CVE-2025-47380

nvd nist

Published: Jan 7, 2026Modified: Jan 27, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: product-security@qualcomm.com

Description

Memory corruption while preprocessing IOCTLs in sensors.

Affected (14)

Products: Qualcomm: Wsa8845h Firmware, X2000077 Firmware, X2000086 Firmware, X2000090 Firmware, X2000092 Firmware, X2000094 Firmware, Xg101002 Firmware, Xg101032 Firmware, Xg101039 Firmware, Fastconnect 7800 Firmware, Qcc2072 Firmware, Wcd9378c Firmware, Wsa8840 Firmware, Wsa8845 Firmware

14 products

Fastconnect 7800 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8845h Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8845h	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm X2000077 Firmware	All versions

Running on/with	Platform Versions
Qualcomm X2000077	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm X2000086 Firmware	All versions

Running on/with	Platform Versions
Qualcomm X2000086	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm X2000090 Firmware	All versions

Running on/with	Platform Versions
Qualcomm X2000090	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm X2000092 Firmware	All versions

Running on/with	Platform Versions
Qualcomm X2000092	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm X2000094 Firmware	All versions

Running on/with	Platform Versions
Qualcomm X2000094	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Xg101002 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Xg101002	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Xg101032 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Xg101032	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Xg101039 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Xg101039	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 7800 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 7800	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcc2072 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcc2072	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9378c Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9378c	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8840 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8840	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8845 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8845	All versions

Related CWEs

CWE-822

Untrusted Pointer Dereference

The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.

References (1)

https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html

Source: product-security@qualcomm.com

Vendor Advisory

Timeline

No history available yet.