Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Qualcomm, Inc. | Snapdragon | unaffected |
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
Configuration 10 [-]
| AND |
|
Configuration 11 [-]
| AND |
|
Configuration 12 [-]
| AND |
|
Configuration 13 [-]
| AND |
|
Configuration 14 [-]
| AND |
|
Configuration 15 [-]
| AND |
|
Configuration 16 [-]
| AND |
|
Configuration 17 [-]
| AND |
|
Configuration 18 [-]
| AND |
|
Configuration 19 [-]
| AND |
|
Configuration 20 [-]
| AND |
|
Configuration 21 [-]
| AND |
|
Configuration 22 [-]
| AND |
|
Configuration 23 [-]
| AND |
|
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
| Vendors | Products |
|---|---|
|
Qualcomm
Subscribe
|
Snapdragon
Subscribe
|
Project Subscriptions
| Vendors | Products |
|---|---|
|
Qualcomm
Subscribe
|
Qam8255p
Subscribe
Qam8255p Firmware
Subscribe
Qam8620p
Subscribe
Qam8620p Firmware
Subscribe
Qam8650p
Subscribe
Qam8650p Firmware
Subscribe
Qam8775p
Subscribe
Qam8775p Firmware
Subscribe
Qamsrv1h
Subscribe
Qamsrv1h Firmware
Subscribe
Qamsrv1m
Subscribe
Qamsrv1m Firmware
Subscribe
Qca6595
Subscribe
Qca6595 Firmware
Subscribe
Qca6595au
Subscribe
Qca6595au Firmware
Subscribe
Qca6678aq
Subscribe
Qca6678aq Firmware
Subscribe
Qca6696
Subscribe
Qca6696 Firmware
Subscribe
Qca6698aq
Subscribe
Qca6698aq Firmware
Subscribe
Qca6797aq
Subscribe
Qca6797aq Firmware
Subscribe
Sa7255p
Subscribe
Sa7255p Firmware
Subscribe
Sa7775p
Subscribe
Sa7775p Firmware
Subscribe
Sa8255p
Subscribe
Sa8255p Firmware
Subscribe
Sa8620p
Subscribe
Sa8620p Firmware
Subscribe
Sa8650p
Subscribe
Sa8650p Firmware
Subscribe
Sa8770p
Subscribe
Sa8770p Firmware
Subscribe
Sa8775p
Subscribe
Sa8775p Firmware
Subscribe
Sa9000p
Subscribe
Sa9000p Firmware
Subscribe
Snapdragon
Subscribe
Srv1h
Subscribe
Srv1h Firmware
Subscribe
Srv1l
Subscribe
Srv1l Firmware
Subscribe
Srv1m
Subscribe
Srv1m Firmware
Subscribe
|
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Tue, 23 Dec 2025 22:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Qualcomm qam8255p
Qualcomm qam8255p Firmware Qualcomm qam8620p Qualcomm qam8620p Firmware Qualcomm qam8650p Qualcomm qam8650p Firmware Qualcomm qam8775p Qualcomm qam8775p Firmware Qualcomm qamsrv1h Qualcomm qamsrv1h Firmware Qualcomm qamsrv1m Qualcomm qamsrv1m Firmware Qualcomm qca6595 Qualcomm qca6595 Firmware Qualcomm qca6595au Qualcomm qca6595au Firmware Qualcomm qca6678aq Qualcomm qca6678aq Firmware Qualcomm qca6696 Qualcomm qca6696 Firmware Qualcomm qca6698aq Qualcomm qca6698aq Firmware Qualcomm qca6797aq Qualcomm qca6797aq Firmware Qualcomm sa7255p Qualcomm sa7255p Firmware Qualcomm sa7775p Qualcomm sa7775p Firmware Qualcomm sa8255p Qualcomm sa8255p Firmware Qualcomm sa8620p Qualcomm sa8620p Firmware Qualcomm sa8650p Qualcomm sa8650p Firmware Qualcomm sa8770p Qualcomm sa8770p Firmware Qualcomm sa8775p Qualcomm sa8775p Firmware Qualcomm sa9000p Qualcomm sa9000p Firmware Qualcomm srv1h Qualcomm srv1h Firmware Qualcomm srv1l Qualcomm srv1l Firmware Qualcomm srv1m Qualcomm srv1m Firmware |
|
| Weaknesses | CWE-787 | |
| CPEs | cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qam8620p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6678aq:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:qca6797aq:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:srv1l:-:*:*:*:*:*:*:* cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qam8620p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6678aq_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:srv1l_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:* |
|
| Vendors & Products |
Qualcomm qam8255p
Qualcomm qam8255p Firmware Qualcomm qam8620p Qualcomm qam8620p Firmware Qualcomm qam8650p Qualcomm qam8650p Firmware Qualcomm qam8775p Qualcomm qam8775p Firmware Qualcomm qamsrv1h Qualcomm qamsrv1h Firmware Qualcomm qamsrv1m Qualcomm qamsrv1m Firmware Qualcomm qca6595 Qualcomm qca6595 Firmware Qualcomm qca6595au Qualcomm qca6595au Firmware Qualcomm qca6678aq Qualcomm qca6678aq Firmware Qualcomm qca6696 Qualcomm qca6696 Firmware Qualcomm qca6698aq Qualcomm qca6698aq Firmware Qualcomm qca6797aq Qualcomm qca6797aq Firmware Qualcomm sa7255p Qualcomm sa7255p Firmware Qualcomm sa7775p Qualcomm sa7775p Firmware Qualcomm sa8255p Qualcomm sa8255p Firmware Qualcomm sa8620p Qualcomm sa8620p Firmware Qualcomm sa8650p Qualcomm sa8650p Firmware Qualcomm sa8770p Qualcomm sa8770p Firmware Qualcomm sa8775p Qualcomm sa8775p Firmware Qualcomm sa9000p Qualcomm sa9000p Firmware Qualcomm srv1h Qualcomm srv1h Firmware Qualcomm srv1l Qualcomm srv1l Firmware Qualcomm srv1m Qualcomm srv1m Firmware |
Thu, 18 Dec 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Thu, 18 Dec 2025 10:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Qualcomm
Qualcomm snapdragon |
|
| Vendors & Products |
Qualcomm
Qualcomm snapdragon |
Thu, 18 Dec 2025 05:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication. | |
| Title | Buffer Copy Without Checking Size of Input in Boot | |
| Weaknesses | CWE-120 | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: qualcomm
Published:
Updated: 2025-12-18T15:00:24.730Z
Reserved: 2025-05-06T08:33:16.265Z
Link: CVE-2025-47372
Vulnrichment
Updated: 2025-12-18T14:45:31.456Z
NVD
Status : Analyzed
Published: 2025-12-18T06:15:49.227
Modified: 2025-12-23T21:54:12.710
Link: CVE-2025-47372
Redhat
No data.
OpenCVE Enrichment
Updated: 2025-12-18T09:55:27Z