CVE-2025-47399
Severity CVSS v4.0:
Pending analysis
Type:
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Publication date:
02/02/2026
Last modified:
11/02/2026
Description
Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:qualcomm:cologne_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:cologne:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:wcd9378c_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:wcd9378c:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:x2000077_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:qualcomm:x2000077:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:qualcomm:x2000086_firmware:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page