CVE-2025-47389

Received Received - Intake

Integer Overflow Causes Memory Corruption in Qualcomm Attestation Module

Publication date: 2026-04-06

Last updated on: 2026-04-08

Assigner: Qualcomm, Inc.

Description

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-04-06

Last Modified

2026-04-08

Generated

2026-06-16

AI Q&A

2026-04-06

EPSS Evaluated

2026-06-15

NVD

CVE-2025-47389

EUVD

EUVD-2025-209224

Affected Vendors & Products

Vendor	Product	Version / Range
qualcomm	ar8035_firmware	*
qualcomm	cologne_firmware	*
qualcomm	csra6620_firmware	*
qualcomm	csra6640_firmware	*
qualcomm	fastconnect_6200_firmware	*
qualcomm	snapdragon_x35_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_x53_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_x55_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_x72_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_x75_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_xr2+_gen_1_platform_firmware	*
qualcomm	snapdragon_xr2_5g_platform_firmware	*
qualcomm	srv1h_firmware	*
qualcomm	srv1l_firmware	*
qualcomm	srv1m_firmware	*
qualcomm	sw6100_firmware	*
qualcomm	sw6100p_firmware	*
qualcomm	sxr2330p_firmware	*
qualcomm	sxr2350p_firmware	*
qualcomm	themisto_firmware	*
qualcomm	video_collaboration_vc1_platform_firmware	*
qualcomm	video_collaboration_vc3_platform_firmware	*
qualcomm	wcd9335_firmware	*
qualcomm	wcd9340_firmware	*
qualcomm	wcd9370_firmware	*
qualcomm	wcd9375_firmware	*
qualcomm	wcd9378_firmware	*
qualcomm	wcd9378c_firmware	*
qualcomm	wcd9380_firmware	*
qualcomm	wcd9385_firmware	*
qualcomm	wcd9390_firmware	*
qualcomm	wcd9395_firmware	*
qualcomm	wcn3910_firmware	*
qualcomm	wcn3950_firmware	*
qualcomm	wcn3980_firmware	*
qualcomm	wcn3988_firmware	*
qualcomm	wcn6450_firmware	*
qualcomm	wcn6650_firmware	*
qualcomm	wcn6755_firmware	*
qualcomm	wcn7860_firmware	*
qualcomm	wcn7861_firmware	*
qualcomm	wcn7880_firmware	*
qualcomm	wcn7881_firmware	*
qualcomm	wsa8810_firmware	*
qualcomm	wsa8815_firmware	*
qualcomm	fastconnect_6700_firmware	*
qualcomm	fastconnect_6800_firmware	*
qualcomm	fastconnect_6900_firmware	*
qualcomm	fastconnect_7800_firmware	*
qualcomm	fwa_gen_3_ultra_firmware	*
qualcomm	g2_gen_1_firmware	*
qualcomm	iq-615_firmware	*
qualcomm	iq-8275_firmware	*
qualcomm	iq-8300_firmware	*
qualcomm	iq-9075_firmware	*
qualcomm	iq-9100_firmware	*
qualcomm	lemans_au_lgit_firmware	*
qualcomm	lemansau_firmware	*
qualcomm	milos_firmware	*
qualcomm	monaco_iot_firmware	*
qualcomm	netrani_firmware	*
qualcomm	orne_firmware	*
qualcomm	palawan25_firmware	*
qualcomm	pandeiro_firmware	*
qualcomm	qam8255p_firmware	*
qualcomm	qam8295p_firmware	*
qualcomm	qam8397p_firmware	*
qualcomm	qam8620p_firmware	*
qualcomm	qamsrv1h_firmware	*
qualcomm	qamsrv1m_firmware	*
qualcomm	qca6174a_firmware	*
qualcomm	qca6391_firmware	*
qualcomm	qca6574_firmware	*
qualcomm	qca6574a_firmware	*
qualcomm	qca6574au_firmware	*
qualcomm	qca6584au_firmware	*
qualcomm	qca6595_firmware	*
qualcomm	qca6595au_firmware	*
qualcomm	qca6678aq_firmware	*
qualcomm	qca6688aq_firmware	*
qualcomm	qca6696_firmware	*
qualcomm	qca6698aq_firmware	*
qualcomm	qca6797aq_firmware	*
qualcomm	qca8081_firmware	*
qualcomm	qca8337_firmware	*
qualcomm	wsa8830_firmware	*
qualcomm	wsa8832_firmware	*
qualcomm	wsa8835_firmware	*
qualcomm	wsa8840_firmware	*
qualcomm	wsa8845_firmware	*
qualcomm	wsa8845h_firmware	*
qualcomm	x2000077_firmware	*
qualcomm	x2000086_firmware	*
qualcomm	x2000090_firmware	*
qualcomm	x2000092_firmware	*
qualcomm	x2000094_firmware	*
qualcomm	xg101002_firmware	*
qualcomm	xg101032_firmware	*
qualcomm	xg101039_firmware	*
qualcomm	xrv7209_firmware	*
qualcomm	xrv9209_firmware	*
qualcomm	qca8695au_firmware	*
qualcomm	qcc710_firmware	*
qualcomm	qcm2290_firmware	*
qualcomm	qcm5430_firmware	*
qualcomm	qcm6125_firmware	*
qualcomm	qcm6490_firmware	*
qualcomm	qcn6224_firmware	*
qualcomm	qcn6274_firmware	*
qualcomm	qcs2290_firmware	*
qualcomm	qep8111_firmware	*
qualcomm	qfw7114_firmware	*
qualcomm	qfw7124_firmware	*
qualcomm	qln1083bd_firmware	*
qualcomm	qln1086bd_firmware	*
qualcomm	qmp1000_firmware	*
qualcomm	qpa1083bd_firmware	*
qualcomm	qpa1086bd_firmware	*
qualcomm	qxm1083_firmware	*
qualcomm	qxm1086_firmware	*
qualcomm	qxm1093_firmware	*
qualcomm	qxm1094_firmware	*
qualcomm	qxm1095_firmware	*
qualcomm	qxm1096_firmware	*
qualcomm	robotics_rb2_platform_firmware	*
qualcomm	sa6145p_firmware	*
qualcomm	sa6150p_firmware	*
qualcomm	sa6155p_firmware	*
qualcomm	sa7255p_firmware	*
qualcomm	sa7775p_firmware	*
qualcomm	sa8145p_firmware	*
qualcomm	sa8150p_firmware	*
qualcomm	sa8155p_firmware	*
qualcomm	sa8195p_firmware	*
qualcomm	sa8255p_firmware	*
qualcomm	sa8295p_firmware	*
qualcomm	sa8540p_firmware	*
qualcomm	sa8620p_firmware	*
qualcomm	sa8770p_firmware	*
qualcomm	sa9000p_firmware	*
qualcomm	sar1165p_firmware	*
qualcomm	sc8380xp_firmware	*
qualcomm	sd865_5g_firmware	*
qualcomm	sm6650p_firmware	*
qualcomm	sm7325p_firmware	*
qualcomm	sm7435_firmware	*
qualcomm	sm7635p_firmware	*
qualcomm	sm7675_firmware	*
qualcomm	sm7675p_firmware	*
qualcomm	sm8635_firmware	*
qualcomm	sm8635p_firmware	*
qualcomm	sm8650q_firmware	*
qualcomm	sm8750p_firmware	*
qualcomm	snapdragon_4_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_4_gen_2_mobile_platform_firmware	*
qualcomm	snapdragon_460_mobile_platform_firmware	*
qualcomm	snapdragon_480+_5g_mobile_platform_firmware	*
qualcomm	snapdragon_480_5g_mobile_platform_firmware	*
qualcomm	snapdragon_6_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_6_gen_3_mobile_platform_firmware	*
qualcomm	snapdragon_6_gen_4_mobile_platform_firmware	*
qualcomm	snapdragon_662_mobile_platform_firmware	*
qualcomm	snapdragon_690_5g_mobile_platform_firmware	*
qualcomm	snapdragon_695_5g_mobile_platform_firmware	*
qualcomm	snapdragon_778g+_5g_mobile_platform_firmware	*
qualcomm	snapdragon_778g_5g_mobile_platform_firmware	*
qualcomm	snapdragon_782g_mobile_platform_firmware	*
qualcomm	snapdragon_7c+_gen_3_compute_firmware	*
qualcomm	snapdragon_7s_gen_3_mobile_platform_firmware	*
qualcomm	snapdragon_8_elite_firmware	*
qualcomm	snapdragon_8_elite_gen_5_firmware	*
qualcomm	snapdragon_8_gen_3_mobile_platform_firmware	*
qualcomm	snapdragon_865+_5g_mobile_platform_firmware	*
qualcomm	snapdragon_865_5g_mobile_platform_firmware	*
qualcomm	snapdragon_870_5g_mobile_platform_firmware	*
qualcomm	snapdragon_888+_5g_mobile_platform_firmware	*
qualcomm	snapdragon_888_5g_mobile_platform_firmware	*
qualcomm	snapdragon_ar1+_gen_1_platform_firmware	*
qualcomm	snapdragon_ar1_gen_1_platform_firmware	*
qualcomm	snapdragon_auto_5g_modem-rf_gen_2_firmware	*
qualcomm	snapdragon_x32_5g_modem-rf_system_firmware	*

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-120	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

Attack-Flow Graph

Executive Summary

This vulnerability involves memory corruption that occurs when a buffer copy operation fails due to an integer overflow during the generation of an attestation report.

Impact Analysis

The vulnerability can lead to serious impacts including high confidentiality, integrity, and availability risks as indicated by its CVSS score. Exploiting this memory corruption could allow an attacker with limited privileges and local access to compromise the system.

Hi! I’m here to help you understand CVE-2025-47389. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2025-47389

Integer Overflow Causes Memory Corruption in Qualcomm Attestation Module

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart