CVE-2025-47404

Awaiting Analysis Awaiting Analysis - Queue

Memory Corruption in Qualcomm Chipset Firmware

Publication date: 2026-05-04

Last updated on: 2026-05-06

Assigner: Qualcomm, Inc.

Description

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-05-04

Last Modified

2026-05-06

Generated

2026-05-07

AI Q&A

2026-05-05

EPSS Evaluated

2026-05-05

NVD

CVE-2025-47404

Affected Vendors & Products

Vendor	Product	Version / Range
qualcomm	qca8695au_firmware	*
qualcomm	qca9367_firmware	*
qualcomm	qca9377_firmware	*
qualcomm	qcc710_firmware	*
qualcomm	qcm2290_firmware	*
qualcomm	qcm4325_firmware	*
qualcomm	qcm5430_firmware	*
qualcomm	qcm6125_firmware	*
qualcomm	qcm6490_firmware	*
qualcomm	qcn6224_firmware	*
qualcomm	qcn6274_firmware	*
qualcomm	qcn9011_firmware	*
qualcomm	qcn9012_firmware	*
qualcomm	qcs2290_firmware	*
qualcomm	qcs4290_firmware	*
qualcomm	qcs6690_firmware	*
qualcomm	qcs8550_firmware	*
qualcomm	qep8111_firmware	*
qualcomm	qfw7114_firmware	*
qualcomm	qfw7124_firmware	*
qualcomm	qrb5165m_firmware	*
qualcomm	qrb5165n_firmware	*
qualcomm	215_mobile_firmware	*
qualcomm	video_collaboration_vc1_firmware	*
qualcomm	video_collaboration_vc3_firmware	*
qualcomm	video_collaboration_vc5_firmware	*
qualcomm	robotics_rb2_firmware	*
qualcomm	robotics_rb5_firmware	*
qualcomm	sa2150p_firmware	*
qualcomm	sa4150p_firmware	*
qualcomm	sa4155p_firmware	*
qualcomm	sa6145p_firmware	*
qualcomm	sa6150p_firmware	*
qualcomm	sa6155_firmware	*
qualcomm	sa6155p_firmware	*
qualcomm	sa7255p_firmware	*
qualcomm	sa7775p_firmware	*
qualcomm	sa8145p_firmware	*
qualcomm	sa8150p_firmware	*
qualcomm	sa8155_firmware	*
qualcomm	5g_fixed_wireless_access_firmware	*
qualcomm	ar8031_firmware	*
qualcomm	ar8035_firmware	*
qualcomm	c-v2x_9150_firmware	*
qualcomm	csra6620_firmware	*
qualcomm	csra6640_firmware	*
qualcomm	fastconnect_6200_firmware	*
qualcomm	fastconnect_6700_firmware	*
qualcomm	fastconnect_6800_firmware	*
qualcomm	fastconnect_6900_firmware	*
qualcomm	fastconnect_7800_firmware	*
qualcomm	flight_rb5_5g_firmware	*
qualcomm	fwa_gen_3_ultra_firmware	*
qualcomm	g1_gen_1_firmware	*
qualcomm	g3x_gen_2_firmware	*
qualcomm	kalpeni_firmware	*
qualcomm	lemans_au_lgit_firmware	*
qualcomm	lemansau_firmware	*
qualcomm	mdm9250_firmware	*
qualcomm	mdm9628_firmware	*
qualcomm	milos_firmware	*
qualcomm	milos_iot_firmware	*
qualcomm	qam8255p_firmware	*
qualcomm	qam8295p_firmware	*
qualcomm	qamsrv1h_firmware	*
qualcomm	qamsrv1m_firmware	*
qualcomm	qca2066_firmware	*
qualcomm	qca6174a_firmware	*
qualcomm	qca6391_firmware	*
qualcomm	qca6564a_firmware	*
qualcomm	qca6564au_firmware	*
qualcomm	qca6574_firmware	*
qualcomm	qca6574a_firmware	*
qualcomm	qca6574au_firmware	*
qualcomm	qca6584au_firmware	*
qualcomm	qca6595_firmware	*
qualcomm	qca6595au_firmware	*
qualcomm	qca6678aq_firmware	*
qualcomm	qca6688aq_firmware	*
qualcomm	qca6696_firmware	*
qualcomm	qca6698aq_firmware	*
qualcomm	qca6698au_firmware	*
qualcomm	qca6797aq_firmware	*
qualcomm	qca8081_firmware	*
qualcomm	qca8337_firmware	*
qualcomm	wcd9390_firmware	*
qualcomm	wcd9395_firmware	*
qualcomm	wcn3615_firmware	*
qualcomm	wcn3660b_firmware	*
qualcomm	wcn3680b_firmware	*
qualcomm	wcn3910_firmware	*
qualcomm	wcn3950_firmware	*
qualcomm	wcn3980_firmware	*
qualcomm	wcn3988_firmware	*
qualcomm	wcn3990_firmware	*
qualcomm	wcn6450_firmware	*
qualcomm	wcn6650_firmware	*
qualcomm	wcn6755_firmware	*
qualcomm	wcn7861_firmware	*
qualcomm	wcn7881_firmware	*
qualcomm	wsa8810_firmware	*
qualcomm	wsa8815_firmware	*
qualcomm	wsa8830_firmware	*
qualcomm	wsa8832_firmware	*
qualcomm	wsa8835_firmware	*
qualcomm	wsa8840_firmware	*
qualcomm	wsa8845_firmware	*
qualcomm	wsa8845h_firmware	*
qualcomm	sa8155p_firmware	*
qualcomm	sa8195p_firmware	*
qualcomm	sa8255p_firmware	*
qualcomm	sa8295p_firmware	*
qualcomm	sa8620p_firmware	*
qualcomm	sa8770p_firmware	*
qualcomm	sa9000p_firmware	*
qualcomm	sd662_firmware	*
qualcomm	sd865_5g_firmware	*
qualcomm	sda660_firmware	*
qualcomm	sm6225p_firmware	*
qualcomm	sm6650p_firmware	*
qualcomm	sm7325p_firmware	*
qualcomm	sm7525_firmware	*
qualcomm	sm7550_firmware	*
qualcomm	sm7550p_firmware	*
qualcomm	sm7635p_firmware	*
qualcomm	sm7675_firmware	*
qualcomm	sm7675p_firmware	*
qualcomm	sm8550p_firmware	*
qualcomm	sm8635_firmware	*
qualcomm	sm8635p_firmware	*
qualcomm	sm8650q_firmware	*
qualcomm	smart_audio_400_firmware	*
qualcomm	snapdragon_4_gen_1_mobile_firmware	*
qualcomm	snapdragon_460_mobile_firmware	*
qualcomm	snapdragon_480_5g_mobile_firmware	*
qualcomm	snapdragon_480+_5g_mobile_firmware	*
qualcomm	snapdragon_6_gen_4_mobile_firmware	*
qualcomm	snapdragon_660_mobile_firmware	*
qualcomm	snapdragon_662_mobile_firmware	*
qualcomm	snapdragon_680_4g_mobile_firmware	*
qualcomm	snapdragon_685_4g_mobile_firmware	*
qualcomm	snapdragon_690_5g_mobile_firmware	*
qualcomm	snapdragon_695_5g_mobile_firmware	*
qualcomm	snapdragon_778g_5g_mobile_firmware	*
qualcomm	snapdragon_778g+_5g_mobile_firmware	*
qualcomm	snapdragon_782g_mobile_firmware	*
qualcomm	snapdragon_7c+_gen_3_compute_firmware	*
qualcomm	snapdragon_7s_gen_3_mobile_firmware	*
qualcomm	snapdragon_8_gen_2_mobile_firmware	*
qualcomm	snapdragon_8_gen_3_mobile_firmware	*
qualcomm	snapdragon_8+_gen_2_mobile_firmware	*
qualcomm	snapdragon_865_5g_mobile_firmware	*
qualcomm	snapdragon_865+_5g_mobile_firmware	*
qualcomm	snapdragon_870_5g_mobile_firmware	*
qualcomm	snapdragon_888_5g_mobile_firmware	*
qualcomm	snapdragon_888+_5g_mobile_firmware	*
qualcomm	snapdragon_auto_5g_modem-rf_firmware	*
qualcomm	snapdragon_auto_5g_modem-rf_gen_2_firmware	*
qualcomm	snapdragon_w5+_gen_1_wearable_firmware	*
qualcomm	snapdragon_x12_lte_modem_firmware	*
qualcomm	snapdragon_x32_5g_modem-rf_firmware	*
qualcomm	snapdragon_x35_5g_modem-rf_firmware	*
qualcomm	snapdragon_x53_5g_modem-rf_firmware	*
qualcomm	snapdragon_x55_5g_modem-rf_firmware	*
qualcomm	snapdragon_x72_5g_modem-rf_firmware	*
qualcomm	snapdragon_x75_5g_modem-rf_firmware	*
qualcomm	snapdragon_xr2_5g_firmware	*
qualcomm	snapdragon_xr2+_gen_1_firmware	*
qualcomm	snapdragon_auto_4g_modem_firmware	*
qualcomm	srv1h_firmware	*
qualcomm	srv1m_firmware	*
qualcomm	sw5100_firmware	*
qualcomm	sw5100p_firmware	*
qualcomm	sxr2230p_firmware	*
qualcomm	sxr2250p_firmware	*
qualcomm	sxr2330p_firmware	*
qualcomm	sxr2350p_firmware	*
qualcomm	wcd9326_firmware	*
qualcomm	wcd9335_firmware	*
qualcomm	wcd9340_firmware	*
qualcomm	wcd9341_firmware	*
qualcomm	wcd9360_firmware	*
qualcomm	wcd9370_firmware	*
qualcomm	wcd9371_firmware	*
qualcomm	wcd9375_firmware	*
qualcomm	wcd9378_firmware	*
qualcomm	wcd9380_firmware	*
qualcomm	wcd9385_firmware	*

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-120	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
CWE-787	The product writes data past the end, or before the beginning, of the intended buffer.

Attack-Flow Graph

AI Powered Q&A

Can you explain this vulnerability to me?

This vulnerability involves memory corruption that occurs when the size of a previously allocated buffer is dynamically changed while its contents are being modified.

How can this vulnerability impact me? :

The vulnerability can lead to high impact on confidentiality and integrity, and a low impact on availability, as indicated by its CVSS score. This means it could allow unauthorized access to sensitive data or unauthorized modification of data, potentially compromising system security.

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

CVE-2025-47404

Memory Corruption in Qualcomm Chipset Firmware

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Powered Q&A

Ask Our AI Assistant

EPSS Chart