4325_firmwaresnapdragon_x35_5g_modem-rfsm6650pqcn6274_firmwarefsm10056_firmwaresnapdragon_695_5g_mobilesxr2130sxr2330p_firmwareipq9008snapdragon_x50_5g_modem-rfqcn6023_firmwareqcn5122qca6574a_firmwaresnapdragon_888\+_5g_mobilesm7250pqca6574_firmwaresnapdragon_480_5g_mobileqca8082qamsrv1m_firmwaresm7635_firmwareqam8620p_firmwarevideo_collaboration_vc5_platform_firmwaresd660_firmwaresnapdragon_x32_5g_modem-rfqca8386_firmwareqca8384qcm2290qcs4290qcn6422wcd9380_firmwareqca6595_firmwareaqt1000ipq5332_firmwaresnapdragon_675_mobile_firmwareqcn9003qca6574aqca6595au_firmwaresnapdragon_460_mobile_firmwareqcm5430_firmwareqca6564asa7775p_firmwarecsra6640_firmwareipq8074afastconnect_6800qca6564_firmwaresnapdragon_x72_5g_modem-rf_firmwaresnapdragon_8_gen_1_mobile_firmwareqcn6432ipq9008_firmwareqdu1000_firmwareqcc710snapdragon_ar1_gen_1wcn3910snapdragon_860_mobileqcs2290ipq8076a_firmwaresnapdragon_780g_5g_mobile_firmwareqca6584ausa8295pwcn3950_firmwarewcn7861sa8150p_firmwareqam8775p_firmwareqca9367_firmwaressg2125p_firmwaresa4150pqca6564ipq9574qca9367qcn9024snapdragon_778g_5g_mobileqcn5224_firmwareqca6564a_firmwaresnapdragon_870_5g_mobile_firmwaresa8155sm7250p_firmwarear8031fastconnect_6200_firmwareqcm4490qcm6125snapdragon_4_gen_2_mobilewcn6650_firmwareqca6564auqru1032_firmwarecsra6620snapdragon_auto_5g_modem-rfsa6150pimmersive_home_3210sa8155p_firmwarewcn3660bsd730Snapdragon
CWE ID-CWE-131
Incorrect Calculation of Buffer Size
CVE-2025-27032
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 1.87%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Access Control Applied to Mirrored or Aliased Memory Regions in Hypervisor

memory corruption while loading a PIL authenticated VM, when authenticated VM image is loaded without maintaining cache coherency.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380qcs6490_firmwaresdx80msdx55wcn7750_firmwaresnapdragon_888_5g_mobile_platform_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmwareqca6310_firmwareqam8650pwcd9340_firmwareqca6420_firmwaresnapdragon_auto_5g_modem-rf_gen_2_firmwaresd670_firmwaresnapdragon_x72_5g_modem-rf_systemsa6155psnapdragon_870_5g_mobile_platform_\(sm8250-ac\)qamsrv1m_firmwaresnapdragon_8\+_gen_2_mobile_platformsnapdragon_8cx_compute_platform_\(sc8180xp-ac\)_firmwareqfw7124_firmwareqcs8550snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwareaqt1000qdx1011snapdragon_8cx_compute_platform_\(sc8180x-ab\)qep8111_firmwaresnapdragon_8_gen_2_mobile_platform_firmwareqam8255p_firmwaresrv1l_firmwarevision_intelligence_400_platformsnapdragon_x50_5g_modem-rf_systemsa8150p_firmwareqcm8550_firmwareqamsrv1h_firmwarewcd9341_firmwaresd855snapdragon_auto_5g_modem-rf_gen_2sd_8_gen1_5gsnapdragon_845_mobile_platformsnapdragon_765g_5g_mobile_platform_\(sm7250-ab\)_firmwareqam8295pssg2115psm7675wcd9385_firmwareqcm6490_firmwaresa7255p_firmwaresnapdragon_x62_5g_modem-rf_systemqep8111qca6391sa8295p_firmwareqca6335_firmwareqca6584au_firmwareqcs6490snapdragon_x72_5g_modem-rf_system_firmwaresd_675_firmwaresnapdragon_x62_5g_modem-rf_system_firmwarewsa8810sm8635p_firmwaresm8650q_firmwaresc8380xp_firmwareqcm8550qcs8300wsa8815snapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmwaresrv1hsnapdragon_855_mobile_platformqdu1010_firmwarewcd9326_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)qca6421_firmwaresm8550p_firmwareqru1062_firmwarevideo_collaboration_vc3_platform_firmwareqca6574au_firmwaresd_8_gen1_5g_firmwarewcd9378snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-aa\)qcs8300_firmwareqca6595au_firmwaresnapdragon_8_gen_2_mobile_platformqdx1010wcn3980qca6584auwcn7880_firmwareqcn6274vision_intelligence_300_platform_firmwaresa8150psnapdragon_ar1_gen_1_platform_\"luna1\"_firmwareqca6797aqqam8650p_firmwareqcn6224_firmwaresm8750_firmwareqca6564asa8155psnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)sa8540p_firmwarewcd9385wcd9380_firmwareqca9377_firmwaresm8750pwcn6450sm8735_firmwareqca6574asnapdragon_675_mobile_platformsnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)wcd9340wcn7880qca6436wsa8845_firmwarewcd9341sa7255pqca6426_firmwarefastconnect_6200sg8275p_firmwareqca8337_firmwaresnapdragon_x35_5g_modem-rf_systemsnapdragon_675_mobile_platform_firmwaresnapdragon_765_5g_mobile_platform_\(sm7250-aa\)_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmwareqca6698aqsnapdragon_8c_compute_platform_\(sc8180x-ad\)_firmwarewsa8832aqt1000_firmwareqdu1210snapdragon_ar1_gen_1_platform_firmwaresd675_firmwareqsm8350_firmwareqcn6224snapdragon_ar1_gen_1_platformsnapdragon_670_mobile_platform_firmwaresdx57m_firmwaresnapdragon_x24_lte_modemwcd9370sm7675pqca8081_firmwareqcc710_firmwareqca6698aq_firmwarefastconnect_6800qca6574a_firmwarewsa8832_firmwaresa8650psxr2230p_firmwarewcn7860qsm8350qca6678aq_firmwaresm7250psm8550pwcd9378_firmwarewcn7881_firmwareqca6431_firmwareqcn9274_firmwaresm6650qcs5430ssg2115p_firmwarewsa8845h_firmwarewcd9395_firmwaresd670snapdragon_x35_5g_modem-rf_system_firmwarefastconnect_6900_firmwareqca6678aqsa9000pwsa8835_firmwaresa8295psnapdragon_888_5g_mobile_platformwcd9390ar8035sc8380xpqdx1011_firmwaresa8775p_firmwaresdx55_firmwaresm7675p_firmwareqam8775psa8540pqca6696_firmwarevision_intelligence_300_platformvision_intelligence_400_platform_firmwareqca6797aq_firmwaresnapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwaresnapdragon_x55_5g_modem-rf_system_firmwareqca6564au_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)_firmwaresa8650p_firmwaresnapdragon_678_mobile_platform_\(sm6150-ac\)robotics_rb3_platform_firmwaresm7675_firmwarewcn7881sxr2250p_firmwaresrv1mwcd9395sxr2250pqru1052wcn6755_firmwaresxr2330p_firmwaresnapdragon_x65_5g_modem-rf_system_firmwarewsa8810_firmwarewcn6650snapdragon_768g_5g_mobile_platform_\(sm7250-ac\)_firmwareqdu1210_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-af\)qdu1110_firmwarewsa8840sxr1230pwcn7861_firmwareqdu1110qca9377wsa8840_firmwarefastconnect_6700_firmwaresnapdragon_8\+_gen_2_mobile_platform_firmwaresa8155_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-af\)_firmwareqdu1000fastconnect_6700sm7250p_firmwarewcn3950_firmwarewcn3980_firmwareqca6696qcm5430_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-ac\)sxr2330pqcs8550_firmwarewsa8845hqca6426qdx1010_firmwareqca6310sdx57mssg2125p_firmwareqcn9274snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)snapdragon_865_5g_mobile_platformqam8295p_firmwaresm7635_firmwareqfw7114qcs9100wcd9326snapdragon_x55_5g_modem-rf_systemqca6421wcd9370_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)snapdragon_855_mobile_platform_firmwaresnapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmwaresnapdragon_8_gen_1_mobile_platformar8035_firmwaresrv1lwsa8845qdu1010sdx80m_firmwaresnapdragon_865_5g_mobile_platform_firmwaresa8155wcn7860_firmwareqru1062qamsrv1hsnapdragon_845_mobile_platform_firmwaresm8750qca6574snapdragon_xr2_5g_platformsa8255p_firmwaresa6155sm8750p_firmwaresxr1230p_firmwaresd855_firmwaresg8275psnapdragon_855\+\/860_mobile_platform_\(sm8150-ac\)_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"fastconnect_7800_firmwaresnapdragon_765_5g_mobile_platform_\(sm7250-aa\)qru1052_firmwaresd675snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwaresa7775psnapdragon_8c_compute_platform_\(sc8180xp-ad\)sxr2230psa8620p_firmwaresnapdragon_ar2_gen_1_platformsnapdragon_850_mobile_compute_platform_firmwaresnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)sa8770psrv1m_firmwarewcd9375qca6574_firmwaresnapdragon_x24_lte_modem_firmwaresnapdragon_8_gen_1_mobile_platform_firmwarewcn6450_firmwaresa8620psnapdragon_768g_5g_mobile_platform_\(sm7250-ac\)sa6145p_firmwaresnapdragon_x75_5g_modem-rf_system_firmwareqca6430qca6595_firmwareqam8775p_firmwareqca6391_firmwareqdu1000_firmwarewcn6755snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)_firmwaresd_8cx_firmwaresnapdragon_x65_5g_modem-rf_systemqca8081sm7635snapdragon_8_gen_3_mobile_platformqmp1000sm8635snapdragon_850_mobile_compute_platformsa6155_firmwaresa7775p_firmwaresnapdragon_x75_5g_modem-rf_systemwcn7861sa8775pwsa8815_firmwaresa9000p_firmwarewcn6650_firmwaresnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)wcd9390_firmwaresnapdragon_765g_5g_mobile_platform_\(sm7250-ab\)fastconnect_6900qam8255pvideo_collaboration_vc3_platformqcn6274_firmwaresnapdragon_8c_compute_platform_\(sc8180x-ad\)qca6431fastconnect_6200_firmwarewsa8835sd_8cxsd865_5gfastconnect_6800_firmwarewcd9375_firmwarerobotics_rb3_platformqca6564auqmp1000_firmwareqam8620pqca6595auqcc710sa6155p_firmwaressg2125pqamsrv1mwcn3950sxr2130_firmwaresrv1h_firmwaresm6650_firmwarefastconnect_7800qfw7124sd_675sa6145psnapdragon_ar2_gen_1_platform_firmwareqcm5430qfw7114_firmwareqru1032_firmwaresm8635psnapdragon_670_mobile_platformsm8650qsnapdragon_x50_5g_modem-rf_system_firmwareqcs9100_firmwaresnapdragon_8_gen_3_mobile_platform_firmwareqca6174a_firmwareqca6564a_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmwareqca6174aqca6335qru1032qca8337snapdragon_855\+\/860_mobile_platform_\(sm8150-ac\)wcn3990_firmwareqam8620p_firmwarewsa8830wcn3990wsa8830_firmwareqca6574auqca6430_firmwaresa8155p_firmwareqcs5430_firmwaresa8770p_firmwaresnapdragon_678_mobile_platform_\(sm6150-ac\)_firmwaresm8735qcm6490wcn7750qca6420snapdragon_xr2_5g_platform_firmwareqca6436_firmwareqca6595sd865_5g_firmwaresxr2130sa8255psm8635_firmwareSnapdragon
CWE ID-CWE-1257
Improper Access Control Applied to Mirrored or Aliased Memory Regions
CVE-2025-27048
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.52%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:17
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in Camera

Memory corruption while processing camera platform driver IOCTL calls.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845wcd9385x2000077_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarexg101039fastconnect_6900qcc2072_firmwarex2000086wsa8845hx2000092xg101039_firmwarexg101002wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwarex2000077x2000094fastconnect_6900_firmwarexg101032_firmwarexg101002_firmwarex2000092_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CVE-2025-27043
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in Video

Memory corruption while processing manipulated payload in video firmware.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qdx1010_firmwaresw5100pwcn6650qcm8550_firmwaresd865_5gqcs410_firmwaresa6150p_firmwaresm8735qca6595wcd9335qcs610_firmwarewcd9370qca8081_firmwareqcn5224qca6696qam8620p_firmwarewcn7880_firmwarewcd9340_firmwarewcd9341_firmwaresxr2330p_firmwarewcd9395_firmwarewcn7881_firmwareqcn6024wcn7750wcn6450qcc710_firmwareipq8076fastconnect_6700snapdragon_685_4g_mobileqcn6023sa4150pqcn5124_firmwarewsa8832_firmwareqca8337qdu1110wcd9395qca6574au_firmwareipq8078asnapdragon_x72_5g_modem-rfipq8078a_firmwaresm6370qam8295pwcd9341qca6574auwcd9390snapdragon_888\+_5g_mobile_firmwaresa8620p_firmwarewsa8810_firmwarewsa8845h_firmwaresa9000p_firmwaresrv1hsm8650q_firmwareqcs9100qcs5430wcn7860qcn6024_firmwareqcm5430qcm5430_firmwarevideo_collaboration_vc1_platform_firmwaresa4155psa8770pqcm6125_firmwareqcc710snapdragon_x32_5g_modem-rf_firmwaresnapdragon_xr2_5g_firmwareqca8101fastconnect_6900snapdragon_w5\+_gen_1_wearable_firmwarevideo_collaboration_vc1_platformimmersive_home_326_firmwareqru1032_firmwareqep8111sm8635sa7255pqfw7114wcd9385_firmwareqam8255p_firmwareipq8074a_firmwareipq8076aqcn5164snapdragon_680_4g_mobilewsa8845sa6155pqcm6125csr8811_firmwarewsa8810qam8650pvideo_collaboration_vc5_platform_firmwaresa9000pqdu1000_firmwaresrv1h_firmwareqca8085snapdragon_888_5g_mobile_firmwareqca6595ausnapdragon_888_5g_mobileqdu1010snapdragon_662_mobile_firmwaresnapdragon_685_4g_mobile_firmwaresa6155p_firmwarewsa8840snapdragon_ar1_gen_1snapdragon_x35_5g_modem-rf_firmwareqcs8550_firmwareqca6698auqdu1210_firmwaresnapdragon_8_gen_2_mobile_firmwareqfw7124_firmwaresm8750pqcn9012ipq8070a_firmwaresnapdragon_695_5g_mobile_firmwareqcn9070qcf8001wcn3910_firmwareqca8384qca8084sm8635psnapdragon_460_mobilesnapdragon_8_gen_2_mobileqmp1000wcn3910wcd9370_firmwareqca9367qdu1110_firmwareqdu1000sa7255p_firmwareqca6574asm7635p_firmwaresnapdragon_x72_5g_modem-rf_firmwaresnapdragon_8\+_gen_2_mobileqca6174asa8195pwcd9340qcs8250_firmwareqcm2290qdu1210snapdragon_auto_5g_modem-rf_gen_2qcm6490qcn5154_firmwaresm8550p_firmwarewcn3988qcm8550sm6370_firmwaresnapdragon_662_mobileqcn9274ipq8076a_firmwareqca8384_firmwareqca6574sa8775pqca6698au_firmwareqcn9011sa8775p_firmwareqamsrv1hwsa8845hqca8082sa6150psm8650qqcm2290_firmwareqcs410sa8155p_firmwaresa8155pwsa8830sm8550psa6145pqcn9074_firmwareipq8174sm7675_firmwaresa8255p_firmwareipq8174_firmwarear8035ipq8072asm7635_firmwareqamsrv1m_firmwarewcn7750_firmwaresa8650p_firmwaresm7635pwcn6450_firmwareqcm4325srv1l_firmwareqcs9100_firmwareqcn6224ipq8071aqcs615qca6698aqwcn3950_firmwaresa7775p_firmwaresm7635qrb5165nsnapdragon_480\+_5g_mobilefastconnect_6200sa8145p_firmwarewcd9378snapdragon_480_5g_mobile_firmwaresnapdragon_660_mobile_firmwaresm8635p_firmwaresm6650p_firmwareqdx1011sa8150p_firmwarefastconnect_6700_firmwarevideo_collaboration_vc3_platform_firmwarewcn3990qcn6023_firmwareqcn5164_firmwaresnapdragon_x75_5g_modem-rf_firmwareipq8078snapdragon_8_gen_3_mobileqcs6490snapdragon_695_5g_mobileqcs8250fastconnect_6200_firmwareqcn9072wsa8830_firmwaresnapdragon_460_mobile_firmwareqcn6224_firmwareqca6678aq_firmwarewsa8845_firmwaresd660_firmwareqca8386_firmwarewsa8832qca8082_firmwarewcd9378_firmwaresnapdragon_480_5g_mobilesrv1lsm7675pqca6678aqsnapdragon_x35_5g_modem-rfar8035_firmwarewcn7860_firmwaresa4150p_firmwareqca4024_firmwareqcs6125_firmwaresm4635qcn9074wsa8815_firmwaresa8195p_firmwareqca8337_firmwareqca9888snapdragon_xr2\+_gen_1qca9377_firmwareipq8173qcm6490_firmwareipq8072a_firmwaresm4635_firmwareqru1032wcn3950qcs6125flight_rb5_5gsm8750qca8385snapdragon_auto_5g_modem-rf_gen_2_firmwareqca6797aq_firmwareqca8085_firmwareqcf8001_firmwareqcn9070_firmwaresa8295p_firmwaresa4155p_firmwareqca8101_firmwareqca6584auqcn6274_firmwarewcn6755_firmwareqcn9011_firmwareqru1062_firmwaresw5100_firmwarewcn6650_firmwareqru1062ipq5424snapdragon_8_gen_3_mobile_firmwareqcn5224_firmwareqfw7114_firmwareqca4024qcs7230qca6595_firmwarefastconnect_7800_firmwaresm8635_firmwareipq8070afastconnect_6900_firmwarerobotics_rb5_firmwarewcd9380sa6145p_firmwareqam8255pqca8080qmp1000_firmwaresnapdragon_xr2_5gwcn7880sa8150psxr2330pwcn6755immersive_home_3210snapdragon_auto_5g_modem-rf_firmwarewcn7881sm6650sw5100video_collaboration_vc3_platformsnapdragon_4_gen_1_mobile_firmwareqca8385_firmwaresm6650pqca6688aqqam8295p_firmwarewcn3990_firmwaresnapdragon_660_mobileqca6698aq_firmwareqcs2290wcd9385snapdragon_888\+_5g_mobileqcs2290_firmwaresnapdragon_xr2\+_gen_1_firmwaresnapdragon_8_gen_1_mobileqca9367_firmwareqca8084_firmwareipq5424_firmwaresnapdragon_680_4g_mobile_firmwaresa8255pqcs7230_firmwarewcd9390_firmwareqcn5024qep8111_firmwareqcs615_firmwareimmersive_home_326qdx1011_firmwareipq8071a_firmwaresm8750_firmwaresnapdragon_auto_5g_modem-rfflight_rb5_5g_firmwareqca8080_firmwareqru1052snapdragon_480\+_5g_mobile_firmwareqamsrv1mrobotics_rb5qca6174a_firmwarewcn7861_firmwarewcn7861qam8650p_firmwarevideo_collaboration_vc5_platformqcs6490_firmwaresm6650_firmwareipq8076_firmwareqam8620pwcd9335_firmwarewcn3980_firmwareqrb5165n_firmwareqca6584au_firmwareqcn6274wsa8835wsa8840_firmwareqca6391_firmwareqfw7124qca6595au_firmwareqcs610qdu1010_firmwareqcs8300_firmwaresw5100p_firmwareqca6696_firmwareqcs8300wcd9380_firmwareqca6574_firmwareqca8081sd660wsa8815sg4150pqcn5124qam8775pqca9377qca6797aqsnapdragon_x75_5g_modem-rfqcm4325_firmwaresa8620psnapdragon_4_gen_1_mobileqca6574a_firmwareqcn9072_firmwareqca9888_firmwareipq8074aimmersive_home_3210_firmwareqca9889qcn5024_firmwarewcd9375_firmwareqca8386qca6391snapdragon_ar1_gen_1_firmwaresa7775pqcn9274_firmwareipq8173_firmwareqcs5430_firmwaresnapdragon_x32_5g_modem-rfsg4150p_firmwareqcn9012_firmwareqru1052_firmwaresa8770p_firmwaresa8295pqcs8550sm8735_firmwarefastconnect_7800sa8650pqam8775p_firmwaresd865_5g_firmwaresm8750p_firmwarewcd9375snapdragon_8\+_gen_2_mobile_firmwareipq8078_firmwareqca6688aq_firmwareqca9889_firmwarewcn3988_firmwareqamsrv1h_firmwaresm7675qcn5154sa8145pwsa8835_firmwarecsr8811wcn3980sm7675p_firmwareqdx1010snapdragon_w5\+_gen_1_wearablesnapdragon_8_gen_1_mobile_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-27031
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 6.75%
||
7 Day CHG~0.00%
Published-03 Jun, 2025 | 05:53
Updated-20 Aug, 2025 | 20:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Bluetooth HOST

memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_6900_firmwarewsa8845_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewcd9375qcs5430qcs5430_firmwarevideo_collaboration_vc3_platformwsa8835qcm5430_firmwarefastconnect_6700wsa8845wsa8840wsa8845h_firmwarefastconnect_7800fastconnect_7800_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)wsa8830wsa8835_firmwarefastconnect_6900snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarewcd9385wcd9385_firmwareqcm6490_firmwareqcm6490video_collaboration_vc3_platform_firmwarewsa8840_firmwaresc8380xpqcs6490wcd9370_firmwarewcd9370wsa8845hsc8380xp_firmwarefastconnect_6700_firmwareqcs6490_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)wcd9375_firmwarewcd9380_firmwareqcm5430wsa8830_firmwarewcd9380snapdragon_7c\+_gen_3_computeSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-27047
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Display

Memory corruption while processing the TESTPATTERNCONFIG escape path.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcs5430wsa8845_firmwarewsa8840wsa8845hwcd9380_firmwarewcd9370qcm5430qcm5430_firmwarewsa8830wcd9385sc8380xpsnapdragon_7c\+_gen_3_compute_firmwaresc8380xp_firmwarefastconnect_6700sc8280xp-abbbwcd9375_firmwarefastconnect_6900fastconnect_7800_firmwarewcd9370_firmwareqcs5430_firmwarewcd9385_firmwarefastconnect_6900_firmwarewcd9380qcm6490_firmwaresc8280xp-abbb_firmwarefastconnect_7800wcd9375qcm6490wsa8845fastconnect_6700_firmwarewsa8845h_firmwarevideo_collaboration_vc3_platform_firmwareqcs6490_firmwarewsa8835_firmwareqcs6490snapdragon_7c\+_gen_3_computewsa8835wsa8840_firmwarewsa8830_firmwarevideo_collaboration_vc3_platformSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-27050
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Camera

Memory corruption while processing event close when client process terminates abruptly.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845_firmwarewsa8840wcd9370sc8180xp-aaab_firmwarewcd9340_firmwarewcd9385sc8380xpwcd9341_firmwaresnapdragon_7c\+_gen_3_compute_firmwarefastconnect_6700qca6420sc8180xp-adsc8280xp-abbbqca6430wsa8815_firmwarewcd9370_firmwaresc8180xp-ad_firmwareqcm6490_firmwaresc8180xp-aaabwcd9340wcd9341qcm6490wsa8810_firmwarewsa8845h_firmwareqca6420_firmwareaqt1000_firmwareqcs6490_firmwaresc8180xp-acafsnapdragon_7c\+_gen_3_computewsa8835wsa8840_firmwareqca6391_firmwareqca6430_firmwarefastconnect_6800_firmwareqcs5430wsa8845hwcd9380_firmwareqcm5430sm6250_firmwaresc8180x-ad_firmwareqcm5430_firmwaresc8180x-acafwsa8815wsa8830sc8180x\+sdx55_firmwaresc8380xp_firmwarefastconnect_6800wcd9375_firmwarefastconnect_7800_firmwarefastconnect_6900qca6391qcs5430_firmwaresc8180x\+sdx55wcd9385_firmwaresm6250fastconnect_6900_firmwarewcd9380sc7180-acfastconnect_6200sc8280xp-abbb_firmwarefastconnect_7800sc8180x-acaf_firmwaresc7180-adsc7180-ad_firmwarewcd9375wsa8845fastconnect_6700_firmwarevideo_collaboration_vc3_platform_firmwaresc8180x-adwsa8835_firmwaresc8180x-aaabwsa8810sc8180x-aaab_firmwareqcs6490sc7180-ac_firmwaresc8180xp-acaf_firmwarefastconnect_6200_firmwarewsa8830_firmwarevideo_collaboration_vc3_platformaqt1000Snapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-27077
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.27%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Automotive Software platform based on QNX

Memory corruption while processing message in guest VM.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6698aqsrv1h_firmwaresa8540p_firmwaresa8650p_firmwaresa8255pqamsrv1m_firmwareqca6574ausa8775p_firmwaresrv1m_firmwareqam8620p_firmwaresa8770p_firmwareqamsrv1h_firmwareqam8255p_firmwaresa8295pqca6696_firmwareqca6797aq_firmwareqam8775p_firmwaresa8255p_firmwareqam8255pqam8775pqam8295p_firmwaresa7255p_firmwaresa7775psrv1msa8540psa8770pqca6688aq_firmwareqca6595_firmwareqam8295pqca6595ausa9000psa8620p_firmwaresa8650pqca6797aqqamsrv1mqca6696qam8620psa8295p_firmwaresrv1l_firmwaresrv1hqca6688aqqca6595au_firmwareqca6574au_firmwareqam8650p_firmwaresa9000p_firmwaresa7775p_firmwaresrv1lqca6595qam8650psa7255psa8620pqca6698aq_firmwaresa8775pqamsrv1hSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2018-11816
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.16%
||
7 Day CHG~0.00%
Published-26 Nov, 2024 | 13:56
Updated-06 Feb, 2025 | 16:41
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Video

Crafted Binder Request Causes Heap UAF in MediaServer

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-apq8076_firmwarear6003_firmwaresd835sd835_firmwareapq8056_firmwareapq8056sd820apq8039_firmwareaqt1000sd820_firmwareapq8052_firmwareapq8017_firmwareaqt1000_firmwaresd670ar6003apq8016_firmwaresd660_firmwaresd821apq8052apq8016apq8039sd821_firmwaresd660apq8017apq80769206_lte_modem_firmwaresd670_firmware9206_lte_modemSnapdragon9206_lte_modem_firmwareaqt1000_firmwarear6003_firmwaresd835_firmwaresd670_firmwaresd821_firmwareapq8076_firmwareapq8017_firmwaresd660_firmwareapq8052_firmwaresd820_firmwareapq8056_firmwareapq8016_firmwareapq8039_firmware
CWE ID-CWE-416
Use After Free
CVE-2025-27055
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in Camera

Memory corruption during the image encoding process.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845_firmwarewsa8840wcd9370snapdragon_7c_gen_2_compute_firmwaresc8180xp-aaab_firmwarewcd9340_firmwarewcd9385sc8380xpwcd9341_firmwaresnapdragon_7c\+_gen_3_compute_firmwarefastconnect_6700qca6420sc8180xp-adsc8280xp-abbbqca6430wsa8815_firmwarewcd9370_firmwaresc8180xp-ad_firmwareqcm6490_firmwaresc8180xp-aaabwcd9340wcd9341qcm6490wsa8810_firmwarewsa8845h_firmwareqca6420_firmwareaqt1000_firmwareqcs6490_firmwaresc8180xp-acafsnapdragon_7c\+_gen_3_computewsa8835wsa8840_firmwareqca6391_firmwareqca6430_firmwarefastconnect_6800_firmwareqcs5430wsa8845hwcd9380_firmwareqcm5430sm6250_firmwaresc8180x-ad_firmwareqcm5430_firmwaresc8180x-acafwsa8815snapdragon_7c_computewsa8830snapdragon_7c_gen_2_computesc8180x\+sdx55_firmwaresnapdragon_7c_compute_firmwaresc8380xp_firmwarefastconnect_6800wcd9375_firmwarefastconnect_7800_firmwarefastconnect_6900qca6391qcs5430_firmwaresc8180x\+sdx55wcd9385_firmwaresm6250fastconnect_6900_firmwarewcd9380fastconnect_6200sc8280xp-abbb_firmwarefastconnect_7800sc8180x-acaf_firmwarewcd9375wsa8845fastconnect_6700_firmwarevideo_collaboration_vc3_platform_firmwaresc8180x-adwsa8835_firmwaresc8180x-aaabwsa8810sc8180x-aaab_firmwareqcs6490sc8180xp-acaf_firmwarefastconnect_6200_firmwarewsa8830_firmwarevideo_collaboration_vc3_platformaqt1000Snapdragon
CWE ID-CWE-125
Out-of-bounds Read
CWE ID-CWE-126
Buffer Over-read
CVE-2025-27037
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.27%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Camera Driver

Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference to CPU buffers.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcn3988_firmwaresw5100snapdragon_xr2_5g_platformfastconnect_6900wcn3680bqca6696_firmwaresnapdragon_x55_5g_modem-rf_systemqca6436wsa8830_firmwaresnapdragon_870_5g_mobile_platform_\(sm8250-ac\)qcn9074_firmwarefastconnect_7800sa8145pwcd9380_firmwaresa8155pwsa8830sa8195p_firmwaresd865_5g_firmwareqca6391qca6696sa8195psa8295p_firmwareqca6391_firmwaresnapdragon_xr2_5g_platform_firmwareqca6574au_firmwaresa8145p_firmwaresa6150p_firmwaresa6155p_firmwaresw5100pfastconnect_6800qca6426wsa8810_firmwarewcd9380snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)snapdragon_x55_5g_modem-rf_system_firmwareqca6574auqcn9074wcn3980_firmwaresnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmwaresa8295pwcn3680b_firmwaresa8150p_firmwaresnapdragon_8_gen_1_mobile_platform_firmwaresnapdragon_865_5g_mobile_platformsa8150pwsa8835sw5100p_firmwareqam8295p_firmwareqca6426_firmwaresa6145psa6155psa6145p_firmwareqam8295pwsa8835_firmwarewcn3660b_firmwarewsa8815_firmwaresd865_5gfastconnect_6900_firmwarefastconnect_6800_firmwaresxr2130_firmwarewcn3988wsa8810snapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmwaresnapdragon_865_5g_mobile_platform_firmwarewcn3980sxr2130sa6150pqca6436_firmwaresnapdragon_8_gen_1_mobile_platformsw5100_firmwarefastconnect_7800_firmwaresa8155p_firmwarewcn3660bwsa8815Snapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-27076
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.94%
||
7 Day CHG~0.00%
Published-06 Aug, 2025 | 07:26
Updated-19 Aug, 2025 | 13:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Time-of-check Time-of-use (TOCTOU) Race Condition in Display

Memory corruption while processing simultaneous requests via escape path.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm6490_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)aqt1000snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwaresnapdragon_7c\+_gen_3_compute_firmwaresm6250snapdragon_7c_compute_platform_\(sc7180-ac\)wsa8835qca6391snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)fastconnect_7800_firmwarewsa8845_firmwaresc8180x\+sdx55_firmwarewsa8830snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmwarewsa8845h_firmwaresnapdragon_8c_compute_platform_\(sc8180xp-ad\)snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)_firmwareqca6430qcs6490_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-aa\)wsa8815_firmwarevideo_collaboration_vc3_platform_firmwarewsa8810qca6420snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)wcd9370_firmwaresnapdragon_8c_compute_platform_\(sc8180x-ad\)fastconnect_6800snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmwarefastconnect_6200_firmwarewsa8840_firmwarewsa8810_firmwarewcd9380_firmwarewsa8835_firmwaresnapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmwarewcd9341snapdragon_8cx_compute_platform_\(sc8180xp-ac\)_firmwarewcd9370sm6250_firmwareaqt1000_firmwareqcm5430_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-af\)wcd9385snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarefastconnect_6800_firmwaresnapdragon_7c\+_gen_3_computewsa8840wcd9375_firmwaresc8180x\+sdx55wcd9385_firmwarewsa8815wcd9341_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-ac\)fastconnect_6700_firmwarefastconnect_7800snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)qcs5430snapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwarewsa8845hsc8380xpwcd9340qcm6490qcs5430_firmwarefastconnect_6900_firmwaresnapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmwarefastconnect_6700qca6430_firmwaresnapdragon_8c_compute_platform_\(sc8180x-ad\)_firmwarewsa8845fastconnect_6900qcs6490wcd9375video_collaboration_vc3_platformsnapdragon_8cx_compute_platform_\(sc8180xp-af\)_firmwaresc8380xp_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)wcd9340_firmwareqcm5430snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-ab\)qca6391_firmwarewsa8830_firmwarewcd9380snapdragon_7c_compute_platform_\(sc7180-ac\)_firmwarefastconnect_6200qca6420_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)_firmwareSnapdragon
CWE ID-CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
CVE-2025-27061
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in Video

Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the video firmware.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qdx1010_firmwareimmersive_home_214sd865_5gqcs8155_firmwareqca6595sm8735qca8081_firmwareqcn5224qcn9001qam8620p_firmwarewcn7880_firmwarewcd9340_firmwaresa8530pwcd9395_firmwareqcn6024wcn7750qcc710_firmwareqca6426snapdragon_8\+_gen_1_mobilesnapdragon_auto_4gfastconnect_6700qcn6422_firmwaresa4150pqcn5124_firmwaresnapdragon_782g_mobile_firmwarewsa8832_firmwareqca8337qca6426_firmwarewcd9395ipq9048qca6574au_firmwareipq8078a_firmwareqca6564_firmwaresm6370qam8295psnapdragon_x12_lte_firmwarewcd9341ipq5312snapdragon_888\+_5g_mobile_firmware315_5g_iot_firmwaresd730_firmwarewsa8810_firmwarewsa8845h_firmwaresa9000p_firmwareqcs9100fastconnect_6800_firmwareqcs5430wcn7860fsm10055snapdragon_x32_5g-rf_firmwareqcm5430_firmwarevideo_collaboration_vc1_platform_firmwaresa4155psa8770pqcn9000snapdragon_678_mobile_firmwaresnapdragon_x62_5g-rfsa8540pqsm8250_firmwareqsm8350_firmwareqcn6432video_collaboration_vc1_platformsa7255psm8635qep8111snapdragon_x65_5g-rf_firmwaresnapdragon_730_mobile_firmwarewcd9385_firmwareipq8074a_firmwareipq8076awcd9360snapdragon_680_4g_mobilesa6155psnapdragon_x75_5g-rf_firmwareqca6564au_firmwareqca8075qam8650pvideo_collaboration_vc5_platform_firmwaresa9000psnapdragon_888_5g_mobile_firmwaresxr2250p_firmwaresnapdragon_662_mobile_firmwaresa6155p_firmwaresnapdragon_685_4g_mobile_firmwaresnapdragon_ar1_gen_1qca6698ausnapdragon_4_gen_2_mobile_firmwareqca6436_firmwareipq8070a_firmwaresnapdragon_695_5g_mobile_firmwareqcn9070snapdragon_7c\+_gen_3_compute_firmwareqca8384qca8084sm4125_firmwareqca6420wcn3910qca9367wcn3660bqca6574asm7635p_firmwareqca6174awcd9340qcs8250_firmwareqcm2290qdu1210talynplusqcn6122_firmwareqcn5154_firmwareipq9048_firmwaresm8550p_firmwaresxr2250pwcn3988qcm8550snapdragon_765_5g_mobile_firmwareqcn5122_firmwareqcn9024qca8384_firmwareqca6574qca6698au_firmwaresnapdragon_auto_5g-rf_firmwareqamsrv1hqcn6412_firmwareqca8082sm8650qqcm2290_firmwareqcs410sa8155pqca8072_firmwarewsa8830snapdragon_765g_5g_mobile_firmwaresnapdragon_x75_5g-rfipq5312_firmwaresm8550pqcf8000_firmwaresa6145pimmersive_home_318_firmwaresa8255p_firmwareqcn6122sm7635_firmwaresnapdragon_4_gen_2_mobilewcn7750_firmwaresa8650p_firmwareqrb5165m_firmwaresm7635pimmersive_home_216_firmwarewcn6450_firmwareimmersive_home_316srv1l_firmwareqcs9100_firmwaresnapdragon_865\+_5g_mobile_firmwareipq8071aqcn6112wcn3950_firmwareqrb5165nfastconnect_6200sm7325p_firmwarewcd9360_firmwarewcd9378snapdragon_480_5g_mobile_firmwaresnapdragon_660_mobile_firmwaresm8635p_firmwaresm6650p_firmwareqdx1011video_collaboration_vc3_platform_firmwaresnapdragon_x72_5g-rfsnapdragon_auto_5g-rf_gen_2_firmwareqcn6023_firmwareqcn5164_firmwaresnapdragon_8_gen_3_mobilesnapdragon_855_mobileqcn9072qcn6224_firmwaresd660_firmwaresdx61_firmwareqca8082_firmwaresnapdragon_480_5g_mobilesnapdragon_750g_5g_mobile_firmwaresrv1limmersive_home_216sm7675psrv1msnapdragon_860_mobile_firmwaresxr2130_firmwarear8035_firmwaresnapdragon_778g\+_5g_mobileqrb5165mqca4024_firmwareqca0000_firmwarefsm20056sd888_firmwaresnapdragon_x65_5g-rfqcs6125_firmwareipq9008_firmwareqcn9074wsa8815_firmwaresnapdragon_x50_5g-rfqca8337_firmwaresnapdragon_auto_4g_firmwareipq8173sm7250p_firmwaresm4635_firmwarewcn3680_firmwaresa2150p_firmwarewcn3950snapdragon_730g_mobile_firmwaresm8750qca8385qca6797aq_firmwaretalynplus_firmwareqcf8001_firmwareqcn9070_firmwaresnapdragon_778g\+_5g_mobile_firmwaresmart_audio_400_firmwaresa8295p_firmwaresd_675_firmwaresa4155p_firmwaresnapdragon_720g_mobileipq5010_firmwaresm7250pqca8101_firmwareipq6018sa8155sd888snapdragon_x35_5g-rfwcn6755_firmwarefsm10055_firmwareqru1062_firmwarefsm10056snapdragon_675_mobile_firmwaresnapdragon_768g_5g_mobilefsm20056_firmwareqru1062ipq5424fastconnect_6800qcs7230snapdragon_865_5g_mobile_firmwareipq5302_firmwareqcn9001_firmwarewcd9371fastconnect_6900_firmwarerobotics_rb5_firmwarequalcomm_215_mobile_firmwareqmp1000_firmwarewcn7880wcn6755qca8075_firmwaresxr2330pqcf8000wcn7881sdx65m_firmwarevideo_collaboration_vc3_platformqcm2150_firmwareqca8385_firmwareqcn6402_firmwareqca6698aq_firmwareqcs2290qcs2290_firmwaresnapdragon_xr2\+_gen_1_firmwarewcn3615qca9367_firmwareqca8084_firmwareipq5424_firmwarewcn3680sa8255pqcs7230_firmwarewcd9390_firmwareqcn5024qep8111_firmwareqcs615_firmwareqca6430snapdragon_855\+_mobilesnapdragon_765_5g_mobileimmersive_home_326snapdragon_860_mobileqdx1011_firmwaresm8750_firmwareflight_rb5_5g_firmwaressg2125pqca8080_firmwareqru1052csra6640_firmwareqamsrv1mwcn7861qam8650p_firmwarevideo_collaboration_vc5_platformqca6420_firmwareqcs6490_firmwaresm6650_firmwareipq8076_firmwareqam8620psd855_firmwareqrb5165n_firmwareqca6436wcd9335_firmwarewcn3980_firmwarewsa8835wsa8840_firmwareqca6391_firmwareqdu1010_firmwareqcs4290_firmwareqcs8300qca8081csra6620sd660mdm9628wsa8815qam8775pqca9377snapdragon_ar2_gen_1_firmwaresnapdragon_auto_5g-rf_gen_2qcm4325_firmwaresnapdragon_439_mobile_firmwareqcn6412qcm4290_firmwaresnapdragon_720g_mobile_firmwareqca9888_firmwareqca9889qcn5024_firmwareqcn9002_firmwaresnapdragon_ar1_gen_1_firmwareimmersive_home_318ipq5010qcn9274_firmwareqcs5430_firmwaresg4150p_firmwareqru1052_firmwarecsra6620_firmwareqcs8550sa8650pqam8775p_firmwaresd865_5g_firmwaresm8750p_firmwarewcd9375qca9889_firmwaresnapdragon_ar2_gen_1sa8145psd_675snapdragon_8\+_gen_1_mobile_firmwarecsr8811sm7675p_firmwaresnapdragon_x50_5g-rf_firmwareqdx1010wcn3680b_firmwaresnapdragon_8_gen_1_mobile_firmwareqcm8550_firmwaresa6150p_firmwarewcn6650qcs410_firmwaresw5100pipq9574qcn9000_firmwareqcn6102_firmwareqcs610_firmwarewcd9335wcd9370qca8072qca6696wcd9341_firmwaresxr2330p_firmwarewcn7881_firmwareqcn9003_firmwarewcn6450ipq8076wcn6740_firmwareipq6018_firmwaresnapdragon_750g_5g_mobilesnapdragon_780g_5g_mobileqcn6023snapdragon_685_4g_mobileqdu1110ipq8078asnapdragon_690_5g_mobile_firmwareqca6574auwcd9390sa8620p_firmwarecsra6640snapdragon_778g_5g_mobile_firmwaresrv1hsm8650q_firmwarewcn3660b_firmwareqcn5122sd730fsm20055snapdragon_690_5g_mobileqcn6024_firmwareqcm5430qualcomm_215_mobilesnapdragon_x72_5g-rf_firmwareqcm6125_firmwarec-v2x_9150ssg2115pqcc710qcn6132_firmwaresnapdragon_xr2_5g_firmwareqca8101qcn5054fastconnect_6900robotics_rb2qcn6402snapdragon_w5\+_gen_1_wearable_firmwareimmersive_home_326_firmwareqru1032_firmwareipq5332_firmwareqcn5052fsm10056_firmwareqfw7114ipq9574_firmwareqam8255p_firmwaresa8155_firmwareqcn5164sdx61qcs4490snapdragon_730_mobilesnapdragon_x55_5g-rf_firmwarewsa8845qcn6100_firmwareqcm6125csr8811_firmwarewsa8810qdu1000_firmwareqca8085qsm8250srv1h_firmwareqcn6100qca6595ausnapdragon_888_5g_mobilesm7315_firmwareqdu1010wcd9326_firmwarewsa8840srv1m_firmwareqcs8550_firmwaresnapdragon_730g_mobilesnapdragon_782g_mobileqdu1210_firmwaresnapdragon_8_gen_2_mobile_firmwareqfw7124_firmwaresm8750pqcn9012wcd9371_firmwareqcs4490_firmwareqcf8001wcn3910_firmwaresm8635psnapdragon_460_mobilesnapdragon_8_gen_2_mobileqmp1000sdx65mwcd9370_firmwarerobotics_rb2_firmwareqdu1110_firmwaresnapdragon_x55_5g-rfqdu1000sa7255p_firmwareipq9570snapdragon_8\+_gen_2_mobilesa8195psa8540p_firmwareipq5302qcm6490sm6370_firmwarefsm20055_firmwaresnapdragon_662_mobileqcn9274ipq8076a_firmwaresa8775pipq9570_firmwaresxr2230p_firmwaresd675_firmwaresnapdragon_855_mobile_firmwareqca6430_firmwareqcn9011sa8775p_firmwaresmart_audio_400wsa8845hqcn9024_firmwaresa6150pwcd9326sa8155p_firmwareqca6564asnapdragon_768g_5g_mobile_firmwareqcn9074_firmwareipq8174sm7675_firmwareipq8174_firmwarear8035ipq8072aqamsrv1m_firmwareqca6564sa6155qcm4325qcf8000sfp_firmwareqcn6224qcs615qca6698aqsa7775p_firmwaresm6250sm7635sa8530p_firmwaressg2125p_firmwaresnapdragon_480\+_5g_mobilewcn3680bsa8145p_firmwareqcs8155sa8150p_firmwarefastconnect_6700_firmwarewcn3990qcn9002ipq8078qcs6490snapdragon_695_5g_mobileqcs8250ipq9554_firmwaresnapdragon_778g_5g_mobilefastconnect_6200_firmwarear8031_firmwarewsa8830_firmwaresnapdragon_460_mobile_firmwareqca6678aq_firmwarewsa8845_firmwareqca8386_firmwarewsa8832wcd9378_firmwareqca6678aqqcn6432_firmwareqcn5022_firmwarewcn7860_firmwaresa4150p_firmwareipq9008ipq9554snapdragon_x35_5g-rf_firmwareqca6564ausm4635sa8195p_firmwareqcm4290qcn5054_firmwareqca9888ipq5332snapdragon_x12_ltear8031sg8275p_firmwareqca9377_firmwareqcm6490_firmwareipq8072a_firmwaresnapdragon_xr2\+_gen_1sm4125qcm4490_firmwareqru1032vision_intelligence_400_firmwareqcn6112_firmwareqcs6125flight_rb5_5gsnapdragon_870_5g_mobile_firmwaresnapdragon_7c\+_gen_3_computesnapdragon_732g_mobileqca8085_firmwaresnapdragon_870_5g_mobilesnapdragon_678_mobileqcn6132sm6250_firmwareqcn6102qca6584auqcn6274_firmwareqcn9011_firmwaresa2150psw5100_firmwarewcn6740wcn6650_firmwaresnapdragon_780g_5g_mobile_firmwaresnapdragon_8_gen_3_mobile_firmwareqcn5224_firmwareqfw7114_firmwareqca4024qca6595_firmwarefastconnect_7800_firmwaresnapdragon_675_mobileqcn6422immersive_home_214_firmwaresnapdragon_auto_5g-rfsm8635_firmwareipq8070awcd9380sa6145p_firmwareqam8255psa6155_firmwaresxr2230pqca8080snapdragon_xr2_5gsa8150pqcn9003immersive_home_3210qcn5052_firmwaresxr1230psm6650sw5100aqt1000snapdragon_4_gen_1_mobile_firmwarec-v2x_9150_firmwaresm6650pqca6688aqqam8295p_firmwaresd855wcn3990_firmwaresm7315snapdragon_660_mobileqca6564a_firmwarewcd9385snapdragon_888\+_5g_mobileqsm8350snapdragon_8_gen_1_mobilesnapdragon_680_4g_mobile_firmwareqcs4290sxr1230p_firmwaresnapdragon_865\+_5g_mobilesg8275psdx55_firmwareipq8071a_firmwarewcn3615_firmwaresxr2130qcm4490snapdragon_480\+_5g_mobile_firmwarerobotics_rb5qca6174a_firmwaresm7325pwcn7861_firmwaresnapdragon_732g_mobile_firmwareaqt1000_firmwareqca6584au_firmwareqcn5152_firmwareqcn6274snapdragon_w5\+_gen_1_wearableqfw7124qca6595au_firmwareqca0000qcs8300_firmwaresw5100p_firmwareqca6696_firmwarewcd9380_firmwareqca6574_firmwaresg4150psd_8_gen1_5gqcn5124qca6797aqmdm9628_firmwareqcn5152sa8620pqca6574a_firmwaresdx55snapdragon_4_gen_1_mobileqcn9072_firmwaresnapdragon_865_5g_mobileipq8074aimmersive_home_3210_firmwaresd675snapdragon_855\+_mobile_firmwaresd_8_gen1_5g_firmwarewcd9375_firmwaresa7775pqca6391qca8386ipq8173_firmwareqcn9012_firmwaresnapdragon_439_mobilesa8770p_firmwaresa8295psm8735_firmwarefastconnect_7800snapdragon_8\+_gen_2_mobile_firmwareqca6688aq_firmwareipq8078_firmwaresnapdragon_765g_5g_mobilesnapdragon_x32_5g-rfwcn3988_firmware315_5g_iotqamsrv1h_firmwaresm7675immersive_home_316_firmwareqcn5154snapdragon_x62_5g-rf_firmwarewsa8835_firmwarevision_intelligence_400ssg2115p_firmwareqcn5022wcn3980qcm2150qcf8000sfpqcs610Snapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-27044
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-21 Jul, 2025 | 18:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in Video

Memory corruption while executing timestamp video decode command with large input values.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800wcd9385_firmwarewsa8840_firmwarewsa8845hwsa8845_firmwaresc8380xpwsa8845wsa8840wcd9380_firmwarefastconnect_7800_firmwarefastconnect_6900wcd9385fastconnect_6900_firmwarewcd9380sc8380xp_firmwarewsa8845h_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-27063
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:28
Updated-28 Jan, 2026 | 17:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use After Free in Video

Memory corruption during video playback when video session open fails with time out error.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9326_firmwareqrb5165n_firmwareqca6696_firmwarewsa8832snapdragon_4_gen_2_mobile_platform_firmwarewcn3910sa6155psnapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmwaresnapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmwaresa8150p_firmwaresnapdragon_888_5g_mobile_platformrobotics_rb5_platform_firmwarewcn3680b_firmwarefastconnect_6900_firmwaresnapdragon_888_5g_mobile_platform_firmwaressg2115pwcn3950snapdragon_480_5g_mobile_platform_firmwarewcd9385sxr1230p_firmwareqcn9011wsa8835_firmwarewcn3980_firmwaresnapdragon_7c\+_gen_3_computecsra6620sa8295p_firmwaresnapdragon_768g_5g_mobile_platform_\(sm7250-ac\)_firmwaresnapdragon_xr2_5g_platformqcm5430flight_rb5_5g_platform_firmwaresnapdragon_778g_5g_mobile_platform_firmwaresnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)_firmwaresm7325psnapdragon_680_4g_mobile_platform_firmwaresa6150psa4155p_firmwaresnapdragon_w5\+_gen_1_wearable_platformsnapdragon_xr2_5g_platform_firmwaresw5100p_firmwaresnapdragon_662_mobile_platform_firmwaresnapdragon_4_gen_2_mobile_platformqca6574_firmwareqcm6125_firmwareqca6595au_firmwareqca6688aq_firmwareqcs610_firmwareqcm6490snapdragon_ar1_gen_1_platform_\"luna1\"wcd9335_firmwaresnapdragon_695_5g_mobile_platform_firmwaresa4155pcsra6620_firmwarewcd9380_firmwarerobotics_rb2_platform_firmwaressg2115p_firmwaresnapdragon_ar1_gen_1_platform_firmwareqcm5430_firmwareflight_rb5_5g_platformsnapdragon_778g_5g_mobile_platformwcn3615wcn6740snapdragon_680_4g_mobile_platformsnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)fastconnect_6800wcn6740_firmwaresnapdragon_ar2_gen_1_platform_firmwaresnapdragon_7c\+_gen_3_compute_firmwareqcm6490_firmwareqca6696csra6640snapdragon_480_5g_mobile_platformwcd9341_firmwareqcs8250wcn3680bwsa8832_firmwareqcs6490robotics_rb2_platformsnapdragon_4_gen_1_mobile_platform_firmwaresnapdragon_685_4g_mobile_platform_\(sm6225-ad\)wcd9375_firmwarerobotics_rb5_platformqam8295pfastconnect_6200_firmwarewcn3990sd660_firmwaresxr1230pvideo_collaboration_vc5_platform_firmwaresnapdragon_xr2\+_gen_1_platform_firmwaresnapdragon_870_5g_mobile_platform_\(sm8250-ac\)fastconnect_7800wcn3615_firmwarewsa8810_firmwareqcs8250_firmwaresnapdragon_765_5g_mobile_platform_\(sm7250-aa\)snapdragon_690_5g_mobile_platform_firmwareqcn9011_firmwarewcd9370_firmwarevideo_collaboration_vc5_platformcsra6640_firmwarefastconnect_7800_firmwareqca6574a_firmwaresnapdragon_695_5g_mobile_platformsnapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresxr2230pqcm2290_firmwarewcd9335video_collaboration_vc1_platform_firmwareqcs2290qcn9012snapdragon_x55_5g_modem-rf_system_firmwarevideo_collaboration_vc3_platformqrb5165nqca6698aqsa8150pqcs7230wcd9380wcd9326qcs410_firmwaresnapdragon_660_mobile_platform_firmwareqca6391_firmwaresnapdragon_460_mobile_platform_firmwaressg2125p_firmwaresnapdragon_765_5g_mobile_platform_\(sm7250-aa\)_firmwarefastconnect_6200sa8295psnapdragon_660_mobile_platformsa6155p_firmwaresd865_5gwcn3990_firmwaresnapdragon_460_mobile_platformqcs6125_firmwareqcs6490_firmwareqcn9012_firmwareqcs6125wcd9370qca6698aq_firmwaresnapdragon_xr2\+_gen_1_platformwsa8830_firmwaresnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)wcn3988wsa8815_firmwarewsa8830qualcomm_215_mobile_platform_firmwareqam8295p_firmwaresa8145p_firmwaresa4150p_firmwaresnapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)qcs2290_firmwaresnapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)snapdragon_ar1_gen_1_platformqcs7230_firmwaresa6145p_firmwaresa8155p_firmwaressg2125pqca6595wcd9341qcs410qca6574au_firmwareqcs610snapdragon_690_5g_mobile_platformsw5100_firmwarewcd9385_firmwarequalcomm_215_mobile_platformqca6595_firmwareqca6574auwcn3660bqca6595aufastconnect_6700wsa8815qcm2290fastconnect_6700_firmwaresa8195p_firmwaresd660snapdragon_782g_mobile_platform_\(sm7325-af\)_firmwarefastconnect_6800_firmwaresnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmwaresnapdragon_x55_5g_modem-rf_systemsnapdragon_782g_mobile_platform_\(sm7325-af\)video_collaboration_vc1_platformsm7250psw5100qca6574asxr2230p_firmwaresnapdragon_865_5g_mobile_platform_firmwaresa8195psnapdragon_768g_5g_mobile_platform_\(sm7250-ac\)wsa8835qcm6125sa6150p_firmwareqrb5165m_firmwarewcn3980video_collaboration_vc3_platform_firmwarewcd9375sa4150psnapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmwaresnapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)_firmwaresnapdragon_765g_5g_mobile_platform_\(sm7250-ab\)snapdragon_w5\+_gen_1_wearable_platform_firmwarewcn3910_firmwarewcn3950_firmwareqca6574snapdragon_4_gen_1_mobile_platformwcn3660b_firmwaresa6145psnapdragon_662_mobile_platformfastconnect_6900qcs5430sa8155psnapdragon_765g_5g_mobile_platform_\(sm7250-ab\)_firmwarewcn3988_firmwaresm7250p_firmwareqcs5430_firmwaresm7325p_firmwareqca6688aqsnapdragon_865_5g_mobile_platformsnapdragon_ar2_gen_1_platformqca6391wsa8810sa8145pqrb5165msw5100psd865_5g_firmwareSnapdragon
CWE ID-CWE-416
Use After Free
CVE-2025-27067
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.45%
||
7 Day CHG~0.00%
Published-06 Aug, 2025 | 07:26
Updated-18 Aug, 2025 | 18:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in DSP Service

Memory corruption while processing DDI call with invalid buffer.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_6900_firmwarewsa8845h_firmwarewsa8845fastconnect_6900fastconnect_7800_firmwaresc8380xp_firmwarewsa8845hwcd9385_firmwarefastconnect_7800wsa8840wsa8845_firmwarewcd9385wsa8840_firmwarewcd9380_firmwarewcd9380sc8380xpSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2025-27052
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-11 Aug, 2025 | 15:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in Core Services

Memory corruption while processing data packets in diag received from Unix clients.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sw5100pqcm8550_firmwarewcn6650sm8735qca6595wcd9335wcd9370qca8081_firmwareqca6696qam8620p_firmwarewcn7880_firmwarewcd9340_firmwarewcd9341_firmwaresxr2330p_firmwarewcd9395_firmwarewcn7881_firmwarewcn7750wcn6450qcc710_firmwarefastconnect_6700snapdragon_685_4g_mobilesa4150pwsa8832_firmwareqca8337wcd9395qca6574au_firmwaresnapdragon_x72_5g_modem-rfqam8295pwcd9341qca6574auwcd9390sa8620p_firmwarewsa8810_firmwarewsa8845h_firmwaresa9000p_firmwaresrv1hsm8650q_firmwarewcn3660b_firmwareqcs9100qcs5430wcn7860qcm5430qcm5430_firmwarevideo_collaboration_vc1_platform_firmwaresa4155psa8770pqcm6125_firmwareqcc710snapdragon_x32_5g_modem-rf_firmwarefastconnect_6900snapdragon_w5\+_gen_1_wearable_firmwarevideo_collaboration_vc1_platformqep8111sm8635sa7255pqfw7114wcd9385_firmwareqam8255p_firmwaresnapdragon_680_4g_mobilewsa8845sa6155pqcm6125qca6564au_firmwarewsa8810qam8650pvideo_collaboration_vc5_platform_firmwaresa9000psrv1h_firmwareqca6595ausxr2250p_firmwaresnapdragon_662_mobile_firmwaresnapdragon_685_4g_mobile_firmwaresa6155p_firmwarewsa8840snapdragon_ar1_gen_1srv1m_firmwaresnapdragon_x35_5g_modem-rf_firmwareqcs8550_firmwareqca6698ausnapdragon_8_gen_2_mobile_firmwareqfw7124_firmwaresm8750pqcn9012snapdragon_695_5g_mobile_firmwarewcn3910_firmwaresm8635psnapdragon_460_mobilesnapdragon_8_gen_2_mobileqmp1000wcn3910wcd9370_firmwareqca9367wcn3660bsnapdragon_x72_5g_modem-rf_firmwaresm7635p_firmwareqca6574asa7255p_firmwaresnapdragon_8\+_gen_2_mobileqca6174asa8195pwcd9340qcs8250_firmwareqcm2290snapdragon_auto_5g_modem-rf_gen_2qcm6490sm8550p_firmwaresxr2250pqcm8550wcn3988snapdragon_662_mobileqcn9274sa8775pqca6574sxr2230p_firmwareqca6698au_firmwareqcn9011sa8775p_firmwareqamsrv1hwsa8845hsm8650qqcm2290_firmwaresa8155p_firmwareqca6564asa8155pwsa8830sm8550psm7675_firmwaresa8255p_firmwarear8035sm7635_firmwareqamsrv1m_firmwarewcn7750_firmwaresa8650p_firmwaresm7635pwcn6450_firmwareqcm4325srv1l_firmwareqcs9100_firmwareqcn6224qcs615qca6698aqwcn3950_firmwaresa7775p_firmwaresm7635qrb5165nsnapdragon_480\+_5g_mobilefastconnect_6200wcn3680bwcd9378snapdragon_480_5g_mobile_firmwaresm8635p_firmwaresm6650p_firmwarefastconnect_6700_firmwarevideo_collaboration_vc3_platform_firmwarewcn3990snapdragon_x75_5g_modem-rf_firmwaresnapdragon_8_gen_3_mobileqcs6490snapdragon_695_5g_mobileqcs8250fastconnect_6200_firmwarewsa8830_firmwaresnapdragon_460_mobile_firmwareqcn6224_firmwareqca6678aq_firmwarewsa8845_firmwarewsa8832wcd9378_firmwaresnapdragon_480_5g_mobilesrv1lsm7675psrv1mqca6678aqsnapdragon_x35_5g_modem-rfar8035_firmwarewcn7860_firmwaresa4150p_firmwareqca6564auqcs6125_firmwaresm4635wsa8815_firmwaresa8195p_firmwareqca8337_firmwaresg8275p_firmwareqca9377_firmwareqcm6490_firmwaresm4635_firmwarevision_intelligence_400_firmwarewcn3950qcs6125flight_rb5_5gsm8750snapdragon_auto_5g_modem-rf_gen_2_firmwareqca6797aq_firmwaresa8295p_firmwaresa4155p_firmwareqca6584auqcn6274_firmwarewcn6755_firmwareqcn9011_firmwaresw5100_firmwarewcn6650_firmwaresnapdragon_8_gen_3_mobile_firmwareqfw7114_firmwareqcs7230qca6595_firmwarefastconnect_7800_firmwaresm8635_firmwarefastconnect_6900_firmwarerobotics_rb5_firmwarewcd9380qam8255psxr2230pqmp1000_firmwarewcn7880sxr2330pwcn6755wcn7881sm6650sw5100video_collaboration_vc3_platformsnapdragon_4_gen_1_mobile_firmwaresm6650pqca6688aqqam8295p_firmwarewcn3990_firmwareqca6698aq_firmwareqcs2290qca6564a_firmwarewcd9385qcs2290_firmwaresnapdragon_8_gen_1_mobileqca9367_firmwaresnapdragon_680_4g_mobile_firmwaresa8255pqcs7230_firmwarewcd9390_firmwareqep8111_firmwareqcs615_firmwaresg8275psm8750_firmwareflight_rb5_5g_firmwaresnapdragon_480\+_5g_mobile_firmwareqamsrv1mrobotics_rb5qca6174a_firmwarewcn7861_firmwarewcn7861qam8650p_firmwarevideo_collaboration_vc5_platformqcs6490_firmwaresm6650_firmwarewcd9335_firmwareqam8620pqrb5165n_firmwarewcn3980_firmwareqca6584au_firmwareqcn6274wsa8835wsa8840_firmwareqca6391_firmwareqfw7124qca6595au_firmwareqcs8300_firmwaresw5100p_firmwareqca6696_firmwareqcs8300wcd9380_firmwareqca6574_firmwarewsa8815qca8081sg4150pmdm9628qam8775pqca9377qca6797aqmdm9628_firmwaresnapdragon_x75_5g_modem-rfqcm4325_firmwaresa8620psnapdragon_4_gen_1_mobileqca6574a_firmwarewcd9375_firmwaresa7775pqca6391snapdragon_ar1_gen_1_firmwareqcn9274_firmwareqcn9012_firmwareqcs5430_firmwaresnapdragon_x32_5g_modem-rfsg4150p_firmwaresa8770p_firmwaresa8295pqcs8550sm8735_firmwarefastconnect_7800sa8650pqam8775p_firmwaresm8750p_firmwarewcd9375snapdragon_8\+_gen_2_mobile_firmwareqca6688aq_firmwarewcn3988_firmwareqamsrv1h_firmwaresm7675vision_intelligence_400wsa8835_firmwarewcn3980sm7675p_firmwarewcn3680b_firmwaresnapdragon_w5\+_gen_1_wearablesnapdragon_8_gen_1_mobile_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-27051
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 4.36%
||
7 Day CHG~0.00%
Published-08 Jul, 2025 | 12:49
Updated-21 Jul, 2025 | 18:59
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Double Free in Windows WLAN Host

Memory corruption while processing command message in WLAN Host.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800wcd9385_firmwarewsa8840_firmwarewsa8845hwsa8845_firmwareqcc2076sc8380xpwsa8845qcc2073_firmwarewsa8840wcd9380_firmwarefastconnect_7800_firmwareqcc2076_firmwarefastconnect_6900wcd9385fastconnect_6900_firmwarewcd9380sc8380xp_firmwarewsa8845h_firmwareqcc2073Snapdragon
CWE ID-CWE-415
Double Free
CVE-2025-27074
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.8||HIGH
EPSS-0.02% / 3.78%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Incorrect Calculation of Buffer Size in SCE-Mink

Memory corruption while processing a GP command response.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-mdm9650msm8996auipq8076a_firmwareqcn9001ipq5010pmp8074snapdragon_821_mobile_platform_firmwareqcn5064_firmwareqca6320_firmwareipq8078a_firmwareipq8078aqcn9022_firmwareqcn9070_firmwareqcn9012ipq5028_firmwaresd821_firmwareqca8075qcn6024_firmwareqcn9074_firmwaresnapdragon_429_mobile_platformqca8075_firmwareipq8074_firmwareqcn5052_firmwarewcn3660bipq9008qca8081_firmwareqcn9003qca8081qca6574qcn6112_firmwarepmp8074_firmwareqcn5054ipq8072a_firmwarecsr8811immersive_home_318_platform_firmwareqcn5550ipq8070aqca6564aqcn9001_firmwareqcn5164qcn9002ipq8076qcn9072_firmwareqcn9100_firmwareqcn9070snapdragon_820_mobile_platform_firmwareqcn5154_firmwareqcn5164_firmwaresd820apq8064au_firmwareqca6438qcn6023qca4024_firmwareqca6584au_firmwareqca6234_firmwareqcn6023_firmwareimmersive_home_214_platformsnapdragon_wear_4100\+_platformsnapdragon_wear_4100\+_platform_firmwareipq8173_firmwaresnapdragon_429_mobile_platform_firmwareqca6310_firmwareipq8174_firmwareqcn9012_firmwareqcn5154qcn5124immersive_home_316_platformqcn6024ipq9574apq8064aumsm8996au_firmwaremdm9650_firmwareipq8173qca9984_firmwareqca6574a_firmwareqcn5152_firmwareqcn5152qcn6100_firmwareqcn6100ipq8070_firmwarecsr8811_firmwareqca4024wsa8810_firmwarewcn3620_firmwareipq8071a_firmwareqcn5054_firmwareqcn5550_firmwareqca6174a_firmwareqcn6102qcn9000_firmwarewcn3620wcn3980_firmwareqcn5024_firmwarewcn3610_firmwareqca6438_firmwareqca9984wcn3680b_firmwareqcn6132snapdragon_820_automotive_platformipq8071aqcn6112ipq8174wsa8810ipq8072sdm429w_firmwareqca6310qca6574au_firmwareqcn9024ipq8070a_firmwarewcn3680bqcn9022wcd9335_firmwaresd820_firmwareipq8078qca6174aqca9889ipq8074aqca9888immersive_home_216_platformqcn9074qcn6132_firmwarewcn3980qca6428sdx55immersive_home_216_platform_firmwareimmersive_home_318_platformqca6564a_firmwareqcn9072qcn5122sdm429wwcn3660b_firmwareqca8072qca6574ausdx55_firmwareipq5010_firmwareipq8074a_firmwareipq8078_firmwaresnapdragon_820_mobile_platformqcn9003_firmwareqcn9024_firmwareipq8076aqcn6102_firmwareqca6428_firmwareqcn9000ipq8070qcn9274snapdragon_821_mobile_platformqca9889_firmwareipq8071immersive_home_316_platform_firmwarewcn3610qca6694ipq8072asd821ipq8072_firmwareqca9888_firmwareqcn5022qcn9100qca6564au_firmwarewsa8815ipq8074qcn5022_firmwareqca6320wsa8815_firmwaremdm9640ipq9008_firmwareqcn5052qca6694_firmwareipq8076_firmwaresnapdragon_820_automotive_platform_firmwareqca6574aqcn9274_firmwaremdm9640_firmwareimmersive_home_214_platform_firmwarewcd9335qcn5124_firmwareqcn6122ipq5028qca6234ipq9574_firmwareqca6564auqcn5122_firmwareqcn6122_firmwareqca6574_firmwareqcn5064qcn9002_firmwareqca8072_firmwareipq8071_firmwareqca6584auqcn5024Snapdragon
CWE ID-CWE-131
Incorrect Calculation of Buffer Size
  • Previous
  • 1
  • 2
  • ...
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • Next
Details not found