CVE-2025-47358
HIGH
2026-02-02
[email protected]
7.8
CVSS 3.1
Share
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Lifecycle Timeline
2
Analysis Generated
Mar 12, 2026 - 22:01 vuln.today
CVE Published
Feb 02, 2026 - 16:16 nvd
HIGH 7.8
Tags
Linux
Memory Corruption
X2000092 Firmware
Snapdragon 8cx Gen 3 Compute Platform Firmware
X2000086 Firmware
Sc8380xp Firmware
Xg101002 Firmware
X2000090 Firmware
X2000094 Firmware
Xg101032 Firmware
Wcd9378c Firmware
Wcd9385 Firmware
Qcc2072 Firmware
Wsa8840 Firmware
Wsa8845 Firmware
X2000077 Firmware
Wsa8845h Firmware
Wsa8835 Firmware
Xg101039 Firmware
Fastconnect 6900 Firmware
Fastconnect 7800 Firmware
Wcd9380 Firmware
Wsa8830 Firmware
Description
Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.
Analysis
Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently. [CVSS 7.8 HIGH]
Technical Context
Classified as CWE-416 (Use After Free). Affects Fastconnect 6900 Firmware. Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.
Affected Products
Vendor: Qualcomm. Product: Fastconnect 6900 Firmware. Versions: up to -.
Remediation
Monitor vendor advisories for a patch.
Priority Score
39
Low
Medium
High
Critical
KEV: 0
EPSS: +0.0
CVSS: +39
POC: 0
Share
External POC / Exploit Code
Leaving vuln.today
Destination URL
POC code from unknown sources may be malicious, contain backdoors, or be fake.
Always review and test exploit code in a safe, isolated environment (VM/sandbox).
Verify the source reputation and cross-reference with known databases (Exploit-DB, GitHub Security).