Sm6475 Firmware
CVE-2025-47388
HIGH
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionCVE.org
Memory corruption while passing pages to DSP with an unaligned starting address.
AnalysisAI
Memory corruption while passing pages to DSP with an unaligned starting address. [CVSS 7.8 HIGH]
Technical ContextAI
Classified as CWE-120 (Classic Buffer Overflow). Affects Fastconnect 6200 Firmware. Memory corruption while passing pages to DSP with an unaligned starting address.
RemediationAI
A vendor patch is available — apply it immediately. Enable ASLR, DEP/NX, and stack canaries where possible.
More in Sm6475 Firmware
View allQualcomm Adreno GPU drivers in Chrome contain a use-after-free vulnerability (CVE-2025-27038, CVSS 7.5) enabling memory
Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]
Memory corruption occurs when a secure application is launched on a device with insufficient memory. [CVSS 7.8 HIGH]
Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations. [CVSS
Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]
Memory corruption while processing a secure logging command in the trusted application. [CVSS 7.8 HIGH]
Memory corruption while deinitializing a HDCP session. [CVSS 7.8 HIGH]
Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input. [CVSS 7.1 H
Memory corruption while processing shared command buffer packet between camera userspace and kernel. [CVSS 6.7 MEDIUM]
Memory corruption while handling buffer mapping operations in the cryptographic driver. [CVSS 6.6 MEDIUM]
Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]
Transient DOS while parsing video packets received from the video firmware. [CVSS 5.5 MEDIUM]
Same weakness CWE-120 – Classic Buffer Overflow
View allSame technique Memory Corruption
View allShare
External POC / Exploit Code
Leaving vuln.today