CVE-2025-47405
Awaiting Analysis
Awaiting Analysis - Queue
Memory Corruption in Qualcomm Camera Driver
Publication date: 2026-05-04
Last updated on: 2026-05-06
Assigner: Qualcomm, Inc.
Description
Description
Memory corruption when processing camera sensor input/output control codes with invalid output buffers.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| qualcomm | fastconnect_6900_firmware | * |
| qualcomm | fastconnect_7800_firmware | * |
| qualcomm | iqx5121_firmware | * |
| qualcomm | iqx7181_firmware | * |
| qualcomm | qca0000_firmware | * |
| qualcomm | sc8380xp_firmware | * |
| qualcomm | sd865_5g_firmware | * |
| qualcomm | snapdragon_xr2_5g_firmware | * |
| qualcomm | snapdragon_xr2+_gen_1_firmware | * |
| qualcomm | wcd9380_firmware | * |
| qualcomm | wcd9385_firmware | * |
| qualcomm | wsa8810_firmware | * |
| qualcomm | wsa8815_firmware | * |
| qualcomm | wsa8840_firmware | * |
| qualcomm | wsa8845_firmware | * |
| qualcomm | wsa8845h_firmware | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-822 | The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer. |
