Skip to main content

Cologne Firmware CVE-2025-47399

HIGH
Classic Buffer Overflow (CWE-120)
2026-02-02 product-security@qualcomm.com
Memory Corruption Cologne Firmware Fastconnect 7800 Firmware Wcd9378c Firmware Wsa8840 Firmware Wsa8845 Firmware Wsa8845h Firmware X2000077 Firmware X2000086 Firmware X2000090 Firmware X2000092 Firmware X2000094 Firmware Xg101002 Firmware Xg101032 Firmware Xg101039 Firmware
7.8
CVSS 3.1
Share

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 22:01 vuln.today
CVE Published
Feb 02, 2026 - 16:16 nvd
HIGH 7.8

DescriptionNVD

Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.

AnalysisAI

Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters. [CVSS 7.8 HIGH]

Technical ContextAI

Classified as CWE-120 (Classic Buffer Overflow). Affects Cologne Firmware. Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.

RemediationAI

Monitor vendor advisories for a patch. Enable ASLR, DEP/NX, and stack canaries where possible.

Share

CVE-2025-47399 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy