CVE-2025-47385
Awaiting Analysis Awaiting Analysis - Queue
Memory Corruption in Qualcomm TEE Due to Privilege Bypass

Publication date: 2026-03-02

Last updated on: 2026-03-05

Assigner: Qualcomm, Inc.

Description
Memory Corruption when accessing trusted execution environment without proper privilege check.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-02
Last Modified
2026-03-05
Generated
2026-06-16
AI Q&A
2026-03-02
EPSS Evaluated
2026-06-15
NVD
CVE-2025-47385
EUVD
EUVD-2025-208192
Affected Vendors & Products
Showing 94 associated CPEs
Vendor Product Version / Range
qualcomm sa8295p_firmware *
qualcomm sa8620p_firmware *
qualcomm sa8770p_firmware *
qualcomm sa9000p_firmware *
qualcomm sar1165p_firmware *
qualcomm sar1250p_firmware *
qualcomm sar2230p_firmware *
qualcomm sm7435_firmware *
qualcomm sm8750p_firmware *
qualcomm snapdragon_4_gen_1_mobile_platform_firmware *
qualcomm snapdragon_4_gen_2_mobile_platform_firmware *
qualcomm snapdragon_480_5g_mobile_platform_firmware *
qualcomm snapdragon_480+_5g_mobile_platform_firmware *
qualcomm snapdragon_6_gen_1_mobile_platform_firmware *
qualcomm snapdragon_6_gen_3_mobile_platform_firmware *
qualcomm snapdragon_6_gen_4_mobile_platform_firmware *
qualcomm snapdragon_695_5g_mobile_platform_firmware *
qualcomm snapdragon_7s_gen_3_mobile_platform_firmware *
qualcomm snapdragon_8_elite_firmware *
qualcomm snapdragon_ar1+_gen_1_platform_firmware *
qualcomm snapdragon_w5+_gen_1_wearable_platform_firmware *
qualcomm srv1h_firmware *
qualcomm srv1m_firmware *
qualcomm sw5100_firmware *
qualcomm sw5100p_firmware *
qualcomm sxr2330p_firmware *
qualcomm sxr2350p_firmware *
qualcomm wcd9370_firmware *
qualcomm wcd9375_firmware *
qualcomm wcd9378_firmware *
qualcomm wcd9380_firmware *
qualcomm wcd9385_firmware *
qualcomm wcd9395_firmware *
qualcomm wcn3950_firmware *
qualcomm wcn3988_firmware *
qualcomm wcn6450_firmware *
qualcomm wcn6755_firmware *
qualcomm wcn7860_firmware *
qualcomm wcn7861_firmware *
qualcomm wcn7880_firmware *
qualcomm fastconnect_6200_firmware *
qualcomm fastconnect_6700_firmware *
qualcomm fastconnect_6900_firmware *
qualcomm fastconnect_7800_firmware *
qualcomm g2_gen_1_firmware *
qualcomm lemans_au_lgit_firmware *
qualcomm lemansau_firmware *
qualcomm milos_firmware *
qualcomm netrani_firmware *
qualcomm orne_firmware *
qualcomm palawan25_firmware *
qualcomm pandeiro_firmware *
qualcomm qam8255p_firmware *
qualcomm qam8295p_firmware *
qualcomm qamsrv1h_firmware *
qualcomm qamsrv1m_firmware *
qualcomm qca6574_firmware *
qualcomm qca6574a_firmware *
qualcomm qca6574au_firmware *
qualcomm qca6595_firmware *
qualcomm qca6595au_firmware *
qualcomm qca6688aq_firmware *
qualcomm qca6696_firmware *
qualcomm qca6698aq_firmware *
qualcomm qca6797aq_firmware *
qualcomm qca8695au_firmware *
qualcomm qca9367_firmware *
qualcomm qca9377_firmware *
qualcomm qln1083bd_firmware *
qualcomm qln1086bd_firmware *
qualcomm qmp1000_firmware *
qualcomm qpa1083bd_firmware *
qualcomm qpa1086bd_firmware *
qualcomm qxm1083_firmware *
qualcomm qxm1086_firmware *
qualcomm qxm1093_firmware *
qualcomm qxm1094_firmware *
qualcomm qxm1095_firmware *
qualcomm qxm1096_firmware *
qualcomm sa6155p_firmware *
qualcomm sa7255p_firmware *
qualcomm sa7775p_firmware *
qualcomm sa8155p_firmware *
qualcomm sa8195p_firmware *
qualcomm sa8255p_firmware *
qualcomm wcn7881_firmware *
qualcomm wsa8810_firmware *
qualcomm wsa8815_firmware *
qualcomm wsa8830_firmware *
qualcomm wsa8832_firmware *
qualcomm wsa8835_firmware *
qualcomm wsa8840_firmware *
qualcomm wsa8845_firmware *
qualcomm wsa8845h_firmware *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-1262 The product uses memory-mapped I/O registers that act as an interface to hardware functionality from software, but there is improper access control to those registers.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

I don't know

Impact Analysis

Exploitation of this vulnerability can lead to high impact on confidentiality, integrity, and availability of the affected system, as indicated by the CVSS score. This means an attacker with limited privileges could cause significant damage or gain unauthorized access.

Detection Guidance

I don't know

Compliance Impact

I don't know

Executive Summary

This vulnerability involves memory corruption that occurs when accessing the trusted execution environment without performing the proper privilege checks.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-47385. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart