Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2025-47375

Summary
Assigner-qualcomm
Assigner Org ID-2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
Published At-02 Mar, 2026 | 16:53
Updated At-03 Mar, 2026 | 04:56
Rejected At-
Credits

Use After Free in Automotive Audio

Memory corruption while handling different IOCTL calls from the user-space simultaneously.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
â–¼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:qualcomm
Assigner Org ID:2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
Published At:02 Mar, 2026 | 16:53
Updated At:03 Mar, 2026 | 04:56
Rejected At:
â–¼CVE Numbering Authority (CNA)
Use After Free in Automotive Audio

Memory corruption while handling different IOCTL calls from the user-space simultaneously.

Affected Products
Vendor
Qualcomm Technologies, Inc.Qualcomm, Inc.
Product
Snapdragon
Platforms
  • Snapdragon Auto
  • Snapdragon Compute
  • Snapdragon Consumer IOT
  • Snapdragon Industrial IOT
  • Snapdragon Mobile
  • Snapdragon Voice & Music
  • Snapdragon WBC
  • Snapdragon Wearables
Default Status
unaffected
Versions
Affected
  • AR8031
  • AR8035
  • CSRA6620
  • CSRA6640
  • FastConnect 6200
  • FastConnect 6700
  • FastConnect 6800
  • FastConnect 6900
  • FastConnect 7800
  • Flight RB5 5G Platform
  • FWA Gen 3 Ultra Platform
  • G1 Gen 1
  • LeMans_AU_LGIT
  • LeMansAU
  • MDM9250
  • MDM9628
  • Milos
  • QAM8255P
  • QAM8295P
  • QAMSRV1H
  • QAMSRV1M
  • QCA2066
  • QCA6174A
  • QCA6391
  • QCA6564A
  • QCA6564AU
  • QCA6574
  • QCA6574A
  • QCA6574AU
  • QCA6584AU
  • QCA6595
  • QCA6595AU
  • QCA6678AQ
  • QCA6688AQ
  • QCA6696
  • QCA6698AQ
  • QCA6698AU
  • QCA6797AQ
  • QCA8081
  • QCA8337
  • QCA8695AU
  • QCA9367
  • QCA9377
  • QCC710
  • QCM2290
  • QCM4325
  • QCM5430
  • QCM6125
  • QCM6490
  • QCN6224
  • QCN6274
  • QCN9011
  • QCN9012
  • QCS2290
  • QCS4290
  • QEP8111
  • QFW7114
  • QFW7124
  • QRB5165M
  • QRB5165N
  • Qualcomm 215 Mobile Platform
  • Qualcomm Video Collaboration VC1 Platform
  • Qualcomm Video Collaboration VC3 Platform
  • Qualcomm Video Collaboration VC5 Platform
  • Robotics RB2 Platform
  • Robotics RB5 Platform
  • SA4150P
  • SA4155P
  • SA6145P
  • SA6150P
  • SA6155P
  • SA7255P
  • SA7775P
  • SA8145P
  • SA8150P
  • SA8155P
  • SA8195P
  • SA8255P
  • SA8295P
  • SA8620P
  • SA8770P
  • SA9000P
  • SD662
  • SD865 5G
  • SDA660
  • SM6225P
  • SM6650P
  • SM7325P
  • SM7550
  • SM7550P
  • SM7635P
  • SM7675
  • SM7675P
  • SM8550P
  • SM8635
  • SM8635P
  • SM8650Q
  • Smart Audio 400 Platform
  • Snapdragon 4 Gen 1 Mobile Platform
  • Snapdragon 460 Mobile Platform
  • Snapdragon 480 5G Mobile Platform
  • Snapdragon 480+ 5G Mobile Platform
  • Snapdragon 6 Gen 4 Mobile Platform
  • Snapdragon 660 Mobile Platform
  • Snapdragon 662 Mobile Platform
  • Snapdragon 680 4G Mobile Platform
  • Snapdragon 685 4G Mobile Platform
  • Snapdragon 690 5G Mobile Platform
  • Snapdragon 695 5G Mobile Platform
  • Snapdragon 778G 5G Mobile Platform
  • Snapdragon 778G+ 5G Mobile Platform
  • Snapdragon 782G Mobile Platform
  • Snapdragon 7c+ Gen 3 Compute
  • Snapdragon 7s Gen 3 Mobile Platform
  • Snapdragon 8 Gen 2 Mobile Platform
  • Snapdragon 8 Gen 3 Mobile Platform
  • Snapdragon 8+ Gen 2 Mobile Platform
  • Snapdragon 865 5G Mobile Platform
  • Snapdragon 865+ 5G Mobile Platform
  • Snapdragon 870 5G Mobile Platform
  • Snapdragon 888 5G Mobile Platform
  • Snapdragon 888+ 5G Mobile Platform
  • Snapdragon Auto 5G Modem-RF
  • Snapdragon Auto 5G Modem-RF Gen 2
  • Snapdragon W5+ Gen 1 Wearable Platform
  • Snapdragon X12 LTE Modem
  • Snapdragon X32 5G Modem-RF System
  • Snapdragon X35 5G Modem-RF System
  • Snapdragon X53 5G Modem-RF System
  • Snapdragon X55 5G Modem-RF System
  • Snapdragon X72 5G Modem-RF System
  • Snapdragon X75 5G Modem-RF System
  • Snapdragon XR2 5G Platform
  • Snapdragon XR2+ Gen 1 Platform
  • SRV1H
  • SRV1M
  • SW5100
  • SW5100P
  • WCD9326
  • WCD9335
  • WCD9340
  • WCD9341
  • WCD9370
  • WCD9371
  • WCD9375
  • WCD9378
  • WCD9380
  • WCD9385
  • WCD9390
  • WCD9395
  • WCN3615
  • WCN3660B
  • WCN3680B
  • WCN3910
  • WCN3950
  • WCN3980
  • WCN3988
  • WCN3990
  • WCN6450
  • WCN6650
  • WCN6755
  • WSA8810
  • WSA8815
  • WSA8830
  • WSA8832
  • WSA8835
  • WSA8840
  • WSA8845
  • WSA8845H
Problem Types
TypeCWE IDDescription
CWECWE-416CWE-416 Use After Free
Type: CWE
CWE ID: CWE-416
Description: CWE-416 Use After Free
Metrics
VersionBase scoreBase severityVector
3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html
N/A
Hyperlink: https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html
Resource: N/A
â–¼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
â–¼National Vulnerability Database (NVD)
nvd.nist.gov
Source:product-security@qualcomm.com
Published At:02 Mar, 2026 | 17:16
Updated At:02 Mar, 2026 | 20:29

Memory corruption while handling different IOCTL calls from the user-space simultaneously.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-416Primaryproduct-security@qualcomm.com
CWE ID: CWE-416
Type: Primary
Source: product-security@qualcomm.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.htmlproduct-security@qualcomm.com
N/A
Hyperlink: https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html
Source: product-security@qualcomm.com
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

2315Records found
CVE-2019-10584
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.95%
||
7 Day CHG~0.00%
Published-18 Dec, 2019 | 05:25
Updated-04 Aug, 2024 | 22:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possibility of out of bound access in debug queue, if packet size field is corrupted in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCN7605, QCS405, QCS605, QM215, SA6155P, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-mdm9640_firmwaresdm632_firmwaremsm8996au_firmwaresdm845sdm450_firmwaresdm632sdx24sdm439mdm9650sdm429msm8940_firmwaresm7150_firmwaresm6150msm8909w_firmwaremsm8996ausm7150apq8009_firmwaremsm8917sdm670sxr2130qcs605_firmwaremdm9206sdm670_firmwaresdx24_firmwaresdm636sda845_firmwareapq8098qcn7605mdm9206_firmwareqcs605msm8937_firmwaremdm9650_firmwaresdm429_firmwaresda660sdx55_firmwaresxr1130_firmwaresxr1130msm8909wapq8009apq8053_firmwaresda845nicobarsa6155p_firmwaremsm8920msm8953sdm450sdm636_firmwaresdm845_firmwareapq8098_firmwaresdx20msm8998_firmwaresdm660msm8920_firmwaresdm630mdm9607_firmwaresm8250_firmwareqcs405sdm710qm215mdm9607apq8017_firmwaresdm710_firmwareqcn7605_firmwaresa6155pmsm8937mdm9207c_firmwaremdm9207csm8150_firmwaresxr2130_firmwareapq8096ausdm439_firmwareqcs405_firmwaresdm630_firmwaresda660_firmwareqm215_firmwaresdx55msm8953_firmwaremsm8940sm6150_firmwareapq8053apq8096au_firmwaremsm8917_firmwaresm8250msm8998sm8150sdx20_firmwareapq8017nicobar_firmwaresdm660_firmwaremdm9640Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-125
Out-of-bounds Read
CVE-2019-10544
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.95%
||
7 Day CHG~0.00%
Published-18 Dec, 2019 | 05:25
Updated-04 Aug, 2024 | 22:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper length check on source buffer to handle userspace data received can lead to out-of-bound access in diag handlers in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996AU, MSM8998, QCN7605, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-mdm9640_firmwaresdm632_firmwaremsm8996au_firmwaresdm845sdm450_firmwaresdm632sdx24sdm439mdm9650sdm429msm8940_firmwaresm7150_firmwaresm6150msm8909w_firmwaremsm8996ausm7150apq8009_firmwaremsm8917sdm670sxr2130qcs605_firmwaremdm9206sdm670_firmwaresdx24_firmwaresdm636sda845_firmwareapq8098qcn7605mdm9206_firmwaremsm8939qcs605msm8937_firmwaremdm9650_firmwaresdm429_firmwaremsm8905_firmwaresda660sdx55_firmwaresxr1130_firmwaresxr1130msm8909wapq8009msm8909_firmwareapq8053_firmwaresda845msm8920msm8953sdm450sdm636_firmwaresdm845_firmwareapq8098_firmwaresdx20msm8998_firmwaresdm660msm8920_firmwaresdm630mdm9607_firmwaresm8250_firmwareqcs405sdm710qm215mdm9607apq8017_firmwaresdm710_firmwaremsm8939_firmwareqcn7605_firmwaremsm8937mdm9207c_firmwaremsm8905mdm9207csm8150_firmwaremsm8909sxr2130_firmwareapq8096ausdm439_firmwareqcs405_firmwaresdm630_firmwaresda660_firmwareqm215_firmwaresdx55msm8953_firmwaremsm8940sm6150_firmwareapq8053apq8096au_firmwaremsm8917_firmwaresm8250msm8998sm8150sdx20_firmwareapq8017sdm660_firmwaremdm9640Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2019-10502
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 16.80%
||
7 Day CHG~0.00%
Published-06 Nov, 2019 | 17:11
Updated-04 Aug, 2024 | 22:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possible stack overflow when an index equal to io buffer size is accessed in camera module in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 845 / SD 850, SD 855, SDM439, SDX24

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_712sd_850sd_632sd_855sd_730_firmwarequalcomm_215sd_675sd_439sd_670_firmwaresd_425sd_429sdx24sdm439sd_710_firmwareqcs405sd_625msm8909w_firmwaresd_210sd_450_firmwaresd_845_firmwaresd_439_firmwarequalcomm_215_firmwaresd_429_firmwareqcs605_firmwaresd_675_firmwaresd_425_firmwaresd_730sd_212_firmwaresd_665sd_850_firmwaresdx24_firmwaresd_625_firmwaresd_450sdm439_firmwareqcs405_firmwaresd_712_firmwaresd_845qcs605sd_670sd_632_firmwaresd_710sd_205sd_210_firmwaremsm8909wsd_665_firmwaresd_205_firmwaresd_212sd_855_firmwareSnapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2019-10530
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 13.57%
||
7 Day CHG~0.00%
Published-12 Dec, 2019 | 08:30
Updated-04 Aug, 2024 | 22:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Lack of check of data truncation on user supplied data in kernel leads to buffer overflow in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_850mdm9150_firmwaresd_632mdm9640_firmwaresd_820asd_675msm8996au_firmwaresd_439sd_670_firmwaresd_429sdx24sdm439mdm9650sd_636msm8909w_firmwaremsm8996ausd_450_firmwaresd_845_firmwaresd_820a_firmwareqcs605_firmwaresd_675_firmwaremdm9206sd_425_firmwaresd_665sdx24_firmwaresd_625_firmwaresd_450sd_845mdm9206_firmwareqcs605mdm9640sd_632_firmwaresd_835_firmwaremdm9650_firmwaresd_835sda660sd_210_firmwaremsm8909wsd_665_firmwaresd_205_firmwaresd_212sd_712sd_855sd_730_firmwaresdx20sd_425sdm660sdm630mdm9607_firmwaresd_710_firmwareqcs405sd_625sd_210mdm9607sd_636_firmwaresd_439_firmwaremdm9150sd_429_firmwaresd_730sd_212_firmwaresd_850_firmwaresdm439_firmwareqcs405_firmwaresd_712_firmwaresdm630_firmwaresda660_firmwaresd_670sd_710sdx20_firmwaresd_205sdm660_firmwaresd_855_firmwareSnapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2019-10592
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.95%
||
7 Day CHG~0.00%
Published-12 Dec, 2019 | 08:30
Updated-04 Aug, 2024 | 22:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Possible integer overflow while multiplying two integers of 32 bit in QDCM API of get display modes as there is no check on the maximum mode count in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sdm632_firmwaremsm8996au_firmwaresdm845sdm450_firmwaresdm632sdm439sdm429msm8940_firmwaresm7150_firmwaresm6150msm8909w_firmwaremsm8996ausm7150msm8917sdm670sxr2130qcs605_firmwaremdm9206sdm670_firmwaresdm636sda845_firmwareapq8098mdm9206_firmwareqcs605msm8937_firmwaresdm429_firmwaresda660sxr1130_firmwaresxr1130msm8909wmsm8909_firmwareapq8053_firmwaresda845nicobarmsm8920msm8953sdm450sdm636_firmwareapq8098_firmwaresdx20msm8998_firmwaresdm660msm8920_firmwaresdm630mdm9607_firmwaresm8250_firmwareqcs405sdm710qm215mdm9607apq8017_firmwaresdm710_firmwaremsm8937mdm9207c_firmwaremdm9207csm8150_firmwaremsm8909sxr2130_firmwareapq8096ausdm439_firmwareqcs405_firmwaresdm630_firmwaresda660_firmwareqm215_firmwaremsm8953_firmwaremsm8940sm6150_firmwareapq8053apq8096au_firmwaremsm8917_firmwaresm8250msm8998sm8150sdx20_firmwareapq8017nicobar_firmwaresdm660_firmwaresdm845_firmwareSnapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2019-10506
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.71%
||
7 Day CHG~0.00%
Published-30 Sep, 2019 | 15:40
Updated-04 Aug, 2024 | 22:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

While processing QCA_NL80211_VENDOR_SUBCMD_AVOID_FREQUENCY vendor command, driver does not validate the data obtained from the user space which could be invalid and thus leads to an undesired behaviour in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCS605, SD 600, SD 625, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM630, SDM660, SDX24

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_712qca9377_firmwaresd_850sd_855sd_730_firmwaresd_820asd_675msm8996au_firmwaresd_670_firmwaresdm660sdx24sdm630mdm9607_firmwaresd_710_firmwaresd_636sd_625qca6574ausd_820_firmwaremdm9607msm8996ausd_636_firmwaresd_820sd_845_firmwaresd_820a_firmwareqcs605_firmwaresd_675_firmwaremdm9206qca6174a_firmwareqca6174aqca9379_firmwaresd_665sd_730sd_850_firmwaresd_625_firmwaresdx24_firmwareqca9377sd_712_firmwaresdm630_firmwaresd_845mdm9206_firmwareqcs605sd_670sd_835_firmwaresd_710sd_600_firmwaresd_835qca6574au_firmwaresd_600qca9379sd_665_firmwaresdm660_firmwaresd_855_firmwareSnapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
CWE ID-CWE-20
Improper Input Validation
CVE-2024-49845
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.91%
||
7 Day CHG+0.04%
Published-06 May, 2025 | 08:32
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Input Validation in HLOS

Memory corruption during the FRS UDS generation process.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qdx1011_firmwarewcd9340_firmwaresa8775psnapdragon_765_5g_mobileqca6678aqwcd9385_firmwarewcn3988_firmwaresnapdragon_x35_5g_modem-rf_firmwareqca6431_firmwareqca6678aq_firmwareqam8295p_firmwareqca6698aq_firmwaresa8775p_firmwaresnapdragon_ar1_gen_1qfw7114_firmwarewsa8832_firmwareqcs615_firmwaresd_8_gen1_5g_firmwareqdx1010wcd9385snapdragon_x55_5g_modem-rf_firmwarewcd9340qsm8350qca6797aqqcs8550_firmwarefastconnect_6900snapdragon_865\+_5g_mobile_firmwaresm6650pqcn9274fastconnect_6200_firmwareqca6574_firmwareqfw7124_firmwareqca6595ausm7250p_firmwaresa8150pqca8337_firmwarewsa8835snapdragon_888\+_5g_mobile_firmwarear8035_firmwaresc8380xp_firmwaresa9000p_firmwarewcd9390sa8195psa6150pwcd9390_firmwarewcd9395snapdragon_x55_5g_modem-rfqcs5430_firmwaresm8650qsd865_5gqca6421_firmwareqca6688aqqca6574asnapdragon_x65_5g_modem-rfsnapdragon_x72_5g_modem-rfwsa8810_firmwaresxr2330pqru1062_firmwareqru1052_firmwareqdu1110_firmwarewsa8815fastconnect_6200qca6436_firmwaresm8650q_firmwaresa6155psa8155psa7255psa8650p_firmwareqcc710qca6797aq_firmwareqca6391_firmwarefastconnect_7800qcn6224wcn7881_firmwareqca6696_firmwaresnapdragon_888\+_5g_mobilesnapdragon_765_5g_mobile_firmwaresa9000psxr2330p_firmwarewsa8845hsrv1lqdx1011sa8540p_firmwaresrv1h_firmwaresnapdragon_888_5g_mobile_firmwareqca6174asm4635_firmwareqcn6274snapdragon_x62_5g_modem-rf_firmwaresm8750psa8530psm7675qca8081wsa8840_firmwarewsa8845qru1032qca6688aq_firmwaresm4635qam8620pqru1052sa8255p_firmwareqca6431snapdragon_8_gen_1_mobilesa8145p_firmwarewcd9380_firmwaresm8635p_firmwareqamsrv1hsa8650pqam8650pqdu1000wcd9370qca6574ausa6145psnapdragon_8_gen_1_mobile_firmwarewsa8815_firmwaresnapdragon_768g_5g_mobilewcn3950_firmwareqca8081_firmwareqcm5430_firmwaresa8620psnapdragon_8_gen_3_mobile_firmwareqmp1000qca6426_firmwaresa8150p_firmwaresrv1hwcn3950wcd9395_firmwareqdu1210_firmwaresm8635wcn7860_firmwaresnapdragon_x75_5g_modem-rfwcd9380qcs8550sa8770psm8635_firmwarewcn6650qdu1010_firmwaresnapdragon_auto_5g_modem-rf_gen_2qam8620p_firmwarewsa8840fastconnect_7800_firmwaresc8380xpsnapdragon_x35_5g_modem-rfqcs5430sm8635pqca6426qdu1110wsa8835_firmwaresm8735qru1032_firmwareqam8255p_firmwareqca6696snapdragon_765g_5g_mobilesc8280xp-abbb_firmwaresa6150p_firmwarewcn6755qcn6224_firmwaresd_8_gen1_5gqcs8300_firmwareqcs8300sa8295psm7675p_firmwareqep8111qca6174a_firmwareqdu1210qca8337fastconnect_6800_firmwaresm7250pwcd9378snapdragon_xr2_5gwcn6450sm7675_firmwarewcn6650_firmwareqca6698aqsm7675psnapdragon_888_5g_mobilewcn7860sxr2130_firmwarewsa8810sd865_5g_firmwaresnapdragon_768g_5g_mobile_firmwareqmp1000_firmwaresnapdragon_x32_5g_modem-rfsa7775pqam8775pqca6574a_firmwareqfw7124qca6595au_firmwarewcn7750_firmwareqcs9100sa8530p_firmwaresa8540psa8295p_firmwaresnapdragon_x65_5g_modem-rf_firmwareqca6574snapdragon_auto_5g_modem-rf_gen_2_firmwaresxr2130sm8750_firmwareqamsrv1h_firmwarefastconnect_6800qdu1010sa7255p_firmwarefastconnect_6700_firmwaresm8750p_firmwareqcm5430sm7635sm6650p_firmwareqcs9100_firmwaresnapdragon_x32_5g_modem-rf_firmwareqamsrv1mqca6436snapdragon_8_gen_3_mobilesnapdragon_765g_5g_mobile_firmwareqcn6274_firmwareqca6421qcm6490qcc710_firmwaresm8750sm6650_firmwaresrv1m_firmwarewcn7880qam8295psa8770p_firmwaresnapdragon_865\+_5g_mobileqcm6490_firmwaresc8280xp-abbbwcn7750wsa8845_firmwareqcm8550snapdragon_x72_5g_modem-rf_firmwarewcn7880_firmwareqca6391qca6595sa8620p_firmwarewsa8845h_firmwaresnapdragon_865_5g_mobile_firmwaresa6155p_firmwarewcn6450_firmwarewcn7861qam8775p_firmwareqca6584au_firmwareqca6584auqcs6490_firmwaresa8195p_firmwareqca6574au_firmwarewcd9370_firmwaresa8155p_firmwareqfw7114sm6650qam8255psnapdragon_870_5g_mobile_firmwaresm8735_firmwarewsa8832wcn6755_firmwareqep8111_firmwaresrv1mwcd9375qru1062sa7775p_firmwarear8035snapdragon_xr2_5g_firmwareqcs615wsa8830video_collaboration_vc3_platformqcm8550_firmwaresnapdragon_ar1_gen_1_firmwarewcd9375_firmwaresnapdragon_865_5g_mobilesrv1l_firmwarewcn7861_firmwaresa8255pfastconnect_6700video_collaboration_vc3_platform_firmwareqca6595_firmwarewcn7881qsm8350_firmwaresnapdragon_x75_5g_modem-rf_firmwaresnapdragon_x62_5g_modem-rfqdu1000_firmwareqcs6490snapdragon_870_5g_mobilewcn3988wsa8830_firmwareqam8650p_firmwaresm7635_firmwaresa8145pfastconnect_6900_firmwarewcd9378_firmwareqcn9274_firmwareqamsrv1m_firmwaresa6145p_firmwareqdx1010_firmwareSnapdragon
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2024-49836
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 9.88%
||
7 Day CHG~0.00%
Published-03 Mar, 2025 | 10:07
Updated-26 Feb, 2026 | 19:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Camera

Memory corruption may occur during the synchronization of the camera`s frame processing pipeline.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-Snapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2024-49840
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 6.02%
||
7 Day CHG~0.00%
Published-03 Feb, 2025 | 16:51
Updated-05 Feb, 2025 | 16:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use of Out-of-range Pointer Offset in WLAN Windows Host

Memory corruption while Invoking IOCTL calls from user-space to validate FIPS encryption or decryption functionality.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwarewsa8840qcc2076fastconnect_6900wcd9380sc8380xp_firmwarewsa8845h_firmwareqcc2073wcd9385_firmwarewsa8845hwsa8845fastconnect_7800wcd9380_firmwareqcc2076_firmwarefastconnect_6900_firmwareqcc2073_firmwaresc8380xpwcd9385wsa8840_firmwarewsa8845_firmwareSnapdragon
CWE ID-CWE-823
Use of Out-of-range Pointer Offset
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2025-21440
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.91%
||
7 Day CHG~0.00%
Published-07 Apr, 2025 | 10:16
Updated-26 Feb, 2026 | 18:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Read in Windows WLAN Host

Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-aqt1000qcs5430wsa8810_firmwareqcm5430_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)snapdragon_8cx_compute_platform_\(sc8180xp-ac\)_firmwaresnapdragon_8c_compute_platform_\(sc8180x-ad\)fastconnect_6700wsa8845snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmwarewsa8845h_firmwaresnapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwarewsa8840fastconnect_7800qca6391sc8180x\+sdx55_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmwareqca1064_firmwarefastconnect_6800sm6250_firmwareqcc2073_firmwareqca1062qca2062wcd9385snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)_firmwarewcd9385_firmwareqcm6490_firmwarevideo_collaboration_vc3_platform_firmwaresm6250wsa8840_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)_firmwareqcs6490wcd9370_firmwareqca6430snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)snapdragon_8cx_compute_platform_\(sc8180x-aa\)wcd9370wsa8815wsa8845hsnapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"sc8380xp_firmwarefastconnect_6700_firmwaresnapdragon_8cx_compute_platform_\(sc8180xp-af\)_firmwarewcd9341wsa8810qca2064_firmwareaqt1000_firmwareqcm5430wcd9380snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmwarefastconnect_6800_firmwarewsa8815_firmwarefastconnect_6900_firmwarewsa8845_firmwareqca6391_firmwareqca6430_firmwareqcc2073wcd9375snapdragon_7c\+_gen_3_compute_firmwarewcd9340qca1064snapdragon_8cx_compute_platform_\(sc8180xp-af\)qcs5430_firmwarevideo_collaboration_vc3_platformqca2066fastconnect_7800_firmwareqca6420qca2065wcd9340_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmwareqcc2076_firmwareqca2064fastconnect_6900snapdragon_7c_compute_platform_\(sc7180-ac\)qca6420_firmwareqcm6490snapdragon_8cx_compute_platform_\(sc8180x-ab\)qca2066_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)snapdragon_8cx_compute_platform_\(sc8180xp-ac\)qca2062_firmwarewcd9341_firmwaresc8380xpsnapdragon_7c\+_gen_3_computesnapdragon_7c_compute_platform_\(sc7180-ac\)_firmwareqcc2076snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmwareqca2065_firmwareqcs6490_firmwaresc8180x\+sdx55snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)snapdragon_8c_compute_platform_\(sc8180xp-ad\)wcd9380_firmwarefastconnect_6200_firmwarefastconnect_6200qca1062_firmwarewcd9375_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47363
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.8||MEDIUM
EPSS-0.01% / 0.21%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer Overflow or Wraparound in Automotive

Memory corruption when calculating oversized partition sizes without proper checks.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa6155pqca6797aq_firmwaresa8770p_firmwaresa7775p_firmwaresa8650pqamsrv1msa8620pqca6696_firmwaresa8255pqam8775pqca8695au_firmwaresa9000psa8540pqca6797aqsa6145pqam8775p_firmwaresa8145psa8255p_firmwaresa7775psa8295psa8150p_firmwaresa6145p_firmwareqca6698aqqca6595sa8195p_firmwaresrv1m_firmwareqamsrv1hsa8145p_firmwaresrv1lqca6595auqam8295p_firmwareqam8620psa8650p_firmwareqca6595_firmwareqam8650psa8775p_firmwaresrv1hqca6574auqam8650p_firmwareqam8295psa6155p_firmwaresa6150pqca6698aq_firmwaresa7255psa9000p_firmwareqam8620p_firmwaresa7255p_firmwareqam8255psa8150psrv1h_firmwaresa8775psa6150p_firmwareqca6574au_firmwaresa8155psa8620p_firmwareqca6595au_firmwareqca6688aq_firmwareqamsrv1m_firmwaresa8295p_firmwareqam8255p_firmwaresa8770pqca8695ausa8195pqamsrv1h_firmwareqca6696srv1l_firmwareqca6688aqsa8155p_firmwaresa8540p_firmwaresrv1mSnapdragon
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2025-47343
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-12 Jan, 2026 | 15:39
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in Video

Memory corruption while processing a video session to set video parameters.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8845wsa8845hcologne_firmwareqca0000wcd9378c_firmwarewcd9375_firmwaresc8380xp_firmwarewsa8840_firmwarewcd9380_firmwarexg101002sc8380xpxg101039_firmwarexg101039x2000077_firmwarewsa8845h_firmwarex2000086_firmwarex2000090fastconnect_6700_firmwarexg101002_firmwarex2000090_firmwarex2000086x2000092_firmwarewcd9378ccolognefastconnect_6900wcd9385_firmwarewsa8840wcd9375video_collaboration_vc3_platformwsa8845_firmwarefastconnect_6700qcm6490_firmwarefastconnect_7800wcd9370x2000094_firmwarevideo_collaboration_vc3_platform_firmwarewcd9385xg101032_firmwarefastconnect_6900_firmwareqcm6490qcm5430fastconnect_7800_firmwarex2000094wcd9370_firmwareqcm5430_firmwareqca0000_firmwarex2000092xg101032wcd9380x2000077Snapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CVE-2025-47323
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-28 Jan, 2026 | 17:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer Overflow or Wraparound in Audio

Memory corruption while routing GPR packets between user and root when handling large data packet.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6696_firmwaresm6650pqca8081_firmwaresnapdragon_8\+_gen_1_mobile_platform_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn3910snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmwarewcd9390snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmwaresnapdragon_888_5g_mobile_platformwcn7860_firmwarefastconnect_6900_firmwareqca6174a_firmwareqmp1000ssg2115pwcn3950snapdragon_480_5g_mobile_platform_firmwaresnapdragon_888_5g_mobile_platform_firmwaresnapdragon_x32_5g_modem-rf_system_firmwareqcn6224_firmwarewcn3980_firmwaresnapdragon_7c\+_gen_3_computeqfw7124wcd9378qca6678aqqcm5430snapdragon_8_gen_1_firmwaresnapdragon_778g_5g_mobile_platform_firmwaresnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)_firmwaresnapdragon_w5\+_gen_1_wearable_platformsm7325psnapdragon_680_4g_mobile_platform_firmwaresa4155p_firmwaresa7775psrv1msa6150psnapdragon_auto_5g_modem-rf_gen_2_firmwarewsa8845h_firmwaresnapdragon_7_gen_1_mobile_platform_firmwareqamsrv1mqca6564qca6584au_firmwareqca6595au_firmwareqca6688aq_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"qcm6490wcd9335_firmwarecsra6620_firmwarewcd9380_firmwarerobotics_rb2_platform_firmwaressg2115p_firmwaresg8275_firmwaresnapdragon_778g_5g_mobile_platformwcn6740snapdragon_680_4g_mobile_platformwcn6740_firmwaresa8650pqcm6490_firmwareqca6696snapdragon_480_5g_mobile_platformwsa8832_firmwaresnapdragon_x72_5g_modem-rf_system_firmwarerobotics_rb2_platformqcs4490_firmwareqca6564ausnapdragon_4_gen_1_mobile_platform_firmwaresnapdragon_685_4g_mobile_platform_\(sm6225-ad\)sm8750p_firmwaresnapdragon_x35_5g_modem-rf_systemfastconnect_6200_firmwaresnapdragon_8_gen_2_mobile_platformsxr1230psm7435qca8337snapdragon_x72_5g_modem-rf_systemsm7675qcn6024_firmwaresa8540p_firmwarear8035_firmwaresm8475p_firmwarewcd9340_firmwareqcn9011_firmwarewcn7861sg8275p_firmwaresa8770psm7675psm8750pqmp1000_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)fastconnect_7800_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"_firmwareqcm2290_firmwareqcs2290qcn9012qca6174asnapdragon_x75_5g_modem-rf_system_firmwarevideo_collaboration_vc3_platformsnapdragon_6_gen_1_mobile_platformsm7635ssg2125p_firmwarewcd9395_firmwaresnapdragon_8\+_gen_1_mobile_platformsm8550pqamsrv1hqam8620psnapdragon_8_gen_1snapdragon_460_mobile_platformsg8275pwcd9370sdx61_firmwareqamsrv1m_firmwarewcn3988wsa8815_firmwaresm7550pqam8295p_firmwaresa4150p_firmwareqfw7124_firmwareqcs2290_firmwareqam8650pwcd9371_firmwaresm8475psnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)wsa8845hqam8620p_firmwarewcn6650_firmwaresa6145p_firmwaressg2125psm7550snapdragon_7\+_gen_2_mobile_platformqca6595sm7635p_firmwareqcm4490wcd9385_firmwareqcn6224qep8111wcn6755_firmwarewcn6755sa9000psnapdragon_x35_5g_modem-rf_system_firmwareqcm8550wsa8815fastconnect_6700qca8081qca6797aqqcm2290fastconnect_6700_firmwaresa8195p_firmwaresnapdragon_8_gen_3_mobile_platform_firmwaresrv1h_firmwareqca6564_firmwarewcn7861_firmwaresm7550_firmwareqcn6274sdx61sw5100snapdragon_8_gen_1_mobile_platformqcc710snapdragon_8\+_gen_2_mobile_platform_firmwaresa8195psnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwaresa6150p_firmwareqcs8550sa8775p_firmwaresxr2250pvideo_collaboration_vc3_platform_firmwaresa4150psa6155_firmwarear8035sm8635snapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)_firmwaresm7635pwcn3950_firmwareqca6574wsa8840snapdragon_4_gen_1_mobile_platformsnapdragon_7\+_gen_2_mobile_platform_firmwaresm8750_firmwaresa8620p_firmwaresm7435_firmwareqca8337_firmwarewcn3988_firmwaresm4635_firmwaresm8650qsnapdragon_ar2_gen_1_platformsa8145pqam8650p_firmwareqca6797aq_firmwaresa8775pwsa8832wcd9340srv1lsa6155psa8150p_firmwaresc8380xpsm4635qcc710_firmwarewcd9385qcn9011sxr1230p_firmwarewsa8835_firmwarewsa8845sm8550p_firmwarewcn7750_firmwarewcd9378_firmwaresa8620psa9000p_firmwaresc8380xp_firmwaresnapdragon_x65_5g_modem-rf_systemcsra6620sa8295p_firmwaresg4150p_firmwaresnapdragon_x65_5g_modem-rf_system_firmwaresnapdragon_auto_5g_modem-rf_gen_2snapdragon_x70_modem-rf_system_firmwareqfw7114sm8735_firmwaresw5100p_firmwaresm6650snapdragon_662_mobile_platform_firmwaresnapdragon_4_gen_2_mobile_platformqca6574_firmwareqcm4490_firmwaresnapdragon_7_gen_1_mobile_platformsm8635p_firmwaresa8650p_firmwaresa6155sa4155psnapdragon_695_5g_mobile_platform_firmwareqcn9024snapdragon_x70_modem-rf_systemsnapdragon_ar1_gen_1_platform_firmwaresm7675p_firmwareqcm5430_firmwaresm7675_firmwaresdx71msnapdragon_ar2_gen_1_platform_firmwaresnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)snapdragon_7c\+_gen_3_compute_firmwarewcd9395csra6640sa7775p_firmwaresnapdragon_x75_5g_modem-rf_systemqcs6490snapdragon_8\+_gen_2_mobile_platformwcd9375_firmwareqam8295psm6475srv1m_firmwarewcd9390_firmwarefastconnect_7800sa8770p_firmwarewsa8810_firmwareqam8255p_firmwaresxr2250p_firmwarewcd9370_firmwarecsra6640_firmwareqca6574a_firmwaresnapdragon_695_5g_mobile_platformsnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwaresm6650_firmwaresxr2230pqam8775pwcd9335wcn7860qam8775p_firmwaresa8150pqfw7114_firmwareqcn6024wcd9380qca6698aqqca6391_firmwaresnapdragon_460_mobile_platform_firmwareqca6564au_firmwaresnapdragon_8_gen_3_mobile_platformfastconnect_6200sa8295psa6155p_firmwaresm7550p_firmwarewcn7880sa8255p_firmwaresnapdragon_8_gen_2_mobile_platform_firmwareqcs6490_firmwareqcn9012_firmwareqca6698aq_firmwarewsa8830_firmwaresa8145p_firmwarewsa8830sm7635_firmwarewcn7750snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)qcs8550_firmwaresnapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)snapdragon_ar1_gen_1_platformsa8155p_firmwareqamsrv1h_firmwaresa8255pwcn7881qca6574au_firmwareqep8111_firmwaresw5100_firmwaresa8540pwcn6650wcn7881_firmwareqca6595_firmwareqca6574auqcs4490qca6595ausrv1hsm8635_firmwaresg8275snapdragon_782g_mobile_platform_\(sm7325-af\)_firmwaresdx71m_firmwaresm8635psnapdragon_6_gen_1_mobile_platform_firmwareqcm8550_firmwaresnapdragon_782g_mobile_platform_\(sm7325-af\)sm6650p_firmwareqca6574asxr2230p_firmwaresnapdragon_x32_5g_modem-rf_systemsg4150pqcn6274_firmwarewsa8835qcn9024_firmwarewcn3980qca6678aq_firmwarewcd9375sa7255p_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcn3910_firmwaresm6475_firmwaresa7255pwsa8840_firmwareqam8255psnapdragon_662_mobile_platformsa6145psa8155wsa8845_firmwaresnapdragon_8_gen_1_mobile_platform_firmwareqcs5430fastconnect_6900sa8155psm8750srv1l_firmwarewcn7880_firmwareqcs5430_firmwaresm7325p_firmwareqca6688aqqca6584ausm8735qca6391wsa8810wcd9371sa8155_firmwaresm8650q_firmwaresw5100pSnapdragon
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2025-47380
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:23
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in Camera

Memory corruption while preprocessing IOCTLs in sensors.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800_firmwarex2000077_firmwarex2000090_firmwarex2000094wsa8845_firmwarexg101039x2000077wsa8840_firmwarexg101032_firmwarexg101039_firmwarewsa8845xg101032wcd9378c_firmwarewsa8845hwsa8845h_firmwarewsa8840xg101002_firmwareqcc2072_firmwarex2000092wcd9378cxg101002x2000090x2000086x2000086_firmwarex2000094_firmwarex2000092_firmwareqcc2072fastconnect_7800Snapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CVE-2025-47320
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:28
Updated-10 Feb, 2026 | 20:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in Audio

Memory corruption while processing MFC channel configuration during music playback.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm5430sm7675snapdragon_x32_5g_modem-rf_systemsdm429w_firmwaresnapdragon_auto_5g_modem-rf_firmwareqcs6490snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmwarewsa8845qcm6490_firmwaresm4635sm7250pqcn9011_firmwaresa8650pwcn3980sd626_firmwaresnapdragon_auto_4g_modem_firmwaresm6650p_firmwareqcs610_firmwaresnapdragon_8\+_gen_2_mobile_platformqcm6125sa4155p_firmwaresnapdragon_855\+\/860_mobile_platform_\(sm8150-ac\)_firmwareqca6797aqsnapdragon_626_mobile_platform_firmwaresd660qam8775p_firmwarewcd9375fastconnect_7800qca8337_firmwarewcn3615_firmwaremsm8996ausa6145p_firmwaresnapdragon_8\+_gen_2_mobile_platform_firmwarecsra6620_firmwareqcm2290qca6698aqsdx55_firmwarewcn3620snapdragon_888_5g_mobile_platform_firmwarevision_intelligence_400_platformqca6584au_firmwaresnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)snapdragon_768g_5g_mobile_platform_\(sm7250-ac\)_firmwaresnapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)sm7250p_firmwaresmart_display_200_platform_firmwaresa8145p_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewsa8815_firmwarewcd9390ar8031_firmwareqca6595ausnapdragon_x5_lte_modemrobotics_rb2_platformqam8295p_firmwareqcm6490qcs5430snapdragon_x75_5g_modem-rf_systemsa6155_firmwaresnapdragon_4_gen_1_mobile_platformqcn9011wsa8810_firmwarewcn3988_firmwareqcn9012_firmwareqca6564qca6574aqca8081qep8111_firmwareapq8017snapdragon_8_gen_3_mobile_platform_firmwaresnapdragon_x72_5g_modem-rf_systemqcs6490_firmwaresg8275pvideo_collaboration_vc1_platformfastconnect_6900_firmwarewcd9340_firmwareqcs8250_firmwareqrb5165msa7255pfastconnect_6900snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmwaresnapdragon_720g_mobile_platformqca6584ausa8150psa8775psg4150psa8155pmdm9628snapdragon_x12_lte_modemsm7675p_firmwareqcm5430_firmwaresnapdragon_662_mobile_platform_firmwareqfw7124video_collaboration_vc5_platformqrb5165m_firmwaresnapdragon_626_mobile_platformsm7550p_firmwaresnapdragon_690_5g_mobile_platform_firmwarewcn3615csra6640snapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)_firmwaresnapdragon_820_automotive_platformcsrb31024qca9367_firmwaresd865_5gqamsrv1h_firmwarewcd9360sm7550_firmwaresnapdragon_8_gen_2_mobile_platformsdx55qcm2290_firmwareqca6688aqsnapdragon_460_mobile_platformsrv1mqcs2290_firmwaresnapdragon_8_gen_2_mobile_platform_firmwaresnapdragon_782g_mobile_platform_\(sm7325-af\)snapdragon_765_5g_mobile_platform_\(sm7250-aa\)ar8035snapdragon_855_mobile_platform_firmwarefastconnect_6800_firmwarevision_intelligence_300_platformwcn3988qca6797aq_firmwaresnapdragon_660_mobile_platform_firmwaresa7775p_firmwarewsa8840_firmwarewcn3660b_firmwareqamsrv1msnapdragon_auto_5g_modem-rfwcn3990_firmwaresd660_firmwaremdm9640qca6678aq_firmwaresnapdragon_480_5g_mobile_platform_firmwaresg8275_firmwareqca6696_firmwareqca6391_firmwaresmart_audio_400_platformqcc710qcs7230_firmwarec-v2x_9150_firmwaresw5100p_firmwaresxr1120wcd9385qca6574wcn3910_firmwaresnapdragon_660_mobile_platformwcn6755snapdragon_765g_5g_mobile_platform_\(sm7250-ab\)_firmwarewcn6650_firmwarewcd9326_firmwareqfw7114_firmwaresm7550qcs410_firmwarerobotics_rb5_platformsnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)_firmwaresnapdragon_685_4g_mobile_platform_\(sm6225-ad\)sm7325p_firmwaresnapdragon_x72_5g_modem-rf_system_firmwareqca6574a_firmwaresd855sd855_firmwaresnapdragon_765_5g_mobile_platform_\(sm7250-aa\)_firmwareqca6595_firmwareqam8650psa8775p_firmwarewcd9370qca6584_firmwareqcs8550_firmwarevideo_collaboration_vc3_platformwcn3990sm8550p_firmwaresnapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)sa6150psw5100_firmwaresm6650vision_intelligence_200_platform_\(apq8053-ac\)_firmwareqcs5430_firmwaresw5100pwcd9326sg4150p_firmwareqca6678aqsdm429wsnapdragon_778g_5g_mobile_platformsnapdragon_xr1_platform_firmwareqca6688aq_firmwaresm8650qqca6564_firmwarewsa8835c-v2x_9150wcd9375_firmwarewsa8840snapdragon_x5_lte_modem_firmwarewcd9378qcn6274_firmwarefastconnect_6700_firmwaresa8770pmdm9250snapdragon_855_mobile_platformsa8195pqcs610qfw7124_firmwaresm7635sa8155p_firmwareqep8111mdm9250_firmwarerobotics_rb5_platform_firmwareqcn6224wcd9371vision_intelligence_200_platform_\(apq8053-ac\)flight_rb5_5g_platformqca9377sa6155psm7675_firmwarewcd9335_firmwareaqt1000_firmwaresa8620psm8635_firmwaresa2150psa8255pflight_rb5_5g_platform_firmwarequalcomm_215_mobile_platformqca6564asd865_5g_firmwaresnapdragon_625_mobile_platform_firmwarecsra6640_firmwaresnapdragon_x75_5g_modem-rf_system_firmwareqcs8550sa6145psnapdragon_auto_5g_modem-rf_gen_2_firmwaresa8145pwsa8832qca6174asa7775psa8295pwcd9330wcn3980_firmwareqrb5165n_firmwaresa8150p_firmwarewcd9371_firmwarecsrb31024_firmwaresnapdragon_429_mobile_platformsm7635p_firmwarewsa8830sm7635psa8195p_firmwareqca6595qcm8550wcd9385_firmwarewsa8835_firmwareqamsrv1hsnapdragon_x35_5g_modem-rf_systemvideo_collaboration_vc1_platform_firmwaresnapdragon_662_mobile_platformsnapdragon_4_gen_1_mobile_platform_firmwarevision_intelligence_100_platform_\(apq8053-aa\)_firmwaresnapdragon_w5\+_gen_1_wearable_platform9206_lte_modem_firmwarewcn6650vision_intelligence_300_platform_firmwaresnapdragon_7c\+_gen_3_computesnapdragon_720g_mobile_platform_firmwaresnapdragon_855\+\/860_mobile_platform_\(sm8150-ac\)sm8635video_collaboration_vc3_platform_firmwarewsa8845h_firmwarewcn3950_firmwarewcn3680bsrv1hsnapdragon_auto_4g_modemsnapdragon_870_5g_mobile_platform_\(sm8250-ac\)ar8035_firmwaresm7675psnapdragon_680_4g_mobile_platformwsa8845hqca9367qam8295psa6155p_firmwarewcn3680b_firmwareqca6698aq_firmwarewcd9340wcn3910wcd9370_firmwaresw5100sa7255p_firmwarevision_intelligence_100_platform_\(apq8053-aa\)sm7550psa6150p_firmwareqcm6125_firmwaresnapdragon_auto_5g_modem-rf_gen_2wsa8832_firmwareqca6595au_firmwaresnapdragon_x12_lte_modem_firmwarevideo_collaboration_vc5_platform_firmwaremdm9628_firmwareqamsrv1m_firmwarewcd9390_firmwaresnapdragon_765g_5g_mobile_platform_\(sm7250-ab\)sd626snapdragon_865_5g_mobile_platform_firmwareqcs2290snapdragon_429_mobile_platform_firmwaremsm8996au_firmwaresm8650q_firmwareqam8255p_firmwarerobotics_rb2_platform_firmwareapq8017_firmwarewcd9330_firmwaresmart_display_200_platformwsa8815fastconnect_6200_firmwaresm8550psnapdragon_778g_5g_mobile_platform_firmwareqrb5165nwcd9335csra6620qcs6125_firmwarewcn3950vision_intelligence_400_platform_firmwaresnapdragon_460_mobile_platform_firmwaresg8275p_firmwaresa4150psa6155wcd9395snapdragon_480_5g_mobile_platformfastconnect_6200snapdragon_690_5g_mobile_platformsnapdragon_888_5g_mobile_platformqcn9012snapdragon_x55_5g_modem-rf_system_firmwaresa4150p_firmwaresmart_audio_400_platform_firmwaresnapdragon_1200_wearable_platformqualcomm_215_mobile_platform_firmwaresnapdragon_xr2_5g_platformsnapdragon_1200_wearable_platform_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarefastconnect_6800wsa8845_firmwaresa8770p_firmwareqca2066qfw7114sm8635psa4155pqcn6224_firmwareqca6564a_firmwareqam8775psnapdragon_782g_mobile_platform_\(sm7325-af\)_firmwaresm8635p_firmwarewcd9378_firmwaresa9000psa8255p_firmware9206_lte_modemsnapdragon_x32_5g_modem-rf_system_firmwareqcs410sa8155_firmwareqca9377_firmwaresnapdragon_8_gen_3_mobile_platformsrv1m_firmwarewcn3660bsnapdragon_768g_5g_mobile_platform_\(sm7250-ac\)snapdragon_820_automotive_platform_firmwaresnapdragon_x55_5g_modem-rf_systemsxr1120_firmwaresm4635_firmwaresa8650p_firmwaresa2150p_firmwaresnapdragon_680_4g_mobile_platform_firmwarewcn6755_firmwareqca8337sm6650_firmwareqca6574ausm7325psnapdragon_xr2\+_gen_1_platformsnapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmwaresnapdragon_625_mobile_platformqam8650p_firmwareqca8081_firmwareqcs8250sa8155qca6564au_firmwareaqt1000qcs6125snapdragon_695_5g_mobile_platformsnapdragon_xr1_platformsa9000p_firmwareqcm8550_firmwarewcd9360_firmwareqcc710_firmwarewcd9341_firmwareqam8255pfastconnect_6700snapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)qca6391srv1h_firmwaresnapdragon_695_5g_mobile_platform_firmwareqca2066_firmwaresm6650pqca6574au_firmwaresa8620p_firmwarewcd9341wcd9380snapdragon_xr2\+_gen_1_platform_firmwareqcs7230mdm9640_firmwaresnapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmwarewcd9380_firmwaresg8275sa8295p_firmwareqca6174a_firmwaresnapdragon_865_5g_mobile_platformwsa8830_firmwareqcn6274wcn3620_firmwareqca6584wcd9395_firmwareqca6564aufastconnect_7800_firmwareqca6696sm7635_firmwarewsa8810ar8031qca6574_firmwaresnapdragon_xr2_5g_platform_firmwaresnapdragon_x35_5g_modem-rf_system_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47394
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in DSP Service

Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwaresm8735_firmwarewcn3988_firmwaresm7435_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100fastconnect_6200sw5100_firmwaresm8735sxr2350pwcd9375sw5100pwcn7860_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn7861wcn3980_firmwaresnapdragon_4_gen_2_mobile_platformfastconnect_6900sm8750pwcn7880wsa8832video_collaboration_vc1_platform_firmwarewcd9370sg6150wcn6755fastconnect_7800wsa8832_firmwarewcn3980wsa8845_firmwarevideo_collaboration_vc1_platformvideo_collaboration_vc3_platform_firmwarewsa8840sm8750_firmwarewcn7750sg6150_firmwaresm7435snapdragon_6_gen_1_mobile_platform_firmwarewsa8830wcd9395_firmwarewcn7881_firmwareqmp1000wcd9385sm8750qcs610_firmwarewsa8810_firmwaresm6475fastconnect_7800_firmwarewsa8830_firmwareqcs610qmp1000_firmwaresm8750p_firmwarewsa8840_firmwarewsa8815_firmwarewsa8835wcn7860wcn7880_firmwaresxr2330psg6150p_firmwarewcd9385_firmwaresw5100p_firmwarewsa8835_firmwaresnapdragon_6_gen_1_mobile_platformwcn7881wcd9380_firmwarewcn3988sxr2330p_firmwarevideo_collaboration_vc3_platformsg6150pfastconnect_6200_firmwarewsa8815wcd9378_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcd9370_firmwarewsa8810wcn6755_firmwarewsa8845sm6475_firmwarewsa8845hwsa8845h_firmwarewcd9395wcd9378sxr2350p_firmwarewcn3950_firmwarewcn7750_firmwarewcd9380wcn3950fastconnect_6700_firmwarefastconnect_6700wcn7861_firmwarefastconnect_6900_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-47367
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in WinBlast Driver

Memory corruption while accessing a buffer during IOCTL processing.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwareqcs6490wcd9375video_collaboration_vc3_platformwcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwareqcs5430x2000090_firmwarewsa8845snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwarewcd9385x2000077_firmwarewsa8835_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarewsa8835wcd9370xg101039fastconnect_6900qcc2072_firmwareqcm6490_firmwaresnapdragon_7c\+_gen_3_computex2000086wsa8845hx2000092snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarexg101039_firmwarexg101002fastconnect_6700snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)snapdragon_7c\+_gen_3_compute_firmwareqcs5430_firmwareqcm6490wsa8830wsa8840wsa8845_firmwarewcd9370_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)video_collaboration_vc3_platform_firmwarex2000077wsa8830_firmwarex2000094fastconnect_6900_firmwarexg101032_firmwarewcd9375_firmwarexg101002_firmwarex2000092_firmwarefastconnect_6700_firmwareqcm5430_firmwareqcm5430qcs6490_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47388
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy without Checking Size of Input in DSP Service

Memory corruption while passing pages to DSP with an unaligned starting address.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwaresm8735_firmwarewcn3988_firmwaresm7435_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100fastconnect_6200sw5100_firmwaresm8735sxr2350pwcd9375sw5100pwcn7860_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn7861wcn3980_firmwaresnapdragon_4_gen_2_mobile_platformfastconnect_6900sm8750pwcn7880wsa8832video_collaboration_vc1_platform_firmwarewcd9370sg6150wcn6755fastconnect_7800wsa8832_firmwarewcn3980wsa8845_firmwarevideo_collaboration_vc1_platformvideo_collaboration_vc3_platform_firmwarewsa8840sm8750_firmwarewcn7750sg6150_firmwaresm7435snapdragon_6_gen_1_mobile_platform_firmwarewsa8830wcd9395_firmwarewcn7881_firmwareqmp1000wcd9385sm8750qcs610_firmwarewsa8810_firmwaresm6475fastconnect_7800_firmwarewsa8830_firmwareqcs610qmp1000_firmwaresm8750p_firmwarewsa8840_firmwarewsa8815_firmwarewsa8835wcn7860wcn7880_firmwaresxr2330psg6150p_firmwarewcd9385_firmwaresw5100p_firmwarewsa8835_firmwaresnapdragon_6_gen_1_mobile_platformwcn7881wcd9380_firmwarewcn3988sxr2330p_firmwarevideo_collaboration_vc3_platformsg6150pfastconnect_6200_firmwarewsa8815wcd9378_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcd9370_firmwarewsa8810wcn6755_firmwarewsa8845sm6475_firmwarewsa8845hwsa8845h_firmwarewcd9395wcd9378sxr2350p_firmwarewcn3950_firmwarewcn7750_firmwarewcd9380wcn3950fastconnect_6700_firmwarefastconnect_6700wcn7861_firmwarefastconnect_6900_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-47349
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.62%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Use of Out-of-range Pointer Offset in DSP Service

Memory corruption while processing an escape call.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845wcd9385x2000077_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarexg101039fastconnect_6900qcc2072_firmwarex2000086wsa8845hx2000092xg101039_firmwarexg101002wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwarex2000077x2000094fastconnect_6900_firmwarexg101032_firmwarexg101002_firmwarex2000092_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-823
Use of Out-of-range Pointer Offset
CVE-2025-47346
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 21:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in HLOS

Memory corruption while processing a secure logging command in the trusted application.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwaresm8735_firmwareqam8295p_firmwareqcm5430wcn3988_firmwaresm8650q_firmwaresa7255p_firmwareqca6595au_firmwareqam8620psnapdragon_8_gen_3_mobile_platformqam8255pwcd9375qca6574wcn7860_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn7861qca6574au_firmwaresm7635psm8635p_firmwaresc8380xpsa8650p_firmwaresrv1lqca8081qam8775p_firmwaresm6650_firmwarewcn7880snapdragon_auto_5g_modem-rf_gen_2_firmwareqca6174asa6155p_firmwarewsa8845_firmwarevideo_collaboration_vc3_platform_firmwaresnapdragon_x72_5g_modem-rf_system_firmwareqamsrv1msnapdragon_ar1_gen_1_platform_\"luna1\"_firmwareqamsrv1h_firmwaresm8635psnapdragon_8_gen_3_mobile_platform_firmwarewcn7750sm8635_firmwareqca6574awcd9395_firmwarewcn7881_firmwaresm8750sm4635_firmwaresa9000pqam8255p_firmwaresa8195p_firmwarewsa8810_firmwaresa8150p_firmwareqca6174a_firmwareqca6595ausrv1h_firmwareqca8081_firmwaresa8155p_firmwareqca6696_firmwareqca6584au_firmwareqfw7114sm6650psm8750p_firmwaresnapdragon_x35_5g_modem-rf_systemsnapdragon_ar1_gen_1_platform_firmwaresa6145p_firmwareqcs5430wcn7860sxr2330psa7775psa8295p_firmwareqcs9100qca6698aq_firmwarewsa8835_firmwaresnapdragon_6_gen_1_mobile_platformqcm5430_firmwarewcn7881qca6584auqca6797aq_firmwaresa8775pqcs9100_firmwaresm6650p_firmwareqfw7124_firmwaresxr2330p_firmwareqfw7114_firmwaresrv1mfastconnect_6200_firmwaresa6150p_firmwareqam8650pqca6574_firmwareqam8650p_firmwarewsa8810qca6574auwcn6755_firmwareqca6574a_firmwaresnapdragon_x75_5g_modem-rf_systemwsa8845hqam8775pqca8337_firmwaresm7635_firmwarewcn3950_firmwarewcn7750_firmwarewcn3950sm6650sm7635p_firmwarefastconnect_6700_firmwaresa8650pfastconnect_6900_firmwaresrv1m_firmwarewcn6650qcm6490_firmwareqca6678aq_firmwaresm7435_firmwareqca6797aqwcd9340_firmwarefastconnect_6200srv1hsm8735sxr2350pwcn6650_firmwaresm7635snapdragon_x75_5g_modem-rf_system_firmwaresm8635srv1l_firmwaresnapdragon_4_gen_2_mobile_platformfastconnect_6900sa8155psm8750pqep8111qcn6274qep8111_firmwarewsa8832sa8775p_firmwaresm7675_firmwareqcc710_firmwareqcn6224wcd9370wcd9390fastconnect_7800wcn6755sa8145p_firmwarewsa8832_firmwareqamsrv1hsa8540p_firmwaresa8150pqca6698aqsa8255pwsa8840sa7255psm8750_firmwaresa6155psnapdragon_x32_5g_modem-rf_system_firmwaresm7435ar8035qca6688aq_firmwaresnapdragon_6_gen_1_mobile_platform_firmwarewsa8830sa8540psm7675pqmp1000wcd9385sa6145pqcs5430_firmwareqca6688aqsnapdragon_auto_5g_modem-rf_gen_2wcd9340sa8770p_firmwaresm6475fastconnect_7800_firmwaresnapdragon_ar1_gen_1_platformqcs6490qca6678aqsnapdragon_x35_5g_modem-rf_system_firmwarewsa8830_firmwareqamsrv1m_firmwaresa9000p_firmwareqmp1000_firmwarewsa8840_firmwarewsa8815_firmwarewsa8835wcn7880_firmwarewcd9385_firmwareqca8337sa8620pqfw7124qam8295pqca6595qca6696wcd9380_firmwarewcn3988qcn6224_firmwareqca6595_firmwarevideo_collaboration_vc3_platformsnapdragon_x72_5g_modem-rf_systemsm7675qcm6490sm7675p_firmwareqcs6490_firmwarewsa8815wcd9378_firmwaresa8145pqcs615_firmwarewcd9370_firmwaresa8195par8035_firmwarewsa8845sa8620p_firmwaresm6475_firmwareqcc710snapdragon_x32_5g_modem-rf_systemwsa8845h_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"qam8620p_firmwaresm4635qcs615sa6150pwcd9378sxr2350p_firmwarewcd9395sa8770psc8380xp_firmwarewcd9380sa7775p_firmwaresa8255p_firmwaresa8295pfastconnect_6700qcn6274_firmwarewcd9390_firmwarewcn7861_firmwaresm8650qSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47355
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.62%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in DSP Service

Memory corruption while invoking remote procedure IOCTL calls.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcn3980_firmwarewcd9380_firmwarewcn3680b_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwarewcd9385x2000077_firmwarewsa8835_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarewsa8835wcn3660bwcn3680bxg101039fastconnect_6900qcc2072_firmwaresnapdragon_7c\+_gen_3_computex2000086wsa8845hx2000092snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarexg101039_firmwarexg101002fastconnect_6700snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)snapdragon_7c\+_gen_3_compute_firmwarewsa8830wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcn3980wcd9378c_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)x2000077wsa8830_firmwarex2000094fastconnect_6900_firmwarexg101032_firmwarefastconnect_6700_firmwarexg101002_firmwarex2000092_firmwarewcn3660b_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2025-47364
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.8||MEDIUM
EPSS-0.01% / 0.21%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer Overflow or Wraparound in Automotive

Memory corruption while calculating offset from partition start point.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa6155pqca6797aq_firmwaresa8770p_firmwaresa7775p_firmwaresa8650pqamsrv1msa8620pqca6696_firmwaresa8255pqam8775pqca8695au_firmwaresa9000psa8540pqca6797aqsa6145pqam8775p_firmwaresa8145psa8255p_firmwaresa7775psa8295psa8150p_firmwaresa6145p_firmwareqca6698aqqca6595sa8195p_firmwaresrv1m_firmwareqamsrv1hsa8145p_firmwaresrv1lqca6595auqam8295p_firmwareqam8620psa8650p_firmwareqca6595_firmwareqam8650psa8775p_firmwaresrv1hqca6574auqam8650p_firmwareqam8295psa6155p_firmwaresa6150pqca6698aq_firmwaresa7255psa9000p_firmwareqam8620p_firmwaresa7255p_firmwareqam8255psa8150psrv1h_firmwaresa8775psa6150p_firmwareqca6574au_firmwaresa8155psa8620p_firmwareqca6595au_firmwareqca6688aq_firmwareqamsrv1m_firmwaresa8295p_firmwareqam8255p_firmwaresa8770pqca8695ausa8195pqamsrv1h_firmwareqca6696srv1l_firmwareqca6688aqsa8155p_firmwaresa8540p_firmwaresrv1mSnapdragon
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2025-47321
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-27 Jan, 2026 | 19:31
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in Core Services

Memory corruption while copying packets received from unix clients.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwaresm8735_firmwareqcm5430wcn3988_firmwaresa7255p_firmwaresw5100qca6595au_firmwareqam8255pwcd9375qcm6125_firmwareqca6574wcn7860_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn7861qca6574au_firmwaresm7635psa8650p_firmwareqca8081qam8775p_firmwaresm6650_firmwarewcn7880qca2066_firmwareqca6174asa4155psa6155p_firmwaresnapdragon_768g_5g_mobile_platform_\(sm7250-ac\)snapdragon_765g_5g_mobile_platform_\(sm7250-ab\)smart_audio_400_platformwcn3980wsa8845_firmwareqca6391_firmwarevideo_collaboration_vc3_platform_firmwaresmart_audio_400_platform_firmwareqamsrv1msnapdragon_ar1_gen_1_platform_\"luna1\"_firmwareqamsrv1h_firmwaresxr2250p_firmwarewcn7750qcn9011qcs8550_firmwaresnapdragon_680_4g_mobile_platformqca6574awcd9395_firmwarewcn7881_firmwaresm8750sa9000pqam8255p_firmwaresa8195p_firmwarewsa8810_firmwaresdx61_firmwareqcn9012_firmwareqca8081_firmwareqca6174a_firmwareqca6595ausrv1h_firmwaresxr1230pqca6696_firmwarerobotics_rb2_platform_firmwaresa8155p_firmwaresm6650psm8750p_firmwaresnapdragon_765_5g_mobile_platform_\(sm7250-aa\)_firmwaresnapdragon_x35_5g_modem-rf_systemsnapdragon_ar1_gen_1_platform_firmwarewcn7860qcs5430ssg2115psa7775psw5100p_firmwareqcm8550snapdragon_685_4g_mobile_platform_\(sm6225-ad\)snapdragon_6_gen_1_mobile_platformssg2115p_firmwareqcm5430_firmwarewsa8835_firmwarewcn7881snapdragon_x65_5g_modem-rf_system_firmwaresa8775pqcn6024sm6650p_firmwareqcm8550_firmwarefastconnect_6200_firmwaresrv1mwcd9335qam8650pqca6574_firmwareqcn9011_firmwareqam8650p_firmwarewsa8810ssg2125pqca6574auwcn6755_firmwareqca6574a_firmwaresxr1230p_firmwarecsra6620wsa8845hsm7250p_firmwareqam8775pssg2125p_firmwareqca8337_firmwaresm7635_firmwarewcn3950_firmwarewcn7750_firmwareqcs6125wcn3950sm6650sm7635p_firmwaresxr2250pfastconnect_6700_firmwareqcm6125sa8650pfastconnect_6900_firmwareqcn6024_firmwareqcs6125_firmwaresxr2230p_firmwareqcn9012srv1m_firmwaresa4150p_firmwarewcn6740_firmwarewcn6650qcm6490_firmwarear8031_firmwaresm7435_firmwaresnapdragon_w5\+_gen_1_wearable_platformwcd9340_firmwarefastconnect_6200sw5100_firmwaresrv1hsm8735robotics_rb2_platformsw5100psm7635snapdragon_765_5g_mobile_platform_\(sm7250-aa\)sa4150pwcn6650_firmwaresnapdragon_680_4g_mobile_platform_firmwarewcn3980_firmwareqcs8550snapdragon_4_gen_2_mobile_platformfastconnect_6900sa8155pqep8111sm8750pqep8111_firmwarewcn6740wsa8832video_collaboration_vc1_platform_firmwaresa8775p_firmwarewcd9370wcn6755fastconnect_7800wsa8832_firmwaresm7250pvideo_collaboration_vc1_platformqamsrv1hqca6391sa8255pwsa8840sa7255psm8750_firmwaresa6155psnapdragon_x32_5g_modem-rf_system_firmwaresnapdragon_x65_5g_modem-rf_systemqcn9024sm7435ar8035snapdragon_6_gen_1_mobile_platform_firmwarewsa8830qmp1000wcd9385snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmwareqcs5430_firmwaresnapdragon_ar2_gen_1_platform_firmwaresnapdragon_ar2_gen_1_platformsnapdragon_768g_5g_mobile_platform_\(sm7250-ac\)_firmwarewcd9340sa8770p_firmwaresm6475fastconnect_7800_firmwareqcs6490qcn9024_firmwaresdx61qca2066snapdragon_ar1_gen_1_platformsnapdragon_x35_5g_modem-rf_system_firmwarewsa8830_firmwareqamsrv1m_firmwaresa9000p_firmwareqmp1000_firmwarear8031wcd9335_firmwarewsa8815_firmwarewsa8835wsa8840_firmwarewcn7880_firmwarewcd9385_firmwareqca8337sa8620psxr2230pqca6696wcd9380_firmwarecsra6620_firmwarewcn3988video_collaboration_vc3_platformqcm6490snapdragon_765g_5g_mobile_platform_\(sm7250-ab\)_firmwareqcs6490_firmwarewsa8815wcd9378_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcd9370_firmwaresa8195par8035_firmwarewsa8845sa8620p_firmwaresm6475_firmwaresnapdragon_x32_5g_modem-rf_systemwsa8845h_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"wcd9395wcd9378sa8770pwcd9380sa7775p_firmwaresa8255p_firmwarefastconnect_6700wcn7861_firmwaresa4155p_firmwarecsra6640csra6640_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-47338
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.62%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in DSP Service

Memory corruption while processing escape commands from userspace.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845wcd9385x2000077_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarexg101039fastconnect_6900qcc2072_firmwarex2000086wsa8845hx2000092xg101039_firmwarexg101002wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwarex2000077x2000094fastconnect_6900_firmwarexg101032_firmwarexg101002_firmwarex2000092_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CVE-2025-47365
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer Overflow or Wraparound in Automotive Platform

Memory corruption while processing large input data from a remote source via a communication interface.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8150pqam8650psa8620psa8770p_firmwaresrv1l_firmwareqamsrv1m_firmwaresa7255p_firmwaresa8150p_firmwareqca8695au_firmwareqca6595_firmwareqamsrv1hqca6574au_firmwareqca6698aq_firmwaresa8255p_firmwareqam8775p_firmwareqca6595sa6145psa8145p_firmwaresa9000pqam8295p_firmwaresrv1m_firmwaresa8770psa9000p_firmwaresrv1h_firmwaresa7775pqam8295psa8775psa8650psa8195psrv1mqam8775pqca6688aqsa8540p_firmwaresa8195p_firmwaresa8295psa6150pqam8255p_firmwaresa8155psa8650p_firmwaresa7775p_firmwareqamsrv1h_firmwareqca6574ausa8775p_firmwareqam8620p_firmwareqca6797aq_firmwareqca6696_firmwaresa6145p_firmwaresa7255psa6155p_firmwareqca6688aq_firmwaresa8620p_firmwareqam8255psa8155p_firmwareqca6797aqsrv1lqca6595au_firmwareqca6595ausa6155pqca6696sa8255pqca8695ausa8145pqam8620psrv1hsa6150p_firmwareqca6698aqqamsrv1msa8540psa8295p_firmwareqam8650p_firmwareSnapdragon
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2025-47340
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 5.62%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 03:18
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Out-of-bounds Write in DSP Service

Memory corruption while processing IOCTL call to get the mapping.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcc2072x2000094_firmwarewcd9380_firmwarex2000090x2000086_firmwaresc8380xp_firmwarex2000090_firmwarewsa8845wcd9385x2000077_firmwarefastconnect_7800sc8380xpfastconnect_7800_firmwarexg101039fastconnect_6900qcc2072_firmwarex2000086wsa8845hx2000092xg101039_firmwarexg101002wsa8840wsa8845_firmwarewsa8840_firmwarewcd9378cxg101032wcd9385_firmwarewcd9378c_firmwarex2000077x2000094fastconnect_6900_firmwarexg101032_firmwarexg101002_firmwarex2000092_firmwarewcd9380wsa8845h_firmwareSnapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2018-5852
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.04% / 12.12%
||
7 Day CHG~0.00%
Published-26 Nov, 2024 | 13:56
Updated-09 Jan, 2025 | 19:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Over-read in IPA

An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat'

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_615sd_820sd_652_firmwaremsm8909w_firmwaresd_210_firmwaresd_625sd_616_firmwaresd_810sd_450mdm9640sd_425sd_210sd_820asd_652sd_625_firmwaresd_415_firmwaresd_205mdm9650_firmwaremdm9206mdm9650sd_650sd_820_firmwaresd_835sd_616mdm9206_firmwaresd_810_firmwaresd_845sd_212_firmwaresd_820a_firmwaresd_835_firmwaresd_450_firmwaresd_617_firmwaresd_617mdm9640_firmwaresd_205_firmwaresd_212sd_425_firmwaremsm8909wmdm9607sd_415sd_650_firmwaremdm9607_firmwaresd_430sd_615_firmwaresd_430_firmwaresd_845_firmwareSnapdragonsd_820a_firmwaresd_835_firmwaresd_425_firmwaremdm9607_firmwaremsm8909w_firmwaresd_810_firmwaremdm9206_firmwaresd_450_firmwaremdm9650_firmwaresd_625_firmwaresd_845_firmwaresd_430_firmwaresd_617_firmwaresd_820_firmwaremdm9640_firmware
CWE ID-CWE-126
Buffer Over-read
CWE ID-CWE-191
Integer Underflow (Wrap or Wraparound)
CVE-2025-47396
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Double Free in Graphics

Memory corruption occurs when a secure application is launched on a device with insufficient memory.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9375_firmwaresm8735_firmwarewcn3988_firmwaresm7435_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100fastconnect_6200sw5100_firmwaresm8735sxr2350pwcd9375sw5100pwcn7860_firmwaresnapdragon_4_gen_2_mobile_platform_firmwarewcn7861wcn3980_firmwaresnapdragon_4_gen_2_mobile_platformfastconnect_6900sm8750pwcn7880wsa8832video_collaboration_vc1_platform_firmwarewcd9370wcn6755fastconnect_7800wsa8832_firmwarewcn3980wsa8845_firmwarevideo_collaboration_vc1_platformvideo_collaboration_vc3_platform_firmwarewsa8840snapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresm8750_firmwarewcn7750sm7435snapdragon_6_gen_1_mobile_platform_firmwarewsa8830wcd9395_firmwarewcn7881_firmwareqmp1000wcd9385sm8750qcs610_firmwarewsa8810_firmwaresm6475fastconnect_7800_firmwaresnapdragon_ar1_gen_1_platformwsa8830_firmwareqcs610qmp1000_firmwaresm8750p_firmwarewsa8840_firmwarewsa8815_firmwaresnapdragon_ar1_gen_1_platform_firmwarewcn7860wsa8835wcn7880_firmwaresxr2330pwcd9385_firmwaresw5100p_firmwarewsa8835_firmwaresnapdragon_6_gen_1_mobile_platformwcn7881wcd9380_firmwarewcn3988sxr2330p_firmwarevideo_collaboration_vc3_platformfastconnect_6200_firmwarewsa8815wcd9378_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwarewcd9370_firmwarewsa8810wcn6755_firmwarewsa8845sm6475_firmwarewsa8845hwsa8845h_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"wcd9395wcd9378sxr2350p_firmwarewcn3950_firmwarewcn7750_firmwarewcd9380wcn3950fastconnect_6700_firmwarefastconnect_6700wcn7861_firmwarefastconnect_6900_firmwareSnapdragon
CWE ID-CWE-415
Double Free
CVE-2025-47316
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.29%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Double Free in Video

Memory corruption due to double free when multiple threads race to set the timestamp store.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380wcd9341snapdragon_8cx_compute_platform_\(sc8180x-ab\)wcd9340_firmwaresnapdragon_7c\+_gen_3_compute_firmwaresc8380xp_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)qca6430_firmwarefastconnect_6900snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmwaresnapdragon_7c\+_gen_3_computesnapdragon_8c_compute_platform_\(sc8180x-ad\)wcd9341_firmwarewcd9385_firmwarewsa8830_firmwaresnapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmwarewsa8835wsa8845fastconnect_7800snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmwarewcd9385wcd9380_firmwarewsa8845hwsa8830snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarewsa8845_firmwareaqt1000snapdragon_8cx_compute_platform_\(sc8180x-aa\)fastconnect_6200_firmwarewsa8835_firmwarefastconnect_6700qca6391wsa8840_firmwarewsa8815_firmwarewcd9340wsa8840qca6391_firmwarefastconnect_6900_firmwarefastconnect_6800_firmwaresnapdragon_8c_compute_platform_\(sc8180x-ad\)_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmwarewsa8810wsa8845h_firmwarefastconnect_6200fastconnect_6800qca6430aqt1000_firmwaresnapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)fastconnect_7800_firmwaresnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)wsa8810_firmwareqca6420sc8380xpfastconnect_6700_firmwarewsa8815qca6420_firmwareSnapdragon
CWE ID-CWE-415
Double Free
CVE-2025-47393
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.72%
||
7 Day CHG~0.00%
Published-06 Jan, 2026 | 22:48
Updated-27 Jan, 2026 | 19:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Automotive Linux OS

Memory corruption when accessing resources in kernel driver.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-srv1m_firmwareqamsrv1m_firmwaresa9000p_firmwareqca6797aqsa7255p_firmwaresrv1hsa7775pqam8255pqca6698aq_firmwaresa8620pqca6595qca6797aq_firmwaresa8650p_firmwaresa8775pqam8775p_firmwareqca6595_firmwaresa8775p_firmwaresrv1mqam8650pqam8650p_firmwareqamsrv1hqca6698aqsa8255pqamsrv1msa8620p_firmwaresa7255pqamsrv1h_firmwareqam8775psa8770psa7775p_firmwaresa8255p_firmwaresa9000pqam8255p_firmwaresa8650psa8770p_firmwaresrv1h_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2025-47353
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Exposed Dangerous Method or Function in Automotive Software platform based on QNX

Memory corruption while processing request sent from GVM.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8775p_firmwareqca6797aq_firmwareqam8650psa8620psa8770p_firmwaresa7255pqamsrv1m_firmwaresa7255p_firmwaresa8620p_firmwareqam8255pqca6595_firmwareqamsrv1hqca6698aq_firmwaresa8255p_firmwareqam8775p_firmwareqca6595sa8255psa8650p_firmwaresa9000psrv1m_firmwaresa8770psa9000p_firmwaresrv1h_firmwaresa7775psa8775psa8650psrv1hsrv1mqam8775pqca6698aqqamsrv1mqam8255p_firmwareqca6797aqqam8650p_firmwaresa7775p_firmwareqamsrv1h_firmwareSnapdragon
CWE ID-CWE-749
Exposed Dangerous Method or Function
CVE-2025-47399
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 0.28%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer Copy Without Checking Size of Input in Camera

Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800x2000090x2000077wcd9378cwsa8840x2000086_firmwarecolognexg101002_firmwarewsa8845wsa8845hx2000077_firmwarexg101032_firmwarewsa8845_firmwarex2000094x2000090_firmwarewsa8840_firmwarecologne_firmwarex2000092xg101002xg101039x2000092_firmwarex2000086fastconnect_7800_firmwarex2000094_firmwarewcd9378c_firmwarewsa8845h_firmwarexg101032xg101039_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2025-47366
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.1||HIGH
EPSS-0.01% / 0.19%
||
7 Day CHG~0.00%
Published-02 Feb, 2026 | 15:20
Updated-26 Feb, 2026 | 15:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Exposed Dangerous Method or Function in HLOS

Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qcm5430sxr2350p_firmwaresm7675sxr2230psnapdragon_x72_5g_modem-rf_firmwareqcs6490snapdragon_8_gen_3_mobilewsa8845sm4635qcm6490_firmwaresm8750pqdx1011_firmwareqcn9011_firmwaresa8650psm6650p_firmwaresa4155p_firmwareqca6797aqqam8775p_firmwarewcd9375fastconnect_7800qca8337_firmwaressg2115psxr1230pssg2115p_firmwaresa6145p_firmwaresnapdragon_ar2_gen_1_firmwareqca6698aqqca6584au_firmwaresa8145p_firmwarewsa8815_firmwarewcd9390srv1lqcs4490qca6595ausnapdragon_7\+_gen_2_mobile_firmwareqam8295p_firmwarewcn7880qcm6490qcs5430sm8750qcn9011wsa8810_firmwarewcn3988_firmwareqcn9012_firmwaresxr2350pqca6574aqca8081qep8111_firmwareqcs6490_firmwareqcs9100_firmwareqcm4490sm8475p_firmwarefastconnect_6900_firmwarewcd9340_firmwaresnapdragon_x72_5g_modem-rfqrb5165mvideo_collaboration_vc3_firmwarefastconnect_6900sa7255pqca6584ausm7435_firmwaresa8150psa8775psg4150psa8155psnapdragon_680_4g_mobile_firmwareqru1032sm7675p_firmwaresm8750p_firmwareqcm5430_firmwareqfw7124qru1052qrb5165m_firmwaresnapdragon_6_gen_1_mobile_firmwareqamsrv1h_firmwareqmp1000_firmwaresrv1l_firmwareqca6688aqsnapdragon_x75_5g_modem-rf_firmwaresrv1msnapdragon_662_mobilesnapdragon_8_gen_1_mobile_firmwarewcn7861ar8035qru1052_firmwaresm8735_firmwarewcn3988qca6797aq_firmwareqdu1010_firmwaresnapdragon_4_gen_2_mobile_firmwaresa7775p_firmwaresnapdragon_685_4g_mobilewsa8840_firmwareqamsrv1mqca6678aq_firmwareqca6391_firmwareqca6696_firmwaresm6475_firmwareqcc710qcs7230_firmwaresw5100p_firmwaresxr2330pwcd9385qca6574snapdragon_w5\+_gen_1_wearablewcn3910_firmwarewcn6755sm8750_firmwaresnapdragon_680_4g_mobilevideo_collaboration_vc5snapdragon_685_4g_mobile_firmwareqru1062snapdragon_8_gen_1_mobilewcn6650_firmwareqfw7114_firmwarewcn6740sd_8_gen1_5gqca6574a_firmwareqam8620psnapdragon_7_gen_1_mobile_firmwareqca6595_firmwareqdx1010_firmwareqam8650psa8775p_firmwarewcd9370wcn7881sm7435snapdragon_8_gen_3_mobile_firmwaresa6150psnapdragon_662_mobile_firmwareqdx1011sw5100_firmwaresm6650qcs5430_firmwaresc8380xpsw5100psnapdragon_460_mobilesg4150p_firmwareqca6678aqqca6688aq_firmwaresm8650qwsa8835wcd9375_firmwarewsa8840wcd9378qcn6274_firmwarefastconnect_6700_firmwaresa8770psa8195pqfw7124_firmwarerobotics_rb5sm7635snapdragon_x32_5g_modem-rfsa8155p_firmwaresa8540p_firmwareqep8111snapdragon_8\+_gen_1_mobile_firmwaresnapdragon_4_gen_1_mobileqcn6224sxr2230p_firmwaresa6155pqcs615qcm4490_firmwaresm7675_firmwaresa8620psm8635_firmwaresa8255psnapdragon_480\+_5g_mobile_firmwareqca8695au_firmwareqcs615_firmwaresnapdragon_4_gen_1_mobile_firmwaresa8540psnapdragon_ar1_gen_1sa6145psa8145psnapdragon_auto_5g_modem-rf_gen_2_firmwarewsa8832wcn6740_firmwareqca6174asa7775psa8295psnapdragon_480_5g_mobile_firmwareqru1032_firmwaresnapdragon_x32_5g_modem-rf_firmwareqrb5165n_firmwaresa8150p_firmwaresxr2250psm7635p_firmwaresm7635pwsa8830sa8195p_firmwareqca6595wsa8835_firmwarewcd9385_firmwareqamsrv1hsm6225p_firmwaresnapdragon_695_5g_mobilevideo_collaboration_vc5_firmwarewcn6650snapdragon_8\+_gen_1_mobilesnapdragon_7_gen_1_mobilesm8635snapdragon_x35_5g_modem-rf_firmwarewsa8845h_firmwarewcn3950_firmwaresrv1hsnapdragon_ar2_gen_1ar8035_firmwaresm7675pwsa8845hsa6155p_firmwareqam8295pqca6698aq_firmwarewcd9340wcn3910wcd9370_firmwaresw5100sa7255p_firmwaresxr2330p_firmwarewcn7750_firmwaresa6150p_firmwaresnapdragon_auto_5g_modem-rf_gen_2wsa8832_firmwareqca6595au_firmwareflight_rb5_5g_firmwaresd_8_gen1_5g_firmwareqamsrv1m_firmwarewcd9390_firmwaresm8650q_firmwareqam8255p_firmwaresm8735wsa8815wcn7860_firmwarewcn7860fastconnect_6200_firmwareqrb5165nsxr1230p_firmwarewcn3950qmp1000sa4150pflight_rb5_5gsm8475pwcd9395fastconnect_6200wcn7750video_collaboration_vc3qcn9012sa4150p_firmwaresnapdragon_ar1_gen_1_firmwaresm6225pwsa8845_firmwaresa8770p_firmwareqfw7114sm8635psa4155psnapdragon_4_gen_2_mobileqcn6224_firmwareqam8775psm8635p_firmwarewcd9378_firmwaresa9000pwcn7861_firmwaresnapdragon_x75_5g_modem-rfsa8255p_firmwaressg2125pwcn7881_firmwaresrv1m_firmwareqcs4490_firmwaresnapdragon_x35_5g_modem-rfsm4635_firmwaresa8650p_firmwaresnapdragon_695_5g_mobile_firmwaresnapdragon_480\+_5g_mobilesm6475qdu1010wcn6755_firmwareqca8337wcn7880_firmwaresm6650_firmwareqca6574auqam8650p_firmwareqca8081_firmwaresxr2250p_firmwaresa9000p_firmwareqam8620p_firmwareqcc710_firmwareqam8255pfastconnect_6700qca6391srv1h_firmwaresm6650psa8620p_firmwareqca6574au_firmwaresnapdragon_460_mobile_firmwarewcd9380qcs7230snapdragon_w5\+_gen_1_wearable_firmwarewcd9380_firmwareqdx1010sc8380xp_firmwaresa8295p_firmwareqru1062_firmwareqca6174a_firmwarewsa8830_firmwareqcn6274qcs9100qca8695ausnapdragon_480_5g_mobilewcd9395_firmwarefastconnect_7800_firmwareqca6696sm7635_firmwaresnapdragon_6_gen_1_mobilesnapdragon_7\+_gen_2_mobilewsa8810ssg2125p_firmwareqca6574_firmwarerobotics_rb5_firmwareSnapdragon
CWE ID-CWE-749
Exposed Dangerous Method or Function
CVE-2025-47357
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8||HIGH
EPSS-0.01% / 2.41%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-05 Nov, 2025 | 17:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Missing Authentication for Critical Function in SMSS

Information Disclosure when a user-level driver performs QFPROM read or write operations on Fuse regions.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8775p_firmwareqam8620p_firmwareqca6797aq_firmwareqca6696_firmwareqcs9100_firmwareqam8650psa8620psa8770p_firmwaresa7255psrv1l_firmwareqamsrv1m_firmwaresa7255p_firmwaresa8620p_firmwareqam8255pqca6797aqsrv1lqca6595au_firmwareqca6595_firmwareqca6595auqamsrv1hqca6698aq_firmwaresa8255p_firmwareqca6696qam8775p_firmwareqca6595sa8255psa8650p_firmwaresa9000psrv1m_firmwaresa8770psa9000p_firmwareqcs9100srv1h_firmwaresa7775psa8775pqca6678aqqam8620psa8650psrv1hsrv1mqam8775pqca6698aqqamsrv1mqam8255p_firmwareqca6678aq_firmwareqam8650p_firmwaresa7775p_firmwareqamsrv1h_firmwareSnapdragon
CWE ID-CWE-306
Missing Authentication for Critical Function
CVE-2025-47361
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.87%
||
7 Day CHG~0.00%
Published-04 Nov, 2025 | 03:19
Updated-26 Feb, 2026 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Automotive Software platform based on QNX

Memory corruption when triggering a subsystem crash with an out-of-range identifier.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8775p_firmwareqam8620p_firmwareqca6797aq_firmwareqca6696_firmwareqam8650psa8620psa8770p_firmwaresa7255psa8295p_firmwaresrv1l_firmwareqamsrv1m_firmwareqca6688aq_firmwaresa7255p_firmwaresa8620p_firmwareqam8255pqca8695au_firmwaresrv1lqca6595au_firmwareqca6595_firmwareqca6595auqamsrv1hqca6574au_firmwareqca6698aq_firmwaresa8255p_firmwareqca6696qam8775p_firmwareqca6595sa8255psa8650p_firmwaresa9000pqam8295p_firmwaresrv1m_firmwareqca8695ausa8770psa9000p_firmwaresrv1h_firmwaresa7775pqam8295psa8775pqam8620psa8650psrv1hsrv1mqam8775pqca6688aqqca6698aqsa8540p_firmwaresa8295pqamsrv1msa8540pqam8255p_firmwareqca6797aqqam8650p_firmwaresa7775p_firmwareqamsrv1h_firmwareqca6574auSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2025-47329
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.01% / 2.29%
||
7 Day CHG~0.00%
Published-24 Sep, 2025 | 15:33
Updated-26 Feb, 2026 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Release of Invalid Pointer or Reference in Android Core

Memory corruption while handling invalid inputs in application info setup.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6574_firmwareqcs6690sw5100wcd9390sa8255psa8775p_firmwareqca6696_firmwarewsa8832_firmwareqcs6690_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresnapdragon_w5\+_gen_1_wearable_platform_firmwareqam8255pwsa8830_firmwarefastconnect_7800wcn6755wcd9380_firmwaresnapdragon_w5\+_gen_1_wearable_platformsa8770psa8155pqca6595_firmwarewsa8845hwsa8830wcd9390_firmwaresa8195p_firmwaresnapdragon_ar1_gen_1_platformwsa8840_firmwareqca6696qca6574asa8195pwsa8840qca6595au_firmwareqca6574au_firmwaresa9000p_firmwaresa6155p_firmwareqcm6690sw5100pwsa8845h_firmwarewcn7881_firmwarewcd9395wcn6450sa8775pqam8255p_firmwarewcd9380qca6574ausa8770p_firmwareqca6574wcn7861qam8775p_firmwaresnapdragon_8_gen_3_mobile_platform_firmwaresa8255p_firmwarewcd9385_firmwareqam8775pwsa8835sw5100p_firmwarewcn6450_firmwaresa6155pwcd9385qcm6690_firmwarewcn7881qca6595ausa9000pwcn6755_firmwarewsa8845_firmwarewsa8835_firmwarewcn7861_firmwarewsa8832wcd9395_firmwareqca6595snapdragon_ar1_gen_1_platform_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"sw5100_firmwarefastconnect_7800_firmwaresnapdragon_8_gen_3_mobile_platformsa8155p_firmwareqca6574a_firmwarewsa8845Snapdragon
CWE ID-CWE-763
Release of Invalid Pointer or Reference
CVE-2025-47382
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.02% / 3.26%
||
7 Day CHG~0.00%
Published-18 Dec, 2025 | 05:29
Updated-28 Jan, 2026 | 15:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Incorrect Authorization in Boot

Memory corruption while loading an invalid firmware in boot loader.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca6696_firmwaresm6650pqca6797aq_firmwaresa8775pwsa8832srv1lsa6155pwcd9390snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmwaresm4635wcn6450_firmwarefastconnect_6900_firmwareqam8650p_firmwareqmp1000wcn7860_firmwarewcn3950snapdragon_480_5g_mobile_platform_firmwarewcd9385sa8620pwsa8835_firmwarewcn7750_firmwarewcn3980_firmwarewcd9378_firmwarewsa8845qcs6690_firmwareqca8695au_firmwareqca9367_firmwaresa9000p_firmwarewcd9378sa8295p_firmwaresm8735_firmwaresnapdragon_w5\+_gen_1_wearable_platformsw5100p_firmwaresrv1msa7775psxr2350psm6650wsa8845h_firmwareqca6574_firmwareqamsrv1msm8635p_firmwareqca6595au_firmwaresm8850psnapdragon_ar1_gen_1_platform_\"luna1\"qca6688aq_firmwareqcs610_firmwaresa8650p_firmwaresxr2330psnapdragon_695_5g_mobile_platform_firmwarewcd9380_firmwaresnapdragon_ar1_gen_1_platform_firmwareqca9377sm7675p_firmwaresm7675_firmwarewcn6450sa8650pqca6696wcd9395snapdragon_480_5g_mobile_platformsa7775p_firmwarewsa8832_firmwaresnapdragon_4_gen_1_mobile_platform_firmwarewcd9375_firmwareqam8295pqcm6690srv1m_firmwaresm8750p_firmwarewcd9390_firmwarefastconnect_6200_firmwarefastconnect_7800sm7675sa8770p_firmwareqca9377_firmwarewsa8810_firmwareqam8255p_firmwarewcd9370_firmwarewcn7861sm8850sa8770psm7675psm8750pqmp1000_firmwarefastconnect_7800_firmwaresnapdragon_695_5g_mobile_platformqca6574a_firmwaresnapdragon_ar1_gen_1_platform_\"luna1\"_firmwaresm6650_firmwareqam8775pqca9367wcn7860video_collaboration_vc1_platform_firmwareqam8775p_firmwarevideo_collaboration_vc3_platformqca6698aqwcd9380qcm6690_firmwaresm7635snapdragon_8_gen_3_mobile_platformwcd9395_firmwarefastconnect_6200sa8295pqamsrv1hsa6155p_firmwareqam8620pwcn7880sa8255p_firmwaresg6150pqcs6690wcd9370qamsrv1m_firmwareqca6698aq_firmwarewsa8830_firmwarewcn3988wsa8815_firmwaresm7635_firmwarewcn7750qam8295p_firmwarewsa8830snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)sm8850p_firmwaresg6150_firmwareqam8650psxr2330p_firmwaresnapdragon_ar1_gen_1_platformwsa8845hqam8620p_firmwarewcn6650_firmwaresa8155p_firmwareqamsrv1h_firmwaresa8255psm7635p_firmwareqca6595wcn7881qca6574au_firmwareqcs610sw5100_firmwarewcd9385_firmwarewcn6650wcn7881_firmwareqca6595_firmwareqca6574auwcn6755_firmwarewcn6755sa9000pqca6595aufastconnect_6700wsa8815qca6797aqsrv1hfastconnect_6700_firmwareqca8695ausm8635_firmwaresa8195p_firmwaresrv1h_firmwaresnapdragon_8_gen_3_mobile_platform_firmwaresm8635pwcn7861_firmwaresm8850_firmwarevideo_collaboration_vc1_platformsw5100sm6650p_firmwareqca6574asg6150sa8195psxr2350p_firmwaresg6150p_firmwarewsa8835sa8775p_firmwarewcn3980video_collaboration_vc3_platform_firmwarewcd9375sm8635sm7635psnapdragon_w5\+_gen_1_wearable_platform_firmwaresa7255p_firmwarewcn3950_firmwaresa7255pqca6574wsa8840wsa8840_firmwaresnapdragon_4_gen_1_mobile_platformqam8255psm8750_firmwarewsa8845_firmwarefastconnect_6900sa8155psa8620p_firmwaresm8750srv1l_firmwarewcn7880_firmwarewcn3988_firmwaresm4635_firmwaresm8650qqca6688aqsm8735wsa8810sm8650q_firmwaresw5100pSnapdragon
CWE ID-CWE-863
Incorrect Authorization
CVE-2022-40539
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.04% / 11.09%
||
7 Day CHG~0.00%
Published-07 Mar, 2023 | 04:43
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Automotive Android OS

Memory corruption in Automotive Android OS due to improper validation of array index.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa8295psa6155p_firmwarewsa8830sa6150p_firmwaresa8145p_firmwareqcs610sw5100pqcc5100wcn3988_firmwareqca6574ausa6145p_firmwaresa8155p_firmwarewsa8835sa8195pwcn3950_firmwarewsa8810_firmwaresa8150p_firmwarewcd9341_firmwaresw5100wsa8810sa6155pqcs410sw5100p_firmwareqcs610_firmwarewcd9370sa6145pwcd9341qca6696_firmwarewcn3980sa8145pqca6696qam8295pwcn3950wcd9370_firmwaresa8150psa6150pwsa8815sa8155pwsa8830_firmwareqam8295p_firmwarewcn3988wsa8815_firmwarewsa8835_firmwareqca6574au_firmwaresa8195p_firmwaresw5100_firmwareqcs410_firmwarewcn3980_firmwaresa8295p_firmwareqcc5100_firmwareSnapdragonsa6155p_firmwaresa6150p_firmwaresa8145p_firmwareqca6696_firmwarewcd9370_firmwarewcn3988_firmwarewsa8830_firmwaresa6145p_firmwaresa8155p_firmwareqam8295p_firmwarewcn3950_firmwarewsa8815_firmwarewsa8835_firmwarewsa8810_firmwaresa8150p_firmwarewcd9341_firmwareqca6574au_firmwaresa8195p_firmwaresw5100_firmwareqcs410_firmwarewcn3980_firmwaresa8295p_firmwaresw5100p_firmwareqcs610_firmwareqcc5100_firmware
CWE ID-CWE-284
Improper Access Control
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2022-40516
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-3.85% / 88.03%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 05:02
Updated-09 Apr, 2025 | 14:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack-based buffer overflow in Core

Memory corruption in Core due to stack-based buffer overflow.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresd_8cx_gen3_firmwaresa6150p_firmwaresm6250p_firmwareqcs610qca8337qca6431_firmwarewcd9360_firmwaresdx65qca4024_firmwarewcn3950_firmwaresa8150p_firmwareqcs2290qca6595au_firmwaresa6155qca6335csra6620_firmwareqcs605_firmwaresd_675_firmwarecsra6640_firmwaresa415mwcn3998wcd9371_firmwareqam8295pwcn3950qcn6024_firmwaresd720gsm4125sd_8cx_gen2_firmwareqca8386_firmwaresd_8_gen1_5g_firmwareqca8084_firmwareqsm8350_firmwaresd710_firmwareqsm8350sd460_firmwaresm7315_firmwarewcn7850qca6574au_firmwarewcd9375_firmwareqca8081_firmwarewcn3998_firmwaresa6155_firmwareqca6420wcd9360sd680_firmwarewcn3999sd_8cx_gen2qrb5165_firmwareqrb5165m_firmwaresa4155p_firmwaresa8155_firmwareqca4004_firmwareipq6010sd662_firmwareqcs405qca6430wcd9306_firmwarewcd9340sd765gsw5100fsm10056_firmwaresd680qca6436wcn6851sa6155pqcs603_firmwarewcn7851_firmwarewcd9341qca6431qca6696_firmwarewcd9371sd870_firmwaresd750gipq9008_firmwarewcn3910_firmwaresxr2150p_firmwaresd_8cxsa8150pqca4004wsa8830_firmwaresd855_firmwaresd660sd865_5g_firmwaresd712wcn3988sd660_firmwarewcn7850_firmwaresa8195p_firmwareqcn5121sm8475qcn5022_firmwareqcn7606_firmwarewcn6750_firmwaresa8295p_firmwarewcn3991qca8337_firmwarewcd9380_firmwaresw5100pqca8084qca6564ausdx55m_firmwarewcn6856_firmwareipq9008sd670_firmwareqca6574csr8811_firmwarewcd9380qcs410sd690_5g_firmwaresdx50m_firmwaresdx24_firmwareqca8072_firmwareqcn9012_firmwareqca6430_firmwareqcn9274_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980qca6335_firmwareipq6018_firmwareqcs605wcd9340_firmwarewsa8815wcn6850sd7cwcn3910qca6320qca6426_firmwareqca9984ipq6028sd835qcn9024ipq9574_firmwarewcn3980_firmwaresd730sdx55mqcc5100_firmwaresa8295pqca6421_firmwarewcn6740_firmwaresd678_firmwarear8031_firmwareqrb5165wcn6851_firmwareqcs603sd670qcn9024_firmwareqca6564a_firmwareqcm4290_firmwaresd870wcn6855qcn5121_firmwaresw5100p_firmwaresa8540pqcs610_firmwareqsm8250sa6145pipq6018sdxr1ar8031qca6595_firmwareqcs405_firmwaresa8145pmdm9205_firmwareqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwaresd780g_firmwaresdx55sd888_firmwareqcn5021_firmwaresa8155pcsra6640sd675qcs8155_firmwaresa4155psxr2150par8035_firmwareqsm8250_firmwareqcn7606qcm2290wcn3991_firmwaremdm9150_firmwarewsa8830sd678qcn9070sa8145p_firmwareqcs2290_firmwarefsm10056sd7c_firmwarecsrb31024csra6620qca8082qcn9072qca8386qcs4290sd765g_firmwareqca6420_firmwareqca6390_firmwaresd690_5gipq6000sd730_firmwarewcd9370sd675_firmwareqcn5152_firmwareqca6564qca6426wcn3990_firmwareqrb5165n_firmwareqcn9000_firmwareqca9984_firmwareqca9377sd_8cx_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcd9326_firmwaresd662qam8295p_firmwareqcn9011_firmwaresa8155qca8082_firmwareqca6320_firmwaresa9000p_firmwareqcn5122_firmwaresdx55_firmwareqca6595auqcn6023_firmwarewcn3999_firmwaresm7250p_firmwareqca6436_firmwareqrb5165nwcd9306sd778gqca6564au_firmwaresa6155p_firmwareqca6310qcn9274qcs8155wcn7851sa515m_firmwareqcs6490sdxr2_5gqcn5052sa415m_firmwarewcn3988_firmwareqcn9074sa6145p_firmwareqca6421qca8085sd778g_firmwaresm6250sa8195psd712_firmwarewsa8810_firmwaresd765_firmwarewcd9326wcd9335qca8081qcn6023qca6174a_firmwareqcs4290_firmwarewcd9385qca8085_firmwareqcs6490_firmwaresd_8cx_gen3qca6390wcd9375sd750g_firmwareaqt1000ar8035csr8811sm6250_firmwarewsa8815_firmwaresd888_5g_firmwareqcm6490wcn6850_firmwarewsa8835_firmwareqcx315qca6564asa4150pqca8072qcm2290_firmwarewcn3990qcn9000sd_675sd780gsd865_5gqca6595qcc5100sdx24qcn9012sd888wsa8835qcx315_firmwaresa8540p_firmwaresd888_5gsm6250pqca8075_firmwaresc8180xqca6574aipq6005_firmwarewcn6855_firmwareqca6174asm7325pqca6310_firmwarewcn6750mdm9205sa9000pqca6574_firmwaresa515msd855sm4125_firmwaresm7325p_firmwaresd765qca6574a_firmwareqcn5021qcn5152sd768g_firmwareqrb5165msd850_firmwaresm7315sd460qca6391sdxr1_firmwareipq6005aqt1000_firmwaresdx65_firmwareqcm4290csrb31024_firmwareqcm6490_firmwaresdx50mqcn9070_firmwareipq6028_firmwareqcn9011sc8180x_firmwareqca6574ausd710sa8155p_firmwareqcn5122ipq9574wcd9341_firmwarewsa8810mdm9150wcn6856qcn5022sd835_firmwareqca6564_firmwaresd768gipq6010_firmwarewcn6740qca6696sd845_firmwaresa6150pqca8075qcn9022_firmwareqcn6024qcn9022sd845qcn9072_firmwaresm7250pipq6000_firmwaresd720g_firmwaresw5100_firmwareqcn9074_firmwareqcs410_firmwaresd850Snapdragon
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-40529
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-7.1||HIGH
EPSS-0.04% / 10.54%
||
7 Day CHG~0.00%
Published-06 Jun, 2023 | 07:39
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper access control in Kernel

Memory corruption due to improper access control in kernel while processing a mapping request from root process.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qam8255p_firmwaresnapdragon_850_mobile_compute_platform_firmwaresm7325-ae_firmwaresa6150p_firmwaresm6250p_firmwareqcs610sc8180x-ab_firmwareqca6431_firmwareqam8775pwcn3950_firmwaresc8180x\+sdx55sa8150p_firmwaresm4450_firmwareqcs2290qca6595au_firmwaresa6155qca6335sdm712sdm670sm8350csra6620_firmwaresd_675_firmwarecsra6640_firmwareqcs6125_firmwarewcn685x-1sm7350-ab_firmwaresm4375wcn3998sc8180xp-adwcd9371_firmwareqam8295pwcn3950sm4125sd_8_gen1_5g_firmwaresm6375_firmwaresm7150-acqsm8350_firmwareqsm8350sd460_firmwaresm7315_firmwaresm7325-aeqca6574au_firmwaresm4250-aawcd9375_firmwarewcn3998_firmwaresa6155_firmwaresm6225-adqca6420snapdragon_xr2\+_gen_1_platformsnapdragon_auto_5g_modem-rf_firmwaresc8180xp-afsmart_audio_400_platform_firmwarewcn3999sm6225-ad_firmwareqrb5165m_firmwareqrb5165_firmwareqca6698aqsc8180xp-aa_firmwareqcs6125sa4155p_firmwaresa8155_firmwarerobotics_rb3_platform_firmwaresd662_firmwaresm7250-ab_firmwareqca6430robotics_rb3_platformwcd9340sw5100qca6436sa6155pqca6698aq_firmwarewcn685x-1_firmwaresm8150_firmwarewcd9341qam8775p_firmwaresa8255pqca6431qca6696_firmwaresc8180xp-ab_firmwarewcd9371sc8180x-abqca6797aqwcn3910_firmwaresm4350_firmwaresd_8cxsa8150psm8250-ac_firmwarewsa8830_firmwaresd855_firmwaresd865_5g_firmwaresm7225_firmwaresnapdragon_7c\+_gen_3_compute_firmwarewcn3988sm4250-aa_firmwaresa8195p_firmwaresm8475wcn6750_firmwaresm6125_firmwaresa8295p_firmwaresnapdragon_675_mobile_platform_firmwaresm6375wcn3991wcd9380_firmwaressg2125psw5100psnapdragon_w5\+_gen_1_wearable_platformqca6564ausd670_firmwareqca6574snapdragon_7c\+_gen_3_computewcd9380sc8180xp-aaqcs410sm7150-aa_firmwaresxr1230pc-v2x_9150_firmwaresc8180xp-ad_firmwaresc8180x-ac_firmwareqcn9012_firmwareqca6430_firmwarewcd9335_firmwarewcn3980qca6335_firmwaresm7225qcm4325_firmwarewcd9340_firmwarewsa8815sm6150-ac_firmwarewcn3910qcs8250qca6426_firmwaresm4450qca9984sc8180x-adwcn3980_firmwaresd730snapdragon_xr2\+_gen_1_platform_firmwaresnapdragon_x50_5g_modem-rf_system_firmwaresc7180-ac_firmwaresa8295psm7150-aasm6350sm8475_firmwarewcn6740_firmwareqca6421_firmwaresm7125qcs4490_firmwaresnapdragon_xr2_5g_platformar8031_firmwaresm7150-ab_firmwareqrb5165sm8350_firmwaresm6350_firmwareqca6797aq_firmwarewcn785x-1_firmwaresdm710sd670qca6564a_firmwareqcm4290_firmwarewsa8832sc8180xp-ac_firmwaresw5100p_firmwaresa8540pqcs610_firmwareqsm8250sa6145par8031qcs4490qca6595_firmwaresa8145psc8280xp-bbqca6391_firmwaresa4150p_firmwarewcd9370_firmwaresm4350-ac_firmwaresdx55sd888_firmwaresm8250csra6640sa8155psd675ssg2115p_firmwareqcs8155_firmwareqam8255psa4155par8035_firmwareqcm2290qsm8250_firmwarewcn3991_firmwarewsa8830snapdragon_662_mobile_platform_firmwaresxr2230p_firmwaresa8145p_firmwaresm6125sdm712_firmwaresnapdragon_850_mobile_compute_platformqcs2290_firmwareqam8650pwcn785x-5flight_rb5_5g_platformcsra6620flight_rb5_5g_platform_firmwaresc8280xp-bb_firmwaresm7250-ac_firmwareqcs4290qca6420_firmwaresc7180-acqca6390_firmwaresnapdragon_auto_4g_modem_firmwaresd730_firmwarewcd9370sd675_firmwaressg2115pqca6564qca6426sc8280xp-abwcn3990_firmwareqrb5165n_firmwareqca9984_firmwaresm8450sm8250-absd_8cx_firmwarewcd9385_firmwarewcd9326_firmwaresd662qam8295p_firmwaresm7325-afqcn9011_firmwaresa8155snapdragon_x55_5g_modem-rf_systemsa9000p_firmwaresdx55_firmwareqca6595ausm7325-af_firmwarewcn3999_firmwaresm7250p_firmwareqca6436_firmwaresm4350-acqrb5165nsnapdragon_w5\+_gen_1_wearable_platform_firmwareqca6564au_firmwaresa6155p_firmwareqca6310qcs8155sm6225qcs6490qcs8550_firmwaresm8250_firmwarevision_intelligence_300_platform_firmwaresm8250-acwcn3988_firmwareqcn9074sa6145p_firmwareqca6421sm7250-aasm6250c-v2x_9150sa8195psxr1120sdm710_firmwarewsa8810_firmwaresm4375_firmwarevision_intelligence_400_platformsm8450_firmwaresc7180-adwcd9326wcd9335snapdragon_ar2_gen_1_platform_firmwaresa8255p_firmwaresg4150pqcm4490qca6174a_firmwareqcs4290_firmwarewcd9385sxr2130_firmwareqcs6490_firmwaresm7150-absc8180x-acqca6390wcd9375ar8035aqt1000sc8180x\+sdx55_firmwaresm6250_firmwarevision_intelligence_400_platform_firmwaresnapdragon_662_mobile_platformsm8150wsa8815_firmwareqcm6490wsa8835_firmwaresm7350-absxr1120_firmwareqca6564asa4150psg4150p_firmwarewcn785x-1qcm6125_firmwareqcm4325qcm2290_firmwaresnapdragon_845_mobile_platformwcn3990sd_675sd865_5gqca6595sm8350-ac_firmwaresm8150-acqcn9012sd888wsa8835sxr1230p_firmwaresc7180-ad_firmwaresa8540p_firmwaresnapdragon_auto_5g_modem-rfsd_8_gen1_5gsm6250psc8180xp-acsxr2130ssg2125p_firmwareqca6574asmart_audio_400_platformwcn685x-5_firmwaresc8180x-afqca6174asm7325psdm670_firmwareqca6310_firmwaresm7325wcn6750sm7150-ac_firmwaresa9000pqca6574_firmwaresm7250-absd855sm4125_firmwaresm7325p_firmwaresxr2230psnapdragon_xr2_5g_platform_firmwareqca6574a_firmwareqrb5165mwcn785x-5_firmwaresm7315snapdragon_x55_5g_modem-rf_system_firmwarevision_intelligence_300_platformsd460qca6391sm8250-ab_firmwaresc8280xp-ab_firmwareaqt1000_firmwareqcm4490_firmwaresnapdragon_845_mobile_platform_firmwaresnapdragon_auto_4g_modemqcm4290qcm6490_firmwarewsa8832_firmwaresnapdragon_xr1_platformwcn685x-5qcn9011sm6225_firmwaresc8180xp-af_firmwareqca6574ausa8155p_firmwareqcs8250_firmwarewcd9341_firmwareqcm6125wsa8810sm7250-aa_firmwaresc8180x-aa_firmwaresm7250-acsm8150-ac_firmwaresnapdragon_ar2_gen_1_platformsc8180x-aasm8350-acqca6564_firmwareqam8650p_firmwaresnapdragon_675_mobile_platformsc8180x-af_firmwarewcn6740qca6696qcs8550sm4350sm6150-acsm7125_firmwaresnapdragon_x50_5g_modem-rf_systemsa6150psc8180xp-absc8180x-ad_firmwaresm7250psw5100_firmwareqcn9074_firmwareqcs410_firmwaresnapdragon_xr1_platform_firmwaresm7325_firmwareSnapdragon
CWE ID-CWE-284
Improper Access Control
CWE ID-CWE-863
Incorrect Authorization
CVE-2022-33274
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.11% / 29.52%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 05:02
Updated-09 Apr, 2025 | 19:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper validation of array index in Android Core

Memory corruption in android core due to improper validation of array index while returning feature ids after license authentication.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sa6145psa6155p_firmwaresa6150p_firmwaresa8145p_firmwareqca6696_firmwaresa8145pqca6696qam8295psa8150psa6150pqca6574ausa8155psa6145p_firmwaresa8155p_firmwareqam8295p_firmwaresa8195psa8150p_firmwareqca6574au_firmwaresa8195p_firmwaresa6155psa8295p_firmwaresa8295pSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2023-43532
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.05% / 16.59%
||
7 Day CHG~0.00%
Published-06 Feb, 2024 | 05:47
Updated-17 Jun, 2025 | 21:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Untrusted Pointer Dereference in Display

Memory corruption while reading ACPI config through the user mode app.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-fastconnect_7800wcd9380_firmwarewsa8830wcd9385wsa8840_firmwarefastconnect_6900wcd9385_firmwarewsa8845fastconnect_6900_firmwaresc8380xp_firmwarewsa8830_firmwarewsa8835wsa8840wsa8845_firmwaresnapdragon_7c\+_gen_3_compute_firmwarefastconnect_6700_firmwaresnapdragon_7c\+_gen_3_computewsa8835_firmwarewcd9380sc8380xpfastconnect_7800_firmwarewsa8845hfastconnect_6700wsa8845h_firmwaresnapdragon_8cx_gen_3_compute_platformsnapdragon_8cx_gen_3_compute_platform_firmwareSnapdragon
CWE ID-CWE-822
Untrusted Pointer Dereference
CWE ID-CWE-763
Release of Invalid Pointer or Reference
CVE-2022-40532
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.06% / 18.77%
||
7 Day CHG~0.00%
Published-04 Apr, 2023 | 04:46
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer overflow or wraparound in WLAN

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresm7325-ae_firmwaremdm9640_firmwaresm6250p_firmware8994_firmwareipq4028_firmwaresm4250-aam_firmwareqca8337ar9380ipq8173_firmwareqcn5124mdm9645wcn3950_firmwaresc8180x\+sdx55qca6595au_firmwaresa6155mdm8215home_hub_100_platformsd_455_firmwareapq8076qcs6125_firmwaremsm8108sm4375wcn3998wcd9371_firmwaremsm8108_firmwarewcn3950qcn6024_firmwaresm4125immersive_home_316_platform_firmwareqsw8573_firmwaresm6375_firmwarewcn3660bqsm8350_firmwareqsm8350sd460_firmwaresm7315_firmwaresnapdragon_636_mobile_platformwcn3998_firmwareqca8081_firmwareqca6420qcn9002qca9986snapdragon_auto_5g_modem-rf_firmwareipq8070_firmwareqca9367_firmwareipq8065ipq8078a_firmwaresdm450sd_8cx_gen2sa8155_firmwareqca4004_firmwareipq8068qca6430snapdragon_630_mobile_platformqts110wcd9306_firmware8905_firmwarewcd9340qca6698aq_firmwaremsm8209_firmwarewcn685x-1_firmwaremdm9250_firmwareqca9888_firmwareqcn6122sm8150_firmwaresnapdragon_wear_2500_platformqca6696_firmwarewcd9371qca1062qcn5154_firmwaremdm8215_firmwaresm4350_firmwaresd_8cxsa8150pqca4004qca9992_firmwaresd660sd865_5g_firmwaresm7225_firmwaresdm850sd660_firmwareqcn5022_firmwarewcn6750_firmwareqcn7606_firmwaresm6125_firmwareimmersive_home_216_platform_firmwareqca6428_firmwaresm6375qca9985_firmwaresm6115_firmwareipq4018_firmwaressg2125pqca9980_firmwaresdm429wipq8078qca8084qcn9001_firmwareipq81739205_lte_modemsd670_firmwareqca6574apq8053-accsr8811_firmwarewcd9380qcs410qcn5024qca9379_firmwaresxr1230pqca9985qcn9012_firmwaresd626qcn9274_firmwareipq6018_firmwareqcm4325_firmwarewcd9340_firmwarewsa8815sm6150-ac_firmwarepmp8074_firmwareqcn6112qca6584_firmwaresdm429_firmwaresnapdragon_630_mobile_platform_firmwaresm4250-aammdm9215_firmwareipq6028ipq8064sd835pmp8074ipq9574_firmwareqca1990wcn3980_firmwaresd730sa8295p9205_lte_modem_firmwareqca2062_firmwaresm6350wcn6740_firmwareqca6678aqsnapdragon_x65_5g_modem-rf_systemapq8064au_firmwareipq8078_firmwareqcn5054qcs603qca9994sm6350_firmwarewcn785x-1_firmwareqca9980sd670qcn9024_firmwareipq8174_firmwareqcm4290_firmwareqcn7605_firmwaresw5100p_firmwareqcs610_firmwaresa6145pqca9886_firmwarear8031immersive_home_214_platformsd820_firmwareqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwaresdx55qcn5021_firmwaresm8250csra6640ssg2115p_firmwaresnapdragon_x20_lte_modemwcn3660qca9379qcn7606qsm8250_firmwaresdm845_firmwarewsa8830sxr2230p_firmwareqca1062_firmwaresdm712_firmwaresnapdragon_x24_lte_modem_firmwarecsrb31024mdm9628_firmwareflight_rb5_5g_platformmdm9650flight_rb5_5g_platform_firmwareqca8082qca9992qcs4290snapdragon_x20_lte_modem_firmwaremdm9250apq8053-liteqca6420_firmwareqca2064_firmwaresnapdragon_auto_4g_modem_firmwaremdm9310_firmware8994sd675_firmwareqca6564sm6115qca6426wcn3990_firmwareqrb5165n_firmwareqca9984_firmwareqca9377wcd9385_firmwarewcd9326_firmwarewcn3615_firmwareipq8074asm7325-afqcn6102_firmwareapq8094qcn9011_firmwaresa8155snapdragon_x55_5g_modem-rf_systemqca6584qcn5122_firmwaresda\/sdm845_firmwaresdx55_firmwaresnapdragon_208_processor_firmwareqcn6023_firmwarewcn3615sm7250p_firmware8953wcn3610_firmwareqrb5165nwcd9306qca6584ausd778gsnapdragon_x65_5g_modem-rf_system_firmwareapq8053-aa_firmwaresm6225snapdragon_208_processoripq8174qcn5052qca9367apq8092snapdragon_wear_3100_platformsm8250_firmware8976qcn6112_firmwaresm8250-acwcn3988_firmware315_5g_iot_modemqcn9074qm215qca6421qca8085sd778g_firmwaresm7250-aasa8195psxr1120sdm710_firmwaresm4375_firmwarewcd9326wcd9335qcn60238917apq8053-aaqcs4290_firmwareqca8085_firmwaresxr2130_firmwareqcs6490_firmwaresm7150-abqca6390qca9898_firmwarewcd9375aqt1000sc8180x\+sdx55_firmwaresm6250_firmwaresm6150_firmwareapq8092_firmwareipq5010_firmwareipq8074a_firmwaresm8150wsa8815_firmwaresnapdragon_636_mobile_platform_firmwareapq8017sxr1120_firmwareqcm6125_firmwaresnapdragon_x5_lte_modem8937sdm845sd865_5g8953proqca65958937_firmwareipq8065_firmwaresxr1230p_firmwaresnapdragon_835_mobile_platformqcn5154qca8075_firmwaresxr2130snapdragon_wear_4100\+_platformsnapdragon_820__automotive_platform_firmwarewcn685x-5_firmwareqcn6132_firmwareqcn9003_firmwaresdm670_firmwareqca9888qca6310_firmwaresm7325apq8094_firmwareipq8070a_firmwaremdm9615qcs400qca6574_firmwareqca9886sm7325p_firmwaresxr2230psnapdragon_xr2_5g_platform_firmwareqca6175aqca6574a_firmware8953pro_firmwareqrb5165msm7315snapdragon_x55_5g_modem-rf_system_firmwaremdm9310qcn6102snapdragon_auto_4g_modemsnapdragon_632_mobile_platform_firmwarecsrb31024_firmwareqcm6490_firmwarewsa8832_firmwaresnapdragon_xr1_platformqcn9070_firmwarewcn685x-5ipq6028_firmwareipq8072a_firmwareqca9889_firmwareqcn5122mdm9645_firmwaresdx20m_firmwaresm7250-aa_firmwaresm8150-ac_firmwareqcn5022sm8350-acqca6564_firmwareqca1064_firmwarewcn6740sm6150-acsnapdragon_x50_5g_modem-rf_systemqca8075qcn6024qcn9022mdm9615_firmwareqcn9002_firmwareipq6000_firmwareqcs410_firmwaresnapdragon_wear_1300_platformqca6175a_firmwaresdm660_firmwareqts110_firmwaresm7325_firmwaresd_8cx_gen3_firmwareqca2066sa6150p_firmwareqcs610315_5g_iot_modem_firmwareqca6431_firmwarewcd9360_firmwareqca4024_firmwaresnapdragon_wear_2100_platform_firmwareimmersive_home_318_platform_firmwareipq8078aipq5028_firmwaresa8150p_firmwareqcs2290qca6335qca2062sdm670sdm712sm8350csra6620_firmwareqcs605_firmwaresd_675_firmwarecsra6640_firmwareapq5053-aa_firmwarewcn685x-1qcs400_firmwaresm7350-ab_firmwareqca6554a_firmwareqam8295psd_8cx_gen2_firmwareipq8076amdm9628qca8386_firmwaresd_8_gen1_5g_firmwareqca8084_firmwaresm7150-acqca6428sm7325-aeqca6574au_firmwareqcn5164_firmware8976_firmwaresa6155_firmwaresm6225-adwcd9375_firmwaremsm8909wwcd9360snapdragon_xr2\+_gen_1_platformsdx20mqca6438_firmware8909qca6678aq_firmwarewcn3999sm6225-ad_firmwareqrb5165m_firmwareipq5028qrb5165_firmwareipq4029_firmwareqca6698aqqcs6125apq8016_firmwareipq6010sd662_firmwaresm7250-ab_firmwareqcn6132sd626_firmwareqca1990_firmwaresw5100home_hub_100_platform_firmwareqca64368953_firmwaresa6155pqcs603_firmwarewcn3660_firmwarewcd9341ipq8068_firmwareqca2066_firmwarepm8937_firmwareqca6431ipq9008_firmwaresnapdragon_x12_lte_modemwcn3910_firmwaresm8250-ac_firmwarewsa8830_firmwaresd855_firmware8940wcn3988qca6438sa8195p_firmwareqca9898sa8295p_firmwareipq4028wcn3610mdm9640msm8608qca8337_firmwarewcd9380_firmwareipq8072asw5100pmsm8996au_firmwarewcd9330snapdragon_820__automotive_platformipq8076a_firmwaresnapdragon_w5\+_gen_1_wearable_platformqca6564auipq9008qcn5164sdm429qet4101_firmware8920_firmwaresnapdragon_wear_4100\+_platform_firmwareqcn5054_firmwareapq8053-ac_firmwaresm7150-aa_firmwareqca8072_firmwareqca6174qca6430_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980qca6335_firmwaresm7225qsw85738996qcs605sd7cwcn3910qca6320mdm9650_firmwareqca9986_firmwareqca6426_firmwarewcn3660b_firmwarewcn3680qca9984qcn9024snapdragon_xr2\+_gen_1_platform_firmwarewcd9330_firmwareipq8064_firmwaresm7150-aasnapdragon_x50_5g_modem-rf_system_firmwareqca6421_firmwaresm7125snapdragon_xr2_5g_platformar8031_firmwarewcn3680_firmwaresm7150-ab_firmwareqrb5165sm8350_firmwareipq8070sdm660sdm710qca6564a_firmwareapq8053-lite_firmwaresnapdragon_x24_lte_modemwsa8832qsm8250ipq6018sdm439_firmwareqca6595_firmwaresa8145pimmersive_home_214_platform_firmwareqca2064qm215_firmwaresm4350-ac_firmwaresd888_firmwaresa8155psd675qet4101ar8035_firmwareqcm2290snapdragon_632_mobile_platformqcn5024_firmwaresnapdragon_wear_2100_platformqcn9070sa8145p_firmwaresm6125qcs2290_firmwaresdm450_firmwarewcn785x-5sd7c_firmwarecsra6620qcn9072sm7250-ac_firmwareqca83868996_firmwareqca6390_firmwareipq8069_firmwareipq6000qca6174_firmwaresd730_firmware8920wcd9370snapdragon_835_mobile_platform_firmwaressg2115pqcn5152_firmwareqca6584au_firmwareapq8076_firmwareqcn9000_firmwaresm8450sm8250-absd_8cx_firmwareqcn7605immersive_home_216_platformimmersive_home_316_platformimmersive_home_318_platformqca2065sd662qcn5124_firmwareqam8295p_firmwareapq8037qca1064qcn6100_firmwareqca8082_firmwareqca6320_firmwarewcn3680b_firmware8917_firmwareqca6595ausm7325-af_firmwarewcn3999_firmwareqca6436_firmwaresm4350-acsnapdragon_w5\+_gen_1_wearable_platform_firmwareipq5010qca6564au_firmwaresa6155p_firmwareqca6310qcn9274pm8937qcn9001qca9990qcs6490snapdragon_x5_lte_modem_firmwaresa6145p_firmwaresm6250apq8017_firmwarewsa8810_firmwaresm8450_firmwaresnapdragon_ar2_gen_1_platform_firmwaresg4150pqca8081ipq8071aqca6174a_firmwareipq8071a_firmwaresnapdragon_wear_1300_platform_firmwarewcd9385qca2065_firmwaresnapdragon_x12_lte_modem_firmwaresd_8cx_gen3ar8035csr8811sda\/sdm845apq8064au8909_firmwareqcn9100_firmwarewcn3620_firmwaresd820qcm6490wsa8835_firmwarewcn3620sm7350-abqca6564asa4150psg4150p_firmwarewcn785x-1qcm4325qca8072qcm2290_firmwareapq5053-aa8992_firmwarewcn3990qcn9000sd_675qca6554aar9380_firmwaresm8350-ac_firmwaresdm439sm8150-acqcn9012sd888sm6150msm8909w_firmwareqcn6122_firmwaremsm8996ausdm429w_firmwarewsa8835snapdragon_auto_5g_modem-rfsd_8_gen1_5gsm6250pssg2125p_firmwareipq4018qca6574aqca9889qca6174asm7325pipq8074wcn6750qca9994_firmwareqcn9003ipq8076_firmwaresm7150-ac_firmwaresm7250-ab8992sd855sm4125_firmwareipq80768940_firmwareqcn5021ipq8069qcn5152msm8209wcn785x-5_firmwaresd460qca6391sm8250-ab_firmwareaqt1000_firmwaresdm850_firmwareqcn9100qcm4290mdm9215qcn9011sd_455sm6225_firmwareipq8074_firmwareqca6574ausa8155p_firmwareipq9574wcd9341_firmwareqcm6125wsa88108905sm7250-acsnapdragon_ar2_gen_1_platformwcn3680bsd835_firmwareipq6010_firmwaresnapdragon_wear_2500_platform_firmwareqca6696sm4350apq8016msm8608_firmwaresm7125_firmwaresa6150pqcn9022_firmwareqca9990_firmwareapq8037_firmwareipq8070aqcn6100qcn9072_firmwaresm7250psnapdragon_wear_3100_platform_firmwaresw5100_firmwareqcn9074_firmwareipq4029snapdragon_xr1_platform_firmwareSnapdragon
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2022-40530
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.06% / 17.96%
||
7 Day CHG~0.00%
Published-07 Mar, 2023 | 04:43
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Integer overflow to buffer overflow in WLAN

Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-sd_8cx_gen3_firmwareqca2066sa6150p_firmwareqcs610qca8337ipq8173_firmwareqca6431_firmwarewcd9360_firmwaresdx65qcn5124qca4024_firmwarewcn3950_firmwaresc8180x\+sdx55ipq8078asa8150p_firmwareqca6595au_firmwaresa6155qca2062csra6620_firmwaresd_675_firmwarecsra6640_firmwareqcs6125_firmwaresa415mwcn3998qca6554a_firmwarewcd9371_firmwareqam8295pwcn3950qcn6024_firmwaresd_8cx_gen2_firmwareipq8076aqca8386_firmwaresd_8_gen1_5g_firmwareqca8084_firmwareqsm8350_firmwareqsm8350sm7315_firmwarewcn7850qca6574au_firmwareqcn5164_firmwareipq8071wcd9375_firmwareqca8081_firmwarewcn3998_firmwaresa6155_firmwareqca6420wcd9360ipq8070_firmwareipq8078a_firmwareqca6678aq_firmwarewcn3999sd_8cx_gen2qrb5165_firmwareqrb5165m_firmwareipq8072_firmwareqca6698aqqcs6125sa8155_firmwareipq6010qcs405qca6430sdx65mwcd9340qcn6132sd765gqca6436wcn6851sa6155pwcn7851_firmwareqca6698aq_firmwareqca9888_firmwareqcn6122wcd9341qca2066_firmwareqca6431qca6696_firmwarewcd9371sd870_firmwaresd750gqca1062ipq9008_firmwareqcn5154_firmwaresxr2150p_firmwaresd_8cxsa8150pwsa8830_firmwaresd855_firmwaresd865_5g_firmwaresnapdragon_4_gen_1wcn3988wcn7850_firmwaresa8195p_firmwaresm8475qcn5022_firmwareqcn7606_firmwarewcn6750_firmwaresa8295p_firmwareipq5018_firmwarewcn3991qca8337_firmwarewcd9380_firmwaressg2125pipq8072aipq8076a_firmwareipq8078qca8084sdx55m_firmwareipq8173qca6564auwcn6856_firmwareipq9008qcn5164qca6574csr8811_firmwarewcd9380qcn5054_firmwareqcs410qcn5024sd690_5g_firmwaresdx50m_firmwaresxr1230pqca8072_firmwareqcn9012_firmwareqca6430_firmwareqcn9274_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980ipq6018_firmwarewcd9340_firmwarewsa8815wcn6850pmp8074_firmwareqcn6112qca6426_firmwaresd695ipq6028qca9984qcn9024pmp8074ipq9574_firmwarewcn3980_firmwaresd730sdx55msa8295pqca6421_firmwareqca2062_firmwarewcn6740_firmwareqca6678aqsd678_firmwarear8031_firmwareipq8078_firmwareqcn5054qrb5165wcn6851_firmwareipq8070qcn9024_firmwareipq8174_firmwaresd480sd870wsa8832wcn6855qcn7605_firmwareqcs610_firmwareqsm8250sa6145pipq6018sd695_firmwarear8031qca6595_firmwareqcs405_firmwaresa8145pqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwareqca2064sd780g_firmwaresdx55sd888_firmwareqcn5021_firmwaresa8155pcsra6640sd675ssg2115p_firmwaresxr2150par8035_firmwareqsm8250_firmwareqcn7606qcn5024_firmwarewcn3991_firmwarewsa8830sd678qcn9070sxr2230p_firmwaresa8145p_firmwareqca1062_firmwarecsrb31024snapdragon_4_gen_1_firmwarecsra6620qca8082qcn9072qca8386sd765g_firmwareqca6420_firmwareqca6390_firmwareqca2064_firmwaresd690_5gsd730_firmwarewcd9370sd675_firmwaressg2115pipq8072qcn5152_firmwareqca6426qca6584au_firmwarewcn3990_firmwareqrb5165n_firmwareqcn9000_firmwareqca9984_firmwareipq5018sd_8cx_firmwarewcd9385_firmwaresdxr2_5g_firmwareqcn7605ipq8074aqca2065qcn5124_firmwareqam8295p_firmwareqcn6102_firmwareqcn9011_firmwareqca1064sa8155qcn6100_firmwareqca8082_firmwareqcn5122_firmwaresdx55_firmwareqca6595auqcn6023_firmwarewcn3999_firmwaresm7250p_firmwareqca6436_firmwareqrb5165nqca6564au_firmwareqca6584ausd778gsa6155p_firmwareqcn9274ipq8174wcn7851sa515m_firmwareqcs6490sdxr2_5gqcn5052qcn6112_firmwaresa415m_firmwarewcn3988_firmwareqcn9074sa6145p_firmwareqca6421qca8085sd778g_firmwaresa8195pwsa8810_firmwaresd765_firmwarewcd9335qca8081qcn6023ipq8071asdx65m_firmwareipq8071a_firmwarewcd9385qca8085_firmwareqcs6490_firmwareqca2065_firmwaresd_8cx_gen3qca6390wcd9375sd750g_firmwareaqt1000ar8035csr8811sc8180x\+sdx55_firmwareqcn9100_firmwareipq8074a_firmwaresd888_5g_firmwarewsa8815_firmwareqcm6490wcn6850_firmwarewsa8835_firmwareqcx315sa4150pqcm6125_firmwareqca8072wcn3990qcn9000sd_675sd780gqca6554asd865_5gqca6595qcn9012sd888qcn6122_firmwareqcx315_firmwaresxr1230p_firmwarewsa8835sd665_firmwaresd888_5gqcn5154qca8075_firmwaressg2125p_firmwareqca6574awcn6855_firmwareqca9889sm7325pqcn6132_firmwareqca9888ipq8074wcn6750ipq8070a_firmwareipq8076_firmwaresa515mqca6574_firmwaresd855sm7325p_firmwaresd665sxr2230pipq8076sd765qca6574a_firmwareqcn5021sd768g_firmwareqcn5152qrb5165msm7315qca6391aqt1000_firmwareqcn6102qcn9100sdx65_firmwarecsrb31024_firmwareqcm6490_firmwarewsa8832_firmwaresdx50mqcn9070_firmwaresd480_firmwareipq6028_firmwareipq8072a_firmwareqcn9011ipq8074_firmwareqca6574auqca9889_firmwaresa8155p_firmwareqcn5122ipq9574wcd9341_firmwareqcm6125wsa8810wcn6856qcn5022sd768gipq6010_firmwareqca1064_firmwarewcn6740qca6696sa6150pqca8075qcn9022_firmwareqcn6024qcn9022ipq8070aqcn6100qcn9072_firmwaresm7250pipq8071_firmwareqcn9074_firmwareqcs410_firmwareSnapdragon
CWE ID-CWE-680
Integer Overflow to Buffer Overflow
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2022-40540
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.06% / 19.83%
||
7 Day CHG~0.00%
Published-07 Mar, 2023 | 04:43
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer copy without checking the size of input in Linux Kernel

Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwarewsa8830sw5100pwcn7851wcn6851_firmwarewcn6856_firmwarewcn3988_firmwarewsa8835wcd9380sd888_5gsw5100wcn6855wcn6851sw5100p_firmwarewcn7851_firmwarewcn6856wcn6855_firmwarewcd9385wcn3980wcd9385_firmwaresd_8_gen1_5g_firmwarewcn6850wsa8830_firmwarewcn3988sd888_5g_firmwarewcn6850_firmwarewcn7850wcn7850_firmwarewsa8835_firmwaresw5100_firmwaresm8475wcn3980_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2022-40520
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-3.85% / 88.03%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 05:02
Updated-09 Apr, 2025 | 19:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack based buffer overflow in Core

Memory corruption due to stack-based buffer overflow in Core

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresd_8cx_gen3_firmwaremdm9640_firmwaresa6150p_firmwaresm6250p_firmwareqcs610qca8337qca6431_firmwarewcd9360_firmwaresdx65wcn3950_firmwaresa8150p_firmwareqca6595au_firmwaresa6155qca6335sd_455_firmwareqcs605_firmwaresd_675_firmwaresa415mwcn3998wcd9371_firmwareqam8295psd_8cx_gen2_firmwareqcn6024_firmwaresd720gwcn3950sd_8_gen1_5g_firmwareqsm8350_firmwaresd710_firmwareqsm8350sm7315_firmwarewcn7850qca6574au_firmwarewcd9375_firmwareqca8081_firmwaresa6155_firmwarewcn3998_firmwareqca6420wcd9360sd_8cx_gen2qrb5165_firmwareqrb5165m_firmwaresa4155p_firmwaresa8155_firmwareqca4004_firmwareqca6430wcd9306_firmwarewcd9340sd765gfsm10056_firmwareqca6436wcn6851sa6155pqcs603_firmwarewcn7851_firmwarewcd9341qca6431qca6696_firmwarewcd9371sd750gsd870_firmwaresxr2150p_firmwaresd_8cxsa8150pqca4004wsa8830_firmwaresd855_firmwaresd660sd865_5g_firmwaresd712wcn3988sd660_firmwarewcn7850_firmwaresa8195p_firmwaresm8475sa8295p_firmwarewcn6750_firmwaremdm9640wcn3991qca8337_firmwarewcd9380_firmwaremsm8996au_firmwareqca6564ausdx55m_firmwarewcn6856_firmwaresd670_firmwareqca6574wcd9380qcs410sd690_5g_firmwaresdx50m_firmwaresdx24_firmwareqca6430_firmwareqcn9012_firmwarewcd9335_firmwarewcn3980qca6335_firmwareqcs605wcd9340_firmwarewsa8815wcn6850sd7cqca6320mdm9650_firmwareqca6426_firmwaresd835qcn9024wcn3980_firmwaresd730sdx55msa8295pqca6421_firmwarewcn6740_firmwaresd678_firmwareapq8064au_firmwareqrb5165wcn6851_firmwareqcs603sd_636_firmwaresd670qca6564a_firmwareqcn9024_firmwaresd870wcn6855sa8540pqcs610_firmwareqsm8250sa6145psdxr1apq8096auqca6595_firmwaresa8145psdm630_firmwaremdm9205_firmwareqca6391_firmwaresd820_firmwaresa4150p_firmwaresd780g_firmwarewcd9370_firmwaresdx55sd888_firmwaresa8155psd675qcs8155_firmwaresa4155psxr2150par8035_firmwareqsm8250_firmwarewcn3991_firmwaremdm9150_firmwarewsa8830sd678sa8145p_firmwarefsm10056sd7c_firmwarecsrb31024mdm9650sd_636sd765g_firmwareqca6420_firmwareqca6390_firmwaresd690_5gsd730_firmwarewcd9370sd675_firmwareqca6564qca6426qca6584au_firmwarewcn3990_firmwareqrb5165n_firmwareqca9377sd_8cx_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcd9326_firmwareqam8295p_firmwareqcn9011_firmwaresa8155qca6320_firmwaresa9000p_firmwaresdx55_firmwareqca6595ausm7250p_firmwareqca6436_firmwareqrb5165nqca6564au_firmwareqca6584ausa6155p_firmwareqca6310sd778gwcd9306qcs8155sa515m_firmwareqcs6490wcn7851sdxr2_5gsdm630sa415m_firmwarewcn3988_firmwaresa6145p_firmwareqca6421sd712_firmwaresd778g_firmwaresm6250sa8195pwsa8810_firmwaresd765_firmwarewcd9326wcd9335qca8081qca6174a_firmwarewcd9385qcs6490_firmwaresd_8cx_gen3ar8035qca6390sd750g_firmwareapq8064auaqt1000wcd9375sm6250_firmwaresd820qcm6490sd888_5g_firmwarewcn6850_firmwarewsa8815_firmwarewsa8835_firmwareqcx315qca6564asa4150pwcn3990sd_675sd780gsd865_5gqca6595sdx24qcn9012sd888wsa8835qcx315_firmwaremsm8996ausa8540p_firmwaresd888_5gsm6250psc8180xqca6574awcn6855_firmwareqca6174asm7325pqca6310_firmwarewcn6750mdm9205sa515mqca6574_firmwaresa9000psd855sm7325p_firmwaresd765qca6574a_firmwaresd768g_firmwareqrb5165msd850_firmwaresm7315qca6391sdxr1_firmwareaqt1000_firmwaresdx65_firmwarecsrb31024_firmwareqcm6490_firmwaresdx50mqcn9011sc8180x_firmwaresd_455qca6574ausa8155p_firmwaresd710wcd9341_firmwarewsa8810mdm9150wcn6856sd835_firmwareqca6564_firmwaresd768gwcn6740qca6696sd845_firmwaresa6150papq8096au_firmwareqcn6024sd845sm7250psd720g_firmwareqcs410_firmwaresd850Snapdragon
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-40517
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.11% / 28.98%
||
7 Day CHG~0.00%
Published-06 Jan, 2023 | 05:02
Updated-09 Apr, 2025 | 14:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack based buffer overflow in Core

Memory corruption in core due to stack-based buffer overflow

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-qca9377_firmwaresd_8cx_gen3_firmwaresa6150p_firmwaresm6250p_firmwareqcs610qca8337qca6431_firmwarewcd9360_firmwaresdx65qca4024_firmwarewcn3950_firmwaresa8150p_firmwareqcs2290qca6595au_firmwaresa6155qca6335csra6620_firmwareqcs605_firmwaresd_675_firmwarecsra6640_firmwaresa415mwcn3998wcd9371_firmwareqam8295pwcn3950qcn6024_firmwaresd720gsm4125sd_8cx_gen2_firmwareqca8386_firmwareqca8084_firmwareqsm8350_firmwaresd710_firmwareqsm8350sd460_firmwaresm7315_firmwareqca6574au_firmwarewcd9375_firmwareqca8081_firmwarewcn3998_firmwaresa6155_firmwareqca6420wcd9360sd680_firmwarewcn3999sd_8cx_gen2qrb5165_firmwareqrb5165m_firmwaresa4155p_firmwaresa8155_firmwareqca4004_firmwareipq6010sd662_firmwareqcs405qca6430wcd9306_firmwarewcd9340sd765gsw5100fsm10056_firmwaresd680qca6436wcn6851sa6155pqcs603_firmwarewcd9341qca6431qca6696_firmwarewcd9371sd870_firmwaresd750gipq9008_firmwarewcn3910_firmwaresxr2150p_firmwaresd_8cxsa8150pqca4004wsa8830_firmwaresd855_firmwaresd660sd865_5g_firmwaresd712wcn3988sd660_firmwaresa8195p_firmwareqcn5121qcn5022_firmwareqcn7606_firmwarewcn6750_firmwaresa8295p_firmwarewcn3991qca8337_firmwarewcd9380_firmwaresw5100pqca8084qca6564ausdx55m_firmwarewcn6856_firmwareipq9008sd670_firmwareqca6574csr8811_firmwarewcd9380qcs410sd690_5g_firmwaresdx50m_firmwaresdx24_firmwareqca8072_firmwareqcn9012_firmwareqca6430_firmwareqcn9274_firmwareqcn5052_firmwarewcd9335_firmwarewcn3980qca6335_firmwareipq6018_firmwareqcs605wcd9340_firmwarewsa8815wcn6850sd7cwcn3910qca6320qca6426_firmwareqca9984ipq6028sd835qcn9024ipq9574_firmwarewcn3980_firmwaresd730sdx55mqcc5100_firmwaresa8295pqca6421_firmwarewcn6740_firmwaresd678_firmwarear8031_firmwareqrb5165wcn6851_firmwareqcs603sd670qcn9024_firmwareqca6564a_firmwareqcm4290_firmwaresd870wcn6855qcn5121_firmwaresw5100p_firmwaresa8540pqcs610_firmwareqsm8250sa6145pipq6018sdxr1ar8031qca6595_firmwareqcs405_firmwaresa8145pmdm9205_firmwareqca6391_firmwaresa4150p_firmwareqca4024wcd9370_firmwaresd780g_firmwaresdx55sd888_firmwareqcn5021_firmwaresa8155pcsra6640sd675qcs8155_firmwaresa4155psxr2150par8035_firmwareqsm8250_firmwareqcn7606qcm2290wcn3991_firmwaremdm9150_firmwarewsa8830sd678qcn9070sa8145p_firmwareqcs2290_firmwarefsm10056sd7c_firmwarecsrb31024csra6620qca8082qcn9072qca8386qcs4290sd765g_firmwareqca6420_firmwareqca6390_firmwaresd690_5gipq6000sd730_firmwarewcd9370sd675_firmwareqcn5152_firmwareqca6564qca6426wcn3990_firmwareqrb5165n_firmwareqcn9000_firmwareqca9984_firmwareqca9377sd_8cx_firmwarewcd9385_firmwaresdxr2_5g_firmwarewcd9326_firmwaresd662qam8295p_firmwareqcn9011_firmwaresa8155qca8082_firmwareqca6320_firmwaresa9000p_firmwareqcn5122_firmwaresdx55_firmwareqca6595auqcn6023_firmwarewcn3999_firmwaresm7250p_firmwareqca6436_firmwareqrb5165nwcd9306sd778gqca6564au_firmwaresa6155p_firmwareqca6310qcn9274qcs8155sa515m_firmwareqcs6490sdxr2_5gqcn5052sa415m_firmwarewcn3988_firmwareqcn9074sa6145p_firmwareqca6421qca8085sd778g_firmwaresm6250sa8195psd712_firmwarewsa8810_firmwaresd765_firmwarewcd9326wcd9335qca8081qcn6023qca6174a_firmwareqcs4290_firmwarewcd9385qca8085_firmwareqcs6490_firmwaresd_8cx_gen3qca6390wcd9375sd750g_firmwareaqt1000ar8035csr8811sm6250_firmwarewsa8815_firmwaresd888_5g_firmwareqcm6490wcn6850_firmwarewsa8835_firmwareqcx315qca6564asa4150pqca8072qcm2290_firmwarewcn3990qcn9000sd_675sd780gsd865_5gqca6595qcc5100sdx24qcn9012sd888wsa8835qcx315_firmwaresa8540p_firmwaresd888_5gsm6250pqca8075_firmwaresc8180xqca6574aipq6005_firmwarewcn6855_firmwareqca6174asm7325pqca6310_firmwarewcn6750mdm9205sa9000pqca6574_firmwaresa515msd855sm4125_firmwaresm7325p_firmwaresd765qca6574a_firmwareqcn5021qcn5152sd768g_firmwareqrb5165msd850_firmwaresm7315sd460qca6391sdxr1_firmwareipq6005aqt1000_firmwaresdx65_firmwareqcm4290csrb31024_firmwareqcm6490_firmwaresdx50mqcn9070_firmwareipq6028_firmwareqcn9011sc8180x_firmwareqca6574ausd710sa8155p_firmwareqcn5122ipq9574wcd9341_firmwarewsa8810mdm9150wcn6856qcn5022sd835_firmwareqca6564_firmwaresd768gipq6010_firmwarewcn6740qca6696sd845_firmwaresa6150pqca8075qcn9022_firmwareqcn6024qcn9022sd845qcn9072_firmwaresm7250pipq6000_firmwaresd720g_firmwaresw5100_firmwareqcn9074_firmwareqcs410_firmwaresd850Snapdragon
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-40534
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-8.4||HIGH
EPSS-0.04% / 13.46%
||
7 Day CHG~0.00%
Published-05 Sep, 2023 | 06:23
Updated-27 Feb, 2025 | 21:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Improper Validation of Array Index in Audio

Memory corruption due to improper validation of array index in Audio.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcn685x-5_firmwarewcd9380_firmwarewsa8830wcn685x-1_firmwarewcd9385sxr2230p_firmwarewcn685x-1sw5100pwsa8832_firmwaresnapdragon_w5\+_gen_1_wearable_platformwcd9385_firmwarewcn785x-5wcn685x-5wcn785x-1_firmwaresxr2230pwsa8830_firmwarewsa8835wsa8835_firmwarewcd9380sw5100wsa8832sw5100_firmwarewcn785x-5_firmwaresw5100p_firmwarewcn785x-1snapdragon_w5\+_gen_1_wearable_platform_firmwareSnapdragon
CWE ID-CWE-129
Improper Validation of Array Index
CVE-2023-43515
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.6||MEDIUM
EPSS-0.05% / 14.60%
||
7 Day CHG~0.00%
Published-01 Apr, 2024 | 15:05
Updated-13 Jan, 2025 | 21:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer copy without checking size of input (Classic buffer overflow) in HLOS

Memory corruption in HLOS while running kernel address sanitizers (syzkaller) on tmecom with DEBUG_FS enabled.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wsa8830_firmwarewcd9380fastconnect_6900wsa8835fastconnect_7800snapdragon_8_gen_1_mobilewsa8830fastconnect_7800_firmwarewcd9380_firmwarefastconnect_6900_firmwarewsa8835_firmwaresnapdragon_8_gen_1_mobile_firmwareSnapdragon
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2022-40524
Matching Score-8
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-8
Assigner-Qualcomm, Inc.
CVSS Score-6.7||MEDIUM
EPSS-0.02% / 5.05%
||
7 Day CHG~0.00%
Published-05 Sep, 2023 | 06:23
Updated-03 Aug, 2024 | 12:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Buffer over-read in Modem

Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service.

Action-Not Available
Vendor-Qualcomm Technologies, Inc.
Product-wcd9380_firmwarewsa8830sa6150p_firmwaresa8145p_firmwaresw5100psd865_5gqcc5100sdx55m_firmwarewsa8835wcd9380sa8150p_firmwareqca6420_firmwareqca6595au_firmwareqca6390_firmwareqca6426qca6430_firmwarewcn3980wcn3998sdxr2_5g_firmwaresd855wcn3660bwcn6850wsa8815qca6426_firmwarewcn3660b_firmwareqca6574au_firmwarewcn3680b_firmwareqca6595auwcn3998_firmwarewcn3980_firmwareqca6391sdx55mqca6420qca6436_firmwareqcc5100_firmwareaqt1000_firmwaresa6155p_firmwaresdxr2_5gwcn6851_firmwarewcn3988_firmwareqca6430qca6574ausa6145p_firmwaresa8155p_firmwaresa8195pwsa8810_firmwarewcd9341_firmwaresw5100sd870wsa8810qca6436wcn6851sa6155psw5100p_firmwaresa6145pwcn3680bwcd9341qca6696_firmwaresa8145psd870_firmwareqca6696qca6391_firmwareqca6390aqt1000sa8150psa6150psa8155pwsa8830_firmwaresd855_firmwaresd865_5g_firmwarewcn3988wcn6850_firmwarewsa8815_firmwarewsa8835_firmwaresa8195p_firmwaresw5100_firmwareSnapdragon
CWE ID-CWE-126
Buffer Over-read
CWE ID-CWE-125
Out-of-bounds Read
  • Previous
  • 1
  • 2
  • ...
  • 11
  • 12
  • 13
  • ...
  • 46
  • 47
  • Next
Details not found