CVE-2025-47336
Analyzed Analyzed - Analysis Complete

BaseFortify

Vulnerability report for CVE-2025-47336, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-01-07

Last updated on: 2026-01-27

Assigner: Qualcomm, Inc.

Description

Memory corruption while performing sensor register read operations.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-01-07
Last Modified
2026-01-27
Generated
2026-07-06
AI Q&A
2026-01-07
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 36 associated CPEs
Vendor Product Version / Range
qualcomm wcd9378_firmware *
qualcomm wcd9378 *
qualcomm wcd9395_firmware *
qualcomm wcd9395 *
qualcomm wcn7750_firmware *
qualcomm wcn7750 *
qualcomm wcn7860_firmware *
qualcomm wcn7860 *
qualcomm wcn7861_firmware *
qualcomm wcn7861 *
qualcomm wcn7880_firmware *
qualcomm wcn7880 *
qualcomm wcn7881_firmware *
qualcomm wcn7881 *
qualcomm wsa8830_firmware *
qualcomm wsa8830 *
qualcomm wsa8832_firmware *
qualcomm wsa8832 *
qualcomm wsa8835_firmware *
qualcomm wsa8835 *
qualcomm wsa8840_firmware *
qualcomm wsa8840 *
qualcomm wsa8845_firmware *
qualcomm wsa8845 *
qualcomm wsa8845h_firmware *
qualcomm wsa8845h *
qualcomm fastconnect_7800_firmware *
qualcomm fastconnect_7800 *
qualcomm qmp1000_firmware *
qualcomm qmp1000 *
qualcomm sm8735_firmware *
qualcomm sm8735 *
qualcomm sm8750_firmware *
qualcomm sm8750 *
qualcomm sm8750p_firmware *
qualcomm sm8750p *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-416 The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a memory corruption issue that occurs during sensor register read operations.

Impact Analysis

The vulnerability can lead to high impact on confidentiality, integrity, and availability of the affected system, as indicated by the CVSS score, potentially allowing an attacker with high privileges to exploit it.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-47336. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart