Skip to main content

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
Analysis Generated
Mar 12, 2026 - 21:54 vuln.today
Patch released
Jan 27, 2026 - 19:22 nvd
Patch available
CVE Published
Jan 07, 2026 - 12:17 nvd
HIGH 7.8

DescriptionCVE.org

Memory corruption while passing pages to DSP with an unaligned starting address.

AnalysisAI

Memory corruption while passing pages to DSP with an unaligned starting address. [CVSS 7.8 HIGH]

Technical ContextAI

Classified as CWE-120 (Classic Buffer Overflow). Affects Fastconnect 6200 Firmware. Memory corruption while passing pages to DSP with an unaligned starting address.

RemediationAI

A vendor patch is available — apply it immediately. Enable ASLR, DEP/NX, and stack canaries where possible.

CVE-2025-27038 HIGH
7.5 Jun 03

Qualcomm Adreno GPU drivers in Chrome contain a use-after-free vulnerability (CVE-2025-27038, CVSS 7.5) enabling memory

CVE-2025-47345 HIGH
8.4 Jan 07

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

CVE-2025-47396 HIGH
7.8 Jan 07

Memory corruption occurs when a secure application is launched on a device with insufficient memory. [CVSS 7.8 HIGH]

CVE-2025-47394 HIGH
7.8 Jan 07

Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations. [CVSS

CVE-2025-47348 HIGH
7.8 Jan 07

Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]

CVE-2025-47346 HIGH
7.8 Jan 07

Memory corruption while processing a secure logging command in the trusted application. [CVSS 7.8 HIGH]

CVE-2025-47339 HIGH
7.8 Jan 07

Memory corruption while deinitializing a HDCP session. [CVSS 7.8 HIGH]

CVE-2025-47366 HIGH
7.1 Feb 02

Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input. [CVSS 7.1 H

CVE-2025-47334 MEDIUM
6.7 Jan 07

Memory corruption while processing shared command buffer packet between camera userspace and kernel. [CVSS 6.7 MEDIUM]

CVE-2025-47333 MEDIUM
6.6 Jan 07

Memory corruption while handling buffer mapping operations in the cryptographic driver. [CVSS 6.6 MEDIUM]

CVE-2025-47331 MEDIUM
6.1 Jan 07

Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]

CVE-2025-47330 MEDIUM
5.5 Jan 07

Transient DOS while parsing video packets received from the video firmware. [CVSS 5.5 MEDIUM]

Share

CVE-2025-47388 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy