CVE-2025-47351
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-47351, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-10-09

Last updated on: 2025-11-05

Assigner: Qualcomm, Inc.

Description

Memory corruption while processing user buffers.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-10-09
Last Modified
2025-11-05
Generated
2026-07-06
AI Q&A
2025-10-09
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 56 associated CPEs
Vendor Product Version / Range
qualcomm fastconnect_6200_firmware *
qualcomm fastconnect_6200 *
qualcomm fastconnect_6700_firmware *
qualcomm fastconnect_6700 *
qualcomm fastconnect_6900_firmware *
qualcomm fastconnect_6900 *
qualcomm fastconnect_7800_firmware *
qualcomm fastconnect_7800 *
qualcomm sg6150_firmware *
qualcomm sg6150 *
qualcomm sg6150p_firmware *
qualcomm sg6150p *
qualcomm sm8750_firmware *
qualcomm sm8750 *
qualcomm sm8750p_firmware *
qualcomm sm8750p *
qualcomm sm8850_firmware *
qualcomm sm8850 *
qualcomm sm8850p_firmware *
qualcomm sm8850p *
qualcomm wcd9370_firmware *
qualcomm wcd9370 *
qualcomm wcd9375_firmware *
qualcomm wcd9375 *
qualcomm wcd9385_firmware *
qualcomm wcd9385 *
qualcomm wcd9395_firmware *
qualcomm wcd9395 *
qualcomm wcn3950_firmware *
qualcomm wcn3950 *
qualcomm wcn3988_firmware *
qualcomm wcn3988 *
qualcomm wcn7860_firmware *
qualcomm wcn7860 *
qualcomm wcn7861_firmware *
qualcomm wcn7861 *
qualcomm wcn7880_firmware *
qualcomm wcn7880 *
qualcomm wcn7881_firmware *
qualcomm wcn7881 *
qualcomm wsa8810_firmware *
qualcomm wsa8810 *
qualcomm wsa8815_firmware *
qualcomm wsa8815 *
qualcomm wsa8830_firmware *
qualcomm wsa8830 *
qualcomm wsa8832_firmware *
qualcomm wsa8832 *
qualcomm wsa8835_firmware *
qualcomm wsa8835 *
qualcomm wsa8840_firmware *
qualcomm wsa8840 *
qualcomm wsa8845_firmware *
qualcomm wsa8845 *
qualcomm wsa8845h_firmware *
qualcomm wsa8845h *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-190 The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a memory corruption issue that occurs when processing user buffers. It means that the software improperly handles data provided by users, which can lead to unexpected behavior or crashes.

Impact Analysis

The vulnerability can lead to severe impacts including high confidentiality, integrity, and availability risks. An attacker with limited privileges could exploit this to corrupt memory, potentially causing system crashes, data breaches, or unauthorized data modification.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-47351. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart