← Retour aux CVEs
CVE-2025-47372
CRITICAL9.0
Description
Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
Details CVE
Score CVSS v3.19.0
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie12/18/2025
Derniere modification12/23/2025
Sourcenvd
Observations honeypot0
Produits affectes
qualcomm:qam8255pqualcomm:qam8255p_firmwarequalcomm:qam8620pqualcomm:qam8620p_firmwarequalcomm:qam8650pqualcomm:qam8650p_firmwarequalcomm:qam8775pqualcomm:qam8775p_firmwarequalcomm:qamsrv1hqualcomm:qamsrv1h_firmwarequalcomm:qamsrv1mqualcomm:qamsrv1m_firmwarequalcomm:qca6595qualcomm:qca6595_firmwarequalcomm:qca6595auqualcomm:qca6595au_firmwarequalcomm:qca6678aqqualcomm:qca6678aq_firmwarequalcomm:qca6696qualcomm:qca6696_firmwarequalcomm:qca6698aqqualcomm:qca6698aq_firmwarequalcomm:qca6797aqqualcomm:qca6797aq_firmwarequalcomm:sa7255pqualcomm:sa7255p_firmwarequalcomm:sa7775pqualcomm:sa7775p_firmwarequalcomm:sa8255pqualcomm:sa8255p_firmwarequalcomm:sa8620pqualcomm:sa8620p_firmwarequalcomm:sa8650pqualcomm:sa8650p_firmwarequalcomm:sa8770pqualcomm:sa8770p_firmwarequalcomm:sa8775pqualcomm:sa8775p_firmwarequalcomm:sa9000pqualcomm:sa9000p_firmwarequalcomm:srv1hqualcomm:srv1h_firmwarequalcomm:srv1lqualcomm:srv1l_firmwarequalcomm:srv1mqualcomm:srv1m_firmware
Faiblesses (CWE)
CWE-120CWE-787
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2025-bulletin.html(product-security@qualcomm.com)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.