← Back to CVEs
CVE-2025-47399
HIGH7.8
Description
Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.
CVE Details
CVSS v3.1 Score7.8
SeverityHIGH
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published2/2/2026
Last Modified2/11/2026
Sourcenvd
Honeypot Sightings0
Affected Products
qualcomm:colognequalcomm:cologne_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:wcd9378cqualcomm:wcd9378c_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmwarequalcomm:x2000077qualcomm:x2000077_firmwarequalcomm:x2000086qualcomm:x2000086_firmwarequalcomm:x2000090qualcomm:x2000090_firmwarequalcomm:x2000092qualcomm:x2000092_firmwarequalcomm:x2000094qualcomm:x2000094_firmwarequalcomm:xg101002qualcomm:xg101002_firmwarequalcomm:xg101032qualcomm:xg101032_firmwarequalcomm:xg101039qualcomm:xg101039_firmware
Weaknesses (CWE)
CWE-120
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2026-bulletin.html(product-security@qualcomm.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.